$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200936.roa File: AS200936.roa (raw, json) Hash identifier: YnL6xhY0S2rwTUSOjTP8uvnpSrvopJtq91G33W8CVOQ= Subject key identifier: E2:08:75:7C:E4:5C:F0:98:78:7A:EF:3D:D9:A2:E8:60:6D:E0:B1:99 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5DD0C1DD740F22B04BB8E46ED4A7BAA37A8D8E7C Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200936.roa Signing time: Sun 06 Oct 2024 04:45:12 +0000 ROA not before: Sun 06 Oct 2024 04:40:12 +0000 ROA not after: Sun 05 Oct 2025 04:45:12 +0000 asID: 200936 IP address blocks: 2a0a:6040:d600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:d0:c1:dd:74:0f:22:b0:4b:b8:e4:6e:d4:a7:ba:a3:7a:8d:8e:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:12 2024 GMT Not After : Oct 5 04:45:12 2025 GMT Subject: CN=E208757CE45CF098787AEF3DD9A2E8606DE0B199 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ee:25:53:70:e1:61:26:8c:0d:36:c9:5b:38: 8f:e7:08:e3:44:cd:58:8b:70:4c:b9:b2:1a:0b:b5: 48:da:83:34:53:be:62:cb:45:fa:08:80:38:8c:48: 6e:b7:a9:52:e1:f0:d8:b3:5d:a0:d5:33:af:e9:3f: 33:8d:38:55:ec:51:f3:1c:c3:cb:cb:92:1a:18:67: 55:2e:14:f0:85:dc:0e:f9:e7:04:5b:1b:72:24:62: 91:64:22:65:e6:26:2e:02:a0:03:d0:72:77:9b:0d: a6:fe:00:33:d8:87:75:f3:7e:32:96:bb:87:20:cb: e5:fc:59:b9:f5:b5:25:9e:8b:ad:4c:77:f6:ff:bf: 45:fa:7c:04:89:67:44:55:4d:6b:be:60:a7:e0:6f: 26:6a:e6:d6:7a:95:f1:62:99:53:63:aa:04:6d:b0: 9e:a8:8f:f2:ae:9a:37:bb:18:ea:2e:06:63:50:93: 28:c2:bf:e7:a2:23:86:c9:85:0e:7e:cd:39:b1:e4: f9:c6:0b:82:d9:ab:a6:16:23:15:01:c3:1d:1a:5a: e5:98:64:80:9d:87:f3:26:85:2f:43:05:d8:b0:5a: 53:5e:41:ba:a6:2c:ed:bd:b2:4e:94:e9:d8:07:7e: f9:90:4e:1a:a3:ba:8b:cf:cd:1b:92:36:84:fa:23: db:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:08:75:7C:E4:5C:F0:98:78:7A:EF:3D:D9:A2:E8:60:6D:E0:B1:99 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d600::/40 Signature Algorithm: sha256WithRSAEncryption c1:20:14:39:71:9e:f3:4d:58:dc:e7:08:42:aa:7a:10:fe:19: 40:8b:ab:ea:33:82:7f:1f:af:4a:6e:91:64:46:44:38:28:6e: 6c:0d:70:aa:e4:60:e4:dd:18:7e:0e:e5:1e:73:2b:6f:ef:4f: 2a:a4:7f:cd:6d:a0:4b:c3:5c:4a:fc:4a:f2:48:b5:f1:45:61: 81:02:4d:2e:24:4a:ee:50:b2:6c:c8:0b:76:17:60:f1:79:a1: d2:57:82:5e:ec:7b:98:83:e9:af:0a:34:66:c0:63:cc:4f:74: 23:63:01:eb:c8:ad:8c:c3:2a:d6:80:e6:4f:20:2e:57:cf:16: da:3a:c6:40:4e:6e:1f:63:44:7a:c8:3d:01:36:05:4c:ea:ca: e5:f3:64:51:a9:ad:0a:3b:5b:9a:11:2b:79:da:8e:ed:9d:f9: 8f:8b:cf:21:eb:c3:cb:b0:0f:aa:7c:72:10:8c:2d:88:30:6e: 53:27:ad:27:db:b9:2c:ef:84:82:1b:21:7a:70:aa:19:0a:8c: 17:fc:cf:50:0b:36:85:29:a5:41:73:b7:bd:b3:c6:c3:57:24: ff:dd:e2:fe:c7:95:62:da:05:0e:b6:c4:ef:e9:4d:03:40:78: 86:a8:41:5c:9e:25:e9:d2:f8:1a:be:60:b8:84:2f:51:32:09: 9d:15:94:e1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXdDB3XQPIrBLuORu1Ke6o3qNjnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTJaFw0yNTEwMDUwNDQ1MTJaMDMxMTAvBgNV BAMTKEUyMDg3NTdDRTQ1Q0YwOTg3ODdBRUYzREQ5QTJFODYwNkRFMEIxOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl7iVTcOFhJowNNslbOI/nCONE zViLcEy5shoLtUjagzRTvmLLRfoIgDiMSG63qVLh8NizXaDVM6/pPzONOFXsUfMc w8vLkhoYZ1UuFPCF3A755wRbG3IkYpFkImXmJi4CoAPQcnebDab+ADPYh3XzfjKW u4cgy+X8Wbn1tSWei61Md/b/v0X6fASJZ0RVTWu+YKfgbyZq5tZ6lfFimVNjqgRt sJ6oj/Kumje7GOouBmNQkyjCv+eiI4bJhQ5+zTmx5PnGC4LZq6YWIxUBwx0aWuWY ZICdh/MmhS9DBdiwWlNeQbqmLO29sk6U6dgHfvmQThqjuovPzRuSNoT6I9tlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4gh1fORc8Jh4eu892aLoYG3gsZkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNYwDQYJKoZIhvcNAQELBQADggEBAMEg FDlxnvNNWNznCEKqehD+GUCLq+ozgn8fr0pukWRGRDgobmwNcKrkYOTdGH4O5R5z K2/vTyqkf81toEvDXEr8SvJItfFFYYECTS4kSu5QsmzIC3YXYPF5odJXgl7se5iD 6a8KNGbAY8xPdCNjAevIrYzDKtaA5k8gLlfPFto6xkBObh9jRHrIPQE2BUzqyuXz ZFGprQo7W5oRK3naju2d+Y+LzyHrw8uwD6p8chCMLYgwblMnrSfbuSzvhIIbIXpw qhkKjBf8z1ALNoUppUFzt72zxsNXJP/d4v7HlWLaBQ62xO/pTQNAeIaoQVyeJenS +Bq+YLiEL1EyCZ0VlOE= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org