$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200949.roa File: AS200949.roa (raw, json) Hash identifier: iHWNtFYSw5fdeBHH0csyT3+j5DqXvuFUIgAc3f2/kIo= Subject key identifier: E6:9E:EF:8B:29:AF:E4:BC:DE:89:11:57:89:3D:E2:AB:C2:78:30:37 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4B22C1F5A874211351770B974761D3F0115CDAB7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200949.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 200949 IP address blocks: 2a0a:6040:d800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:22:c1:f5:a8:74:21:13:51:77:0b:97:47:61:d3:f0:11:5c:da:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=E69EEF8B29AFE4BCDE891157893DE2ABC2783037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d5:18:b0:42:64:9c:70:56:df:6d:97:58:32: c4:8e:5d:4b:48:6f:bb:6f:5c:44:dd:88:2b:7d:a0: c5:e8:37:0f:48:3a:45:a0:f8:bf:10:1d:1e:ab:94: 75:32:53:36:92:5b:5d:86:57:68:17:87:e7:d4:c1: 21:09:f0:db:57:67:ac:60:96:52:18:f1:13:1e:d4: 34:6c:dd:e8:b8:96:53:58:cb:fe:75:8e:f2:84:6f: a5:b3:bd:44:a5:91:13:44:37:c1:80:15:5d:53:7a: 31:01:e9:8d:da:3f:6f:5a:99:53:a4:44:c1:f4:62: 0a:bd:dd:8c:76:3e:b1:91:69:2b:a6:a5:5a:eb:f2: 39:30:dd:17:67:35:f6:4f:18:57:d9:79:a3:51:c5: 8b:1a:25:54:3d:5a:80:ca:e3:83:77:95:a2:b6:3b: 09:19:0c:4c:1d:b1:b1:1c:3a:60:bd:2e:79:d6:81: 06:ce:04:06:e1:88:7a:ff:cb:5b:f8:a0:f2:35:ce: 75:01:f3:b7:93:cc:08:b2:f7:e4:8a:d3:9f:75:ab: 6b:ca:ac:b7:72:e9:16:56:40:e6:de:8b:38:cf:a7: 7f:77:1f:85:f9:ce:92:ef:11:37:ec:0d:91:7b:15: 29:5a:85:01:e4:f1:67:dd:3e:04:d6:1f:17:3c:72: e4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:9E:EF:8B:29:AF:E4:BC:DE:89:11:57:89:3D:E2:AB:C2:78:30:37 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200949.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d800::/40 Signature Algorithm: sha256WithRSAEncryption a1:e2:32:9c:6a:61:23:eb:35:d8:2f:fc:ea:79:90:c3:db:38: 61:59:62:db:55:36:20:44:8c:93:df:bb:32:71:aa:05:e0:88: 2e:a7:ee:8c:4f:64:2e:59:82:fa:f7:fb:a0:6a:56:c4:ec:ae: 2d:24:f0:d8:29:16:c6:31:35:88:90:6a:6b:d9:7c:f8:bb:13: 4a:0b:74:87:02:54:bd:60:1e:df:39:20:99:8c:8c:10:98:71: 09:74:47:a0:5d:2d:f2:55:b4:a0:bd:92:4c:3e:d2:d6:7e:06: b9:d0:8a:51:b1:85:3a:59:50:55:9d:48:d6:d1:83:a1:9d:24: 7f:92:a0:0a:f8:b3:0d:2e:4e:39:d5:c9:82:9d:23:0a:28:30: 02:d7:f2:ad:cc:39:e7:83:a8:5c:30:82:2e:c0:76:5f:ce:22: 04:a3:d0:51:3b:ed:74:1d:0d:3c:af:9c:5d:af:13:b8:a9:5f: fa:14:db:8d:d7:67:25:83:55:cb:21:be:38:bd:c2:3e:dc:53: 20:e0:ba:1d:9d:c2:0e:cc:2f:8c:1d:d7:dd:07:c5:d5:b7:dc: f4:36:67:e9:f5:38:f2:a2:6a:55:45:f3:bc:ae:e2:3f:f7:2f: 92:b8:bf:5f:eb:5e:94:57:07:b5:d8:cf:bb:94:a9:e0:ff:04: eb:d7:46:27 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSyLB9ah0IRNRdwuXR2HT8BFc2rcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKEU2OUVFRjhCMjlBRkU0QkNERTg5MTE1Nzg5M0RFMkFCQzI3ODMwMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE1RiwQmSccFbfbZdYMsSOXUtI b7tvXETdiCt9oMXoNw9IOkWg+L8QHR6rlHUyUzaSW12GV2gXh+fUwSEJ8NtXZ6xg llIY8RMe1DRs3ei4llNYy/51jvKEb6WzvUSlkRNEN8GAFV1TejEB6Y3aP29amVOk RMH0Ygq93Yx2PrGRaSumpVrr8jkw3RdnNfZPGFfZeaNRxYsaJVQ9WoDK44N3laK2 OwkZDEwdsbEcOmC9LnnWgQbOBAbhiHr/y1v4oPI1znUB87eTzAiy9+SK0591q2vK rLdy6RZWQObeizjPp393H4X5zpLvETfsDZF7FSlahQHk8WfdPgTWHxc8cuQZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5p7viymv5LzeiRFXiT3iq8J4MDcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNgwDQYJKoZIhvcNAQELBQADggEBAKHi MpxqYSPrNdgv/Op5kMPbOGFZYttVNiBEjJPfuzJxqgXgiC6n7oxPZC5Zgvr3+6Bq VsTsri0k8NgpFsYxNYiQamvZfPi7E0oLdIcCVL1gHt85IJmMjBCYcQl0R6BdLfJV tKC9kkw+0tZ+BrnQilGxhTpZUFWdSNbRg6GdJH+SoAr4sw0uTjnVyYKdIwooMALX 8q3MOeeDqFwwgi7Adl/OIgSj0FE77XQdDTyvnF2vE7ipX/oU243XZyWDVcshvji9 wj7cUyDguh2dwg7ML4wd190HxdW33PQ2Z+n1OPKialVF87yu4j/3L5K4v1/rXpRX B7XYz7uUqeD/BOvXRic= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org