$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200968.roa File: AS200968.roa (raw, json) Hash identifier: dDH/F1h6TAvo/x146oalWlYrrHl0Lqit2vmmCwhThrk= Subject key identifier: BC:C9:B3:34:41:18:4A:15:68:CD:A6:D1:C3:A4:8F:C3:FD:25:EC:26 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6F33A78DB0CF1089EC1E25E25511EB7C270173F9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200968.roa Signing time: Sun 06 Oct 2024 04:45:09 +0000 ROA not before: Sun 06 Oct 2024 04:40:09 +0000 ROA not after: Sun 05 Oct 2025 04:45:09 +0000 asID: 200968 IP address blocks: 2a0a:6040:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:33:a7:8d:b0:cf:10:89:ec:1e:25:e2:55:11:eb:7c:27:01:73:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:09 2024 GMT Not After : Oct 5 04:45:09 2025 GMT Subject: CN=BCC9B33441184A1568CDA6D1C3A48FC3FD25EC26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f7:85:4c:b5:8f:05:63:b3:65:ba:fb:a0:76: 64:0d:db:b7:ef:7d:e9:38:42:55:2a:af:83:aa:8d: ea:74:f4:1b:36:21:c8:9c:c9:23:db:76:59:b7:57: d4:74:c4:67:ae:0d:d8:d4:50:f0:72:89:19:37:4c: 3c:d4:e2:32:c7:a0:08:ed:a6:05:76:84:1c:00:a6: 5f:49:78:60:99:93:35:82:98:25:cb:1a:2e:80:49: e5:a6:cb:3b:88:f6:0a:c6:77:20:9d:a6:92:90:00: f5:e2:ed:1a:ff:9a:d0:93:f6:22:c5:71:dc:1d:3f: ab:52:06:9e:20:16:c1:7e:66:4d:35:7b:66:e9:a2: c9:3f:f6:02:fb:57:04:85:75:32:57:0d:77:8b:94: d0:9b:18:b6:31:ec:9d:f7:cc:42:96:eb:da:68:4f: 56:0e:08:fc:98:df:ac:5e:5b:7d:9b:dc:19:6f:81: 0c:43:57:fc:53:d6:01:f2:fc:e9:2f:73:65:43:27: c5:86:79:79:b9:7b:27:22:52:12:77:41:46:55:58: c6:d2:8f:df:59:3a:c9:06:33:d8:33:60:f6:c5:6e: ac:4f:72:e8:19:b7:dd:b8:13:5a:04:ae:9c:0f:ed: c8:65:7e:f7:f3:ce:31:42:90:b5:cb:51:d6:7e:69: 02:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C9:B3:34:41:18:4A:15:68:CD:A6:D1:C3:A4:8F:C3:FD:25:EC:26 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f100::/40 Signature Algorithm: sha256WithRSAEncryption 8a:78:64:e8:13:be:c5:76:d0:05:15:33:4e:d5:11:0e:b4:db: 1f:b8:b4:80:32:fc:fe:b9:09:a2:2f:2d:36:7a:bf:d2:dd:98: eb:60:10:a1:f3:3c:06:f1:40:97:23:db:0a:ca:df:bb:ed:51: 73:bd:12:f8:da:9d:35:62:02:d1:2f:0f:87:24:68:fd:32:9c: a1:65:bb:ab:78:8c:ca:ab:79:d4:2a:50:f7:f3:89:43:1f:7a: 61:af:5f:03:53:26:f1:08:b7:cd:f7:1e:0d:e8:47:5a:4a:06: 2e:33:b5:e6:f6:75:f3:ca:ef:e7:2c:a1:38:01:85:15:db:15: 6d:8f:b3:33:35:40:01:29:58:13:e2:01:f8:44:72:fc:3d:1f: 2c:93:4e:0b:82:3d:f9:2f:dd:e1:ee:53:6b:c4:cc:be:34:36: 12:7d:dc:69:86:a8:b9:78:a1:aa:11:fb:09:9f:5e:db:a3:1e: 98:21:49:9d:cb:64:bf:f3:68:17:49:d0:ca:ff:57:41:89:64: 79:34:43:ea:8f:2b:b8:45:b5:37:ca:77:2d:ef:23:20:df:5c: bc:4b:41:be:1f:90:2c:56:cd:7b:78:4f:f5:21:64:4d:90:09: 5b:55:aa:ea:02:dd:08:d3:ba:f5:b0:56:5d:11:37:77:f6:23: 31:ac:0b:9b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbzOnjbDPEInsHiXiVRHrfCcBc/kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDlaFw0yNTEwMDUwNDQ1MDlaMDMxMTAvBgNV BAMTKEJDQzlCMzM0NDExODRBMTU2OENEQTZEMUMzQTQ4RkMzRkQyNUVDMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr94VMtY8FY7NluvugdmQN27fv fek4QlUqr4Oqjep09Bs2IcicySPbdlm3V9R0xGeuDdjUUPByiRk3TDzU4jLHoAjt pgV2hBwApl9JeGCZkzWCmCXLGi6ASeWmyzuI9grGdyCdppKQAPXi7Rr/mtCT9iLF cdwdP6tSBp4gFsF+Zk01e2bposk/9gL7VwSFdTJXDXeLlNCbGLYx7J33zEKW69po T1YOCPyY36xeW32b3BlvgQxDV/xT1gHy/Okvc2VDJ8WGeXm5eyciUhJ3QUZVWMbS j99ZOskGM9gzYPbFbqxPcugZt924E1oErpwP7chlfvfzzjFCkLXLUdZ+aQK1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvMmzNEEYShVozabRw6SPw/0l7CYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPEwDQYJKoZIhvcNAQELBQADggEBAIp4 ZOgTvsV20AUVM07VEQ602x+4tIAy/P65CaIvLTZ6v9LdmOtgEKHzPAbxQJcj2wrK 37vtUXO9EvjanTViAtEvD4ckaP0ynKFlu6t4jMqredQqUPfziUMfemGvXwNTJvEI t833Hg3oR1pKBi4zteb2dfPK7+csoTgBhRXbFW2PszM1QAEpWBPiAfhEcvw9HyyT TguCPfkv3eHuU2vEzL40NhJ93GmGqLl4oaoR+wmfXtujHpghSZ3LZL/zaBdJ0Mr/ V0GJZHk0Q+qPK7hFtTfKdy3vIyDfXLxLQb4fkCxWzXt4T/UhZE2QCVtVquoC3QjT uvWwVl0RN3f2IzGsC5s= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org