$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200969.roa File: AS200969.roa (raw, json) Hash identifier: G/tX7WMLjgwb13ryO+N2hUHKtx4qJpxKQEub8Jimxwo= Subject key identifier: DD:6B:A8:E7:D2:50:D3:66:15:CA:28:85:4A:A4:1F:43:5A:13:9A:57 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 28F873D236267B67A99C1E5165877AD88CE99600 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200969.roa Signing time: Sun 06 Oct 2024 04:45:16 +0000 ROA not before: Sun 06 Oct 2024 04:40:16 +0000 ROA not after: Sun 05 Oct 2025 04:45:16 +0000 asID: 200969 IP address blocks: 2a0a:6040:f400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f8:73:d2:36:26:7b:67:a9:9c:1e:51:65:87:7a:d8:8c:e9:96:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:16 2024 GMT Not After : Oct 5 04:45:16 2025 GMT Subject: CN=DD6BA8E7D250D36615CA28854AA41F435A139A57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:c0:52:d4:90:27:c2:17:48:ec:30:c9:a7: 8c:26:f9:aa:b1:65:52:ac:91:79:07:d4:b3:a6:42: 22:6a:88:4d:58:b1:74:ff:72:54:10:d8:3e:56:70: 94:bd:56:ef:7e:7c:0e:88:eb:7d:52:24:9c:24:97: 0a:a2:82:6c:c4:f4:48:15:bf:1e:d6:ca:c5:7f:35: 46:dc:e7:51:73:bd:b1:ba:b7:3f:15:88:5b:e4:cd: 9a:cc:09:11:99:57:9d:34:61:b6:56:03:30:5a:2d: ce:19:f0:5d:0f:4e:01:50:79:db:80:74:59:1b:32: 9e:be:8b:d2:7e:82:28:c5:a5:4c:2e:1e:dd:18:88: 56:c5:34:15:3b:c2:41:23:60:72:eb:18:5c:de:b9: e6:fa:8d:4a:56:7f:2a:09:29:ea:a6:ce:d3:00:09: 69:d8:a5:1d:85:21:0d:81:48:7f:28:b8:ec:f6:c3: 34:7b:b6:4c:23:e1:44:cc:8c:ea:c5:ae:b2:5c:1b: e5:ac:80:61:b3:e5:e0:1d:45:71:70:a7:4d:ed:fe: ab:15:19:e7:b2:37:30:d1:19:a2:b3:86:ae:c7:fc: 39:27:62:12:46:b1:96:28:34:84:cf:87:45:e2:b0: d6:87:8f:a3:70:5e:18:16:ae:f9:2e:03:b5:26:eb: bc:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6B:A8:E7:D2:50:D3:66:15:CA:28:85:4A:A4:1F:43:5A:13:9A:57 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200969.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f400::/40 Signature Algorithm: sha256WithRSAEncryption 75:e7:0e:fc:f0:c3:b4:a8:50:21:fd:d9:85:b6:7a:2a:99:64: f0:8c:4b:87:aa:4d:68:34:22:67:3e:78:93:96:9b:13:ad:6b: 3f:36:cb:fc:12:69:fc:10:19:f9:a7:79:c0:e1:82:d5:34:50: 24:d8:93:03:92:74:ba:5b:bb:8d:24:9b:a1:bf:d5:79:09:96: 0c:d5:0f:d4:90:06:dc:d3:36:2a:82:71:e0:d7:21:ad:da:a6: cc:f5:ed:ff:a0:6e:43:4d:a1:ff:36:7b:d4:e6:48:2d:8b:f3: 0f:97:4e:68:46:06:6d:1a:5a:44:cc:4b:48:c7:ac:f8:94:60: ea:04:69:9e:26:50:99:de:78:c0:cc:fa:38:3d:68:c7:08:76: ab:00:95:c3:f0:4e:7b:70:95:47:6e:5e:e5:3d:9e:e6:e6:ff: d6:9c:0d:a4:c6:e5:48:17:44:9a:1e:e3:1c:b6:a9:af:63:37: 8e:63:5f:42:86:b4:60:2f:8c:64:2e:df:a5:ce:1f:08:ac:f5: ea:78:7e:b1:82:b7:bb:56:73:85:99:15:88:cb:af:c1:8d:5f: 70:3b:87:cf:d2:78:8e:5d:5d:05:ef:36:c3:23:e5:83:ea:ca: 91:dc:00:4b:a7:a8:f4:15:1f:5f:f5:da:dd:b3:aa:12:0f:8b: 48:8f:c0:0f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKPhz0jYme2epnB5RZYd62IzplgAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMTZaFw0yNTEwMDUwNDQ1MTZaMDMxMTAvBgNV BAMTKERENkJBOEU3RDI1MEQzNjYxNUNBMjg4NTRBQTQxRjQzNUExMzlBNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJS8BS1JAnwhdI7DDJp4wm+aqx ZVKskXkH1LOmQiJqiE1YsXT/clQQ2D5WcJS9Vu9+fA6I631SJJwklwqigmzE9EgV vx7WysV/NUbc51FzvbG6tz8ViFvkzZrMCRGZV500YbZWAzBaLc4Z8F0PTgFQeduA dFkbMp6+i9J+gijFpUwuHt0YiFbFNBU7wkEjYHLrGFzeueb6jUpWfyoJKeqmztMA CWnYpR2FIQ2BSH8ouOz2wzR7tkwj4UTMjOrFrrJcG+WsgGGz5eAdRXFwp03t/qsV GeeyNzDRGaKzhq7H/DknYhJGsZYoNITPh0XisNaHj6NwXhgWrvkuA7Um67wRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3Wuo59JQ02YVyiiFSqQfQ1oTmlcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPQwDQYJKoZIhvcNAQELBQADggEBAHXn Dvzww7SoUCH92YW2eiqZZPCMS4eqTWg0Imc+eJOWmxOtaz82y/wSafwQGfmnecDh gtU0UCTYkwOSdLpbu40km6G/1XkJlgzVD9SQBtzTNiqCceDXIa3apsz17f+gbkNN of82e9TmSC2L8w+XTmhGBm0aWkTMS0jHrPiUYOoEaZ4mUJneeMDM+jg9aMcIdqsA lcPwTntwlUduXuU9nubm/9acDaTG5UgXRJoe4xy2qa9jN45jX0KGtGAvjGQu36XO Hwis9ep4frGCt7tWc4WZFYjLr8GNX3A7h8/SeI5dXQXvNsMj5YPqypHcAEunqPQV H1/12t2zqhIPi0iPwA8= -----END CERTIFICATE-----Generated at Thu Nov 21 18:46:55 2024 by rpki-client on console-ams.rpki-client.org