$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200992.roa File: AS200992.roa (raw, json) Hash identifier: IxhgsIGSYDdpisUiY1mXlbqv2xVKMMA3SlpxTSAlfRo= Subject key identifier: 73:1B:DF:E5:DA:4B:F4:29:CD:B7:EA:FD:3E:CE:18:D6:09:9C:E3:FD Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7444F0B167772842D6524F435D798A9B5C9D76B2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200992.roa Signing time: Sun 06 Oct 2024 04:45:01 +0000 ROA not before: Sun 06 Oct 2024 04:40:01 +0000 ROA not after: Sun 05 Oct 2025 04:45:01 +0000 asID: 200992 IP address blocks: 2a0a:6040:f600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 22 Nov 2024 04:12:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:44:f0:b1:67:77:28:42:d6:52:4f:43:5d:79:8a:9b:5c:9d:76:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Oct 6 04:40:01 2024 GMT Not After : Oct 5 04:45:01 2025 GMT Subject: CN=731BDFE5DA4BF429CDB7EAFD3ECE18D6099CE3FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:83:91:74:7f:6a:3e:53:55:86:f2:9c:f0:3f: f7:53:d9:ac:02:98:2e:54:01:87:99:40:41:d1:8f: 15:b2:5b:8d:f1:9b:c6:4f:a8:ef:8d:40:03:b9:37: ca:5b:fc:1d:50:ce:1c:8e:87:e7:4a:58:04:de:ff: 6e:87:62:85:dd:ce:53:f9:e0:1d:b6:be:6c:52:81: a0:29:39:97:e2:4b:a0:a4:e4:de:94:4a:3c:94:de: cc:fc:2b:67:bc:50:1d:9a:4b:37:6a:89:6f:d6:b9: f5:05:4c:5d:5c:ee:e9:83:2f:9f:b6:1c:3f:25:65: ba:b3:1b:17:41:cf:9e:bc:0c:5f:c4:e9:31:58:4e: a3:3a:ea:a8:77:a0:3c:c9:75:1a:36:61:ba:b4:b3: 77:a6:c1:8b:f4:e3:64:fd:5e:74:1c:3e:31:1d:d0: 75:c9:eb:07:12:c6:f0:a6:5f:72:cf:ce:9a:c0:79: b9:6d:a3:ca:c0:d8:cb:5b:b6:a9:a7:b9:43:ac:95: 5f:2c:8f:b9:07:48:13:ce:a6:b8:6d:ad:78:13:89: 9b:67:60:21:b0:c2:e8:b3:aa:5e:24:aa:53:9b:72: 45:3f:a9:c4:4c:f0:81:3e:80:32:18:a2:c3:06:d9: 4e:ba:0f:31:92:c5:91:6c:44:1e:e4:f4:ac:3f:ac: 3e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:1B:DF:E5:DA:4B:F4:29:CD:B7:EA:FD:3E:CE:18:D6:09:9C:E3:FD X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200992.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f600::/40 Signature Algorithm: sha256WithRSAEncryption 6d:55:1a:73:17:bb:ab:e9:81:5b:85:23:77:37:a8:fa:7c:7b: c4:33:49:26:17:6f:a6:b4:ad:f1:e1:ef:74:f8:3a:af:e7:56: 30:3c:05:2a:cb:55:ef:fb:8c:fd:a9:9d:17:3a:58:58:f1:db: 0f:46:e2:c5:3d:bb:d9:5f:96:3f:b6:d1:fe:4c:1f:49:2e:18: 8c:fa:b8:5f:85:7f:93:6e:6f:bc:e2:82:84:1c:85:fd:8c:94: 26:96:0b:d1:5d:03:9b:e3:3f:c2:fb:d9:86:0c:43:62:0e:02: 91:06:0d:53:ac:3b:43:51:74:ec:5a:d6:e5:85:da:69:02:e2: ee:f3:78:a5:aa:4e:de:ca:b9:1b:7d:e3:fc:6d:64:0c:49:64: cb:ee:c8:78:70:be:88:35:99:17:7e:4b:2a:b0:32:3d:32:bf: d6:d4:77:92:40:ac:37:23:29:9b:47:06:cc:8a:e1:3f:d8:12: 04:3c:41:fe:e3:b7:c8:5c:24:43:3a:54:03:eb:21:71:23:67: 35:c7:8e:91:34:3b:4d:b9:d7:3d:90:5f:d1:9c:14:ea:93:4a: 7d:6c:17:dc:8e:82:da:f3:ba:f3:e4:f5:d5:40:4c:12:b1:c3: e8:c1:45:5e:2c:c1:6a:9d:7b:6a:8d:8d:a5:d4:6c:69:e6:1d: a3:e2:4e:bc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdETwsWd3KELWUk9DXXmKm1yddrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNDEwMDYwNDQwMDFaFw0yNTEwMDUwNDQ1MDFaMDMxMTAvBgNV BAMTKDczMUJERkU1REE0QkY0MjlDREI3RUFGRDNFQ0UxOEQ2MDk5Q0UzRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNg5F0f2o+U1WG8pzwP/dT2awC mC5UAYeZQEHRjxWyW43xm8ZPqO+NQAO5N8pb/B1QzhyOh+dKWATe/26HYoXdzlP5 4B22vmxSgaApOZfiS6Ck5N6USjyU3sz8K2e8UB2aSzdqiW/WufUFTF1c7umDL5+2 HD8lZbqzGxdBz568DF/E6TFYTqM66qh3oDzJdRo2Ybq0s3emwYv042T9XnQcPjEd 0HXJ6wcSxvCmX3LPzprAeblto8rA2MtbtqmnuUOslV8sj7kHSBPOprhtrXgTiZtn YCGwwuizql4kqlObckU/qcRM8IE+gDIYosMG2U66DzGSxZFsRB7k9Kw/rD4fAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcxvf5dpL9CnNt+r9Ps4Y1gmc4/0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPYwDQYJKoZIhvcNAQELBQADggEBAG1V GnMXu6vpgVuFI3c3qPp8e8QzSSYXb6a0rfHh73T4Oq/nVjA8BSrLVe/7jP2pnRc6 WFjx2w9G4sU9u9lflj+20f5MH0kuGIz6uF+Ff5Nub7zigoQchf2MlCaWC9FdA5vj P8L72YYMQ2IOApEGDVOsO0NRdOxa1uWF2mkC4u7zeKWqTt7KuRt94/xtZAxJZMvu yHhwvog1mRd+SyqwMj0yv9bUd5JArDcjKZtHBsyK4T/YEgQ8Qf7jt8hcJEM6VAPr IXEjZzXHjpE0O0251z2QX9GcFOqTSn1sF9yOgtrzuvPk9dVATBKxw+jBRV4swWqd e2qNjaXUbGnmHaPiTrw= -----END CERTIFICATE-----Generated at Thu Nov 21 17:25:46 2024 by rpki-client on console-fra.rpki-client.org