$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200007.roa File: AS200007.roa (raw, json) Hash identifier: USKm13WmzSv/bE4S5XYxxXp9A9i0/h8bJh4b645M00E= Subject key identifier: 7F:FB:E6:4C:90:E4:B8:C0:FB:47:A1:6D:10:EA:1F:1A:C9:52:9E:8A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1D9AAF9650D821255C09352AE3459B18F930CF04 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200007.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 200007 IP address blocks: 2a0a:6040:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:9a:af:96:50:d8:21:25:5c:09:35:2a:e3:45:9b:18:f9:30:cf:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=7FFBE64C90E4B8C0FB47A16D10EA1F1AC9529E8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c7:02:33:87:70:4e:9e:73:7c:ee:68:80:9a: f5:75:d0:66:e0:7a:5b:e4:5e:5b:8b:f1:5f:aa:b7: ea:1c:c1:85:b5:f7:db:96:0a:0d:2a:fd:81:72:a7: 00:c8:68:96:81:59:a4:a6:7a:7f:80:a0:65:58:27: 53:ae:09:04:e9:95:08:9c:2a:6f:c5:6a:f8:49:47: ba:c9:34:33:b2:02:2c:5d:41:db:cd:54:a6:ff:9c: 29:23:7f:e0:87:bf:af:01:36:b4:d4:05:21:02:24: 14:72:d8:06:ba:b2:c9:aa:d4:b2:06:2d:8c:9c:e1: b1:b6:49:e0:bd:92:09:85:ea:2a:12:9a:5e:a0:1d: a4:0a:08:07:87:8b:0f:01:04:c1:f9:19:86:a0:6b: e1:0d:b7:40:fe:17:ac:74:3b:b7:99:1d:18:0d:67: 31:44:a3:ec:d4:e0:cf:94:22:bf:4f:78:dc:59:7f: 7f:dd:fa:3a:f9:87:92:7a:8c:3e:2c:1d:bc:05:b9: fe:be:8f:ed:21:ba:83:8d:0b:0d:a8:fc:0a:c7:24: 7f:de:d5:62:47:6e:d4:0b:44:42:45:15:06:a2:7e: d9:43:90:13:c8:51:70:41:f6:e5:55:66:26:3a:6a: 58:8f:4a:67:8b:9f:8a:3c:98:b5:fd:a0:60:e3:99: 27:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:FB:E6:4C:90:E4:B8:C0:FB:47:A1:6D:10:EA:1F:1A:C9:52:9E:8A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5900::/40 Signature Algorithm: sha256WithRSAEncryption 3c:9b:f9:c9:ee:21:69:16:8f:27:a3:31:28:71:75:c2:30:7d: 15:c0:5e:29:a0:8a:9b:07:bd:db:47:12:25:2b:c7:2b:b6:de: 6b:0a:0c:39:71:4a:5b:d9:6f:4f:93:65:0b:95:80:ef:1c:33: 57:a5:2d:7f:87:78:64:bb:ab:31:23:42:e4:51:30:37:b5:d0: d7:c3:18:95:ee:f3:10:ff:f3:40:a2:a1:31:ab:f9:23:b5:4e: f6:6c:3b:7f:38:6a:1f:98:28:c3:30:c5:4c:82:cb:f3:c5:21: 83:bc:71:64:e0:2c:25:9c:17:a1:b9:4f:dd:a6:e5:1c:71:47: 0c:ba:f0:2b:ae:11:f3:14:49:a5:96:87:9f:e7:a9:99:a8:3d: da:73:4c:ea:53:ab:1d:30:2e:75:0d:48:92:e2:53:8f:91:98: a7:ce:d4:3f:c5:68:4c:e8:39:5b:04:40:2e:99:d1:b6:a7:2b: fa:e4:9d:c0:e2:8e:79:f7:f1:29:e7:04:39:62:22:01:d8:19: d7:1d:77:00:19:66:ac:98:6d:f0:d3:d0:c8:02:f3:dc:8d:33: f7:3a:05:eb:17:b9:0f:0b:88:ca:c9:89:0b:a3:6c:e2:68:c3: da:2c:93:14:dc:99:7a:a3:d5:33:d3:8a:7c:79:1a:6b:53:15: d0:21:7a:ea -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHZqvllDYISVcCTUq40WbGPkwzwQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKDdGRkJFNjRDOTBFNEI4QzBGQjQ3QTE2RDEwRUExRjFBQzk1MjlFOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVxwIzh3BOnnN87miAmvV10Gbg elvkXluL8V+qt+ocwYW199uWCg0q/YFypwDIaJaBWaSmen+AoGVYJ1OuCQTplQic Km/FavhJR7rJNDOyAixdQdvNVKb/nCkjf+CHv68BNrTUBSECJBRy2Aa6ssmq1LIG LYyc4bG2SeC9kgmF6ioSml6gHaQKCAeHiw8BBMH5GYaga+ENt0D+F6x0O7eZHRgN ZzFEo+zU4M+UIr9PeNxZf3/d+jr5h5J6jD4sHbwFuf6+j+0huoONCw2o/ArHJH/e 1WJHbtQLREJFFQaiftlDkBPIUXBB9uVVZiY6aliPSmeLn4o8mLX9oGDjmScpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUf/vmTJDkuMD7R6FtEOofGslSnoowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFkwDQYJKoZIhvcNAQELBQADggEBADyb +cnuIWkWjyejMShxdcIwfRXAXimgipsHvdtHEiUrxyu23msKDDlxSlvZb0+TZQuV gO8cM1elLX+HeGS7qzEjQuRRMDe10NfDGJXu8xD/80CioTGr+SO1TvZsO384ah+Y KMMwxUyCy/PFIYO8cWTgLCWcF6G5T92m5RxxRwy68CuuEfMUSaWWh5/nqZmoPdpz TOpTqx0wLnUNSJLiU4+RmKfO1D/FaEzoOVsEQC6Z0banK/rkncDijnn38SnnBDli IgHYGdcddwAZZqyYbfDT0MgC89yNM/c6BesXuQ8LiMrJiQujbOJow9oskxTcmXqj 1TPTinx5GmtTFdAheuo= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org