$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200122.roa File: AS200122.roa (raw, json) Hash identifier: OvhSdbRyoFH3ZlDZRntoBfCLHNBpO9XjktyjX3YF4xM= Subject key identifier: 75:EF:0A:21:D6:3E:48:CF:42:47:8F:FB:7F:6E:08:C0:84:2D:F2:59 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5EB34E17A22DE7CA74C42359B42A64826AD9BF34 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200122.roa Signing time: Sun 05 Nov 2023 04:07:03 +0000 ROA not before: Sun 05 Nov 2023 04:02:03 +0000 ROA not after: Sun 03 Nov 2024 04:07:03 +0000 asID: 200122 IP address blocks: 2a0a:6040:e700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:b3:4e:17:a2:2d:e7:ca:74:c4:23:59:b4:2a:64:82:6a:d9:bf:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:03 2023 GMT Not After : Nov 3 04:07:03 2024 GMT Subject: CN=75EF0A21D63E48CF42478FFB7F6E08C0842DF259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f7:47:4c:54:9a:bf:74:4a:ad:f2:16:5f:08: 77:f3:47:e6:da:9a:ec:98:8c:3a:6e:e3:c6:8d:4f: 44:dc:4e:36:62:0f:d8:a4:f0:92:b5:a4:ce:1c:7b: ed:3b:f9:0c:4b:56:d5:8f:cf:0a:3b:37:71:2d:c5: 38:d3:dc:00:ec:22:fb:12:5f:3c:7b:0b:b7:c5:1f: b7:90:4f:ae:db:3a:9a:5e:d1:a0:a1:bd:c6:01:5b: a2:36:2f:65:6a:3e:1d:8e:1d:a9:58:d0:ca:55:bb: 02:2b:ce:d0:a2:22:32:4a:34:01:2a:68:3b:48:07: 2e:fd:49:c7:ee:c5:ff:35:b7:d6:2a:58:28:d7:cb: 46:4c:f9:8b:ff:7d:dd:13:47:de:46:54:76:c4:30: 62:17:75:46:e7:cf:12:64:dc:4f:e0:96:9e:df:ea: 45:96:86:8a:e9:bb:53:ef:92:ca:0e:6e:72:93:19: 08:7a:e3:2d:cd:22:4c:bd:f7:1a:19:f7:68:26:cb: bf:0a:e6:a2:15:89:9c:6f:ba:29:8c:c7:cd:fd:f0: bc:cf:a1:12:50:6b:bb:20:20:9f:88:ac:5f:50:2e: 34:7c:ed:73:f7:1b:ae:d7:1d:34:c0:5b:00:ad:00: 21:43:9b:30:9d:81:d5:21:2e:30:e9:38:ba:8f:c5: 44:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EF:0A:21:D6:3E:48:CF:42:47:8F:FB:7F:6E:08:C0:84:2D:F2:59 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200122.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e700::/40 Signature Algorithm: sha256WithRSAEncryption 81:f4:e7:25:28:d1:cf:7c:60:0a:b9:96:73:32:65:9f:d0:f5: 42:7e:f1:33:7d:7b:ab:81:ed:82:bb:9e:2f:95:df:07:98:63: 94:c6:69:13:6a:98:82:75:ca:31:4d:2e:e8:21:9c:52:96:8b: 73:51:22:0a:8b:9c:4e:87:08:aa:d8:d1:0d:88:7d:ef:83:3b: 12:8d:5c:52:94:89:7d:e1:9e:16:ad:67:95:78:8e:95:04:ee: be:e2:2d:3c:22:c8:5d:ef:e8:02:0a:46:2b:43:97:e8:9b:c5: 1f:80:97:9b:78:9c:d9:a5:59:ab:56:3b:ae:60:e0:a8:29:2d: 0f:09:39:53:93:87:9f:c3:bd:f6:66:19:32:99:1c:00:50:0f: c5:b8:fc:a4:9d:08:27:03:f5:ad:b7:26:26:61:0d:76:dd:02: e1:e5:9a:5d:ef:9a:d5:10:a5:9e:c0:e3:57:2a:7d:89:38:ff: 63:8d:63:63:0d:fe:63:02:90:8a:3f:26:90:86:01:c7:7e:72: 3f:c0:f3:84:94:59:f7:de:05:bd:43:0d:a5:8a:83:d1:b7:e0: 0a:d1:35:37:d5:8f:ca:21:38:0b:4a:69:bc:70:33:b3:93:05: cc:1b:72:26:81:f7:7b:cd:f9:c5:3b:8e:a3:a7:a7:f5:a0:f1: 9b:3b:d3:61 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXrNOF6It58p0xCNZtCpkgmrZvzQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDNaFw0yNDExMDMwNDA3MDNaMDMxMTAvBgNV BAMTKDc1RUYwQTIxRDYzRTQ4Q0Y0MjQ3OEZGQjdGNkUwOEMwODQyREYyNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ90dMVJq/dEqt8hZfCHfzR+ba muyYjDpu48aNT0TcTjZiD9ik8JK1pM4ce+07+QxLVtWPzwo7N3EtxTjT3ADsIvsS Xzx7C7fFH7eQT67bOppe0aChvcYBW6I2L2VqPh2OHalY0MpVuwIrztCiIjJKNAEq aDtIBy79Scfuxf81t9YqWCjXy0ZM+Yv/fd0TR95GVHbEMGIXdUbnzxJk3E/glp7f 6kWWhorpu1PvksoObnKTGQh64y3NIky99xoZ92gmy78K5qIViZxvuimMx8398LzP oRJQa7sgIJ+IrF9QLjR87XP3G67XHTTAWwCtACFDmzCdgdUhLjDpOLqPxURhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUde8KIdY+SM9CR4/7f24IwIQt8lkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOcwDQYJKoZIhvcNAQELBQADggEBAIH0 5yUo0c98YAq5lnMyZZ/Q9UJ+8TN9e6uB7YK7ni+V3weYY5TGaRNqmIJ1yjFNLugh nFKWi3NRIgqLnE6HCKrY0Q2Ife+DOxKNXFKUiX3hnhatZ5V4jpUE7r7iLTwiyF3v 6AIKRitDl+ibxR+Al5t4nNmlWatWO65g4KgpLQ8JOVOTh5/DvfZmGTKZHABQD8W4 /KSdCCcD9a23JiZhDXbdAuHlml3vmtUQpZ7A41cqfYk4/2ONY2MN/mMCkIo/JpCG Acd+cj/A84SUWffeBb1DDaWKg9G34ArRNTfVj8ohOAtKabxwM7OTBcwbciaB93vN +cU7jqOnp/Wg8Zs702E= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org