$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200141.roa File: AS200141.roa (raw, json) Hash identifier: kxDAzodX9a3Yup0pdD+hdhxhSpwt7ZLpDG/p76AAdRA= Subject key identifier: 2F:1F:1C:BB:C1:FD:21:C9:40:D8:A2:E5:DB:3E:B6:16:EE:D4:FB:5C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 35756EFBA0F4A1C8D0C3DFAC94179BECB124C588 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200141.roa Signing time: Sun 05 Nov 2023 04:07:04 +0000 ROA not before: Sun 05 Nov 2023 04:02:04 +0000 ROA not after: Sun 03 Nov 2024 04:07:04 +0000 asID: 200141 IP address blocks: 2a0a:6040:4a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:75:6e:fb:a0:f4:a1:c8:d0:c3:df:ac:94:17:9b:ec:b1:24:c5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:04 2023 GMT Not After : Nov 3 04:07:04 2024 GMT Subject: CN=2F1F1CBBC1FD21C940D8A2E5DB3EB616EED4FB5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4d:e0:ab:38:dc:5a:6a:e5:13:e1:5c:10:fc: f6:eb:d9:00:74:f1:5f:36:1b:e2:cb:1d:e5:36:54: 08:ce:a4:70:7b:43:b1:5d:8c:f3:46:c9:d9:16:4c: 07:4f:f4:9e:f5:3a:66:a7:96:6e:69:4c:5e:3c:93: 40:e3:26:77:c5:f0:c4:73:ec:cb:ed:31:8f:51:ac: d2:4d:20:0a:0b:9c:92:be:17:d6:36:db:22:1c:94: b3:36:bd:30:c8:cf:6d:d3:4b:e6:8d:58:95:39:e4: 3a:af:f0:34:46:77:47:73:87:cf:ff:ae:6f:20:c6: 6c:ab:59:5e:06:85:f3:94:95:bf:5b:6d:09:8c:4b: 47:7b:c2:33:7c:92:e8:cd:6f:89:02:27:03:ba:ce: dd:0f:a2:8d:e1:d9:45:a2:b5:f7:d6:32:cf:36:17: 96:79:b6:f9:05:fb:c2:78:6b:26:1c:9a:ef:58:f7: de:60:bb:72:ec:8c:d4:1f:08:f5:fc:0b:8e:0e:ca: 54:f1:2d:53:1b:12:e7:5a:93:50:b6:53:2e:f4:cc: 80:e6:a7:dc:3a:ab:e6:81:ef:0d:cc:a3:8a:46:9a: 9b:dc:8a:ce:1c:ff:3e:9c:f9:d7:71:69:39:b1:4d: 9d:4b:b3:fd:9e:e3:36:ab:36:32:ff:f1:71:bb:33: bd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1F:1C:BB:C1:FD:21:C9:40:D8:A2:E5:DB:3E:B6:16:EE:D4:FB:5C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200141.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4a00::/40 Signature Algorithm: sha256WithRSAEncryption a8:de:c5:35:8e:d5:e8:38:42:4a:62:0b:a0:7e:99:7c:16:c3: 20:c7:61:4e:9a:30:b2:60:66:db:f9:2d:fe:52:1f:e9:09:86: b9:22:88:6b:f6:10:a4:6a:2f:93:a1:51:b5:c0:df:7b:07:2e: 2a:74:1f:2a:3d:34:11:e0:3e:3a:81:22:f5:11:84:72:8a:23: 69:5d:c1:0a:7f:15:ef:ec:46:3e:52:c1:d0:9a:39:70:d0:3b: bf:b6:bd:2c:36:07:3e:93:5f:45:b4:95:e4:d5:6d:33:37:35: 9c:e8:f7:fa:4b:8a:c2:07:16:e5:a4:9e:16:5b:cd:92:2a:98: 29:dd:0c:90:90:f0:62:c4:3b:d0:25:af:a8:ac:6e:76:5a:02: 87:b1:92:0c:0e:70:9f:11:76:ab:c0:21:b8:df:5e:35:d8:8e: 8b:e3:7f:05:f4:c6:29:e4:eb:b0:c8:49:d2:86:ff:cb:b9:f5: 3e:80:0e:af:90:53:68:83:f2:cd:ab:d4:6d:a2:6d:66:95:21: d5:9d:af:51:c4:e2:56:4f:bf:a2:0b:91:c0:f6:f2:08:17:98: b2:db:d7:db:23:ea:99:e9:f8:c1:a0:24:c4:4e:46:01:52:1e: 7f:a3:d2:49:03:47:f8:b2:62:f6:f7:d2:68:89:7f:13:a8:bc: d8:d9:f2:5b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNXVu+6D0ocjQw9+slBeb7LEkxYgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDRaFw0yNDExMDMwNDA3MDRaMDMxMTAvBgNV BAMTKDJGMUYxQ0JCQzFGRDIxQzk0MEQ4QTJFNURCM0VCNjE2RUVENEZCNUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqTeCrONxaauUT4VwQ/Pbr2QB0 8V82G+LLHeU2VAjOpHB7Q7FdjPNGydkWTAdP9J71Omanlm5pTF48k0DjJnfF8MRz 7MvtMY9RrNJNIAoLnJK+F9Y22yIclLM2vTDIz23TS+aNWJU55Dqv8DRGd0dzh8// rm8gxmyrWV4GhfOUlb9bbQmMS0d7wjN8kujNb4kCJwO6zt0Poo3h2UWitffWMs82 F5Z5tvkF+8J4ayYcmu9Y995gu3LsjNQfCPX8C44OylTxLVMbEudak1C2Uy70zIDm p9w6q+aB7w3Mo4pGmpvcis4c/z6c+ddxaTmxTZ1Ls/2e4zarNjL/8XG7M709AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULx8cu8H9IclA2KLl2z62Fu7U+1wwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEowDQYJKoZIhvcNAQELBQADggEBAKje xTWO1eg4QkpiC6B+mXwWwyDHYU6aMLJgZtv5Lf5SH+kJhrkiiGv2EKRqL5OhUbXA 33sHLip0Hyo9NBHgPjqBIvURhHKKI2ldwQp/Fe/sRj5SwdCaOXDQO7+2vSw2Bz6T X0W0leTVbTM3NZzo9/pLisIHFuWknhZbzZIqmCndDJCQ8GLEO9Alr6isbnZaAoex kgwOcJ8RdqvAIbjfXjXYjovjfwX0xink67DISdKG/8u59T6ADq+QU2iD8s2r1G2i bWaVIdWdr1HE4lZPv6ILkcD28ggXmLLb19sj6pnp+MGgJMRORgFSHn+j0kkDR/iy Yvb30miJfxOovNjZ8ls= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org