$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200158.roa File: AS200158.roa (raw, json) Hash identifier: 4DyR7SFLbf2q6+TKfaWidk2p911sVjoxmob5G7bLx9Y= Subject key identifier: EA:AF:66:9F:3F:2F:3B:83:1A:1D:00:98:CE:72:16:89:FF:65:2E:7B Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5E3A85BEFD64DA611BD745A4D9C039403205D457 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200158.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 200158 IP address blocks: 2a0a:6040:600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:3a:85:be:fd:64:da:61:1b:d7:45:a4:d9:c0:39:40:32:05:d4:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=EAAF669F3F2F3B831A1D0098CE721689FF652E7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:02:06:70:bb:e2:6c:07:ba:83:16:34:24:e9: 2e:79:7f:22:c0:f1:9c:cf:0f:cb:f7:0f:19:29:46: d1:c0:1b:d1:3b:86:3e:fb:28:68:f5:82:db:07:c3: 4d:ed:2a:0b:d3:98:b5:83:0f:70:d8:94:d8:8d:3d: ca:6a:10:2e:e4:cb:53:68:d2:6b:68:7c:f8:27:9c: 91:f5:fd:7b:d2:79:1d:7c:62:f1:1c:2d:e7:fa:ee: 0c:fc:27:30:78:64:9b:0d:b2:4c:07:c2:41:99:9d: bc:bb:13:d1:42:f2:d0:99:cb:8f:82:63:fc:1b:83: 96:9e:a3:80:6e:a8:39:b7:36:d0:0c:76:6b:0d:38: d8:b9:49:e4:a6:ce:39:22:78:8a:6a:b4:56:66:51: 2e:77:6b:b7:f1:79:0e:b9:25:cf:7f:6c:57:e2:ba: be:92:a1:ff:17:f1:e8:f3:2f:1d:33:38:65:e2:1c: 02:f0:aa:43:0d:82:a8:8b:fa:e0:d8:62:5d:30:f4: cb:b1:22:c0:04:b4:af:ec:2a:37:f3:e2:43:0d:32: cc:24:ef:89:5c:a3:21:6e:e1:06:d3:ea:4a:34:2f: 11:65:6d:8b:87:3f:14:1e:50:89:5b:44:0f:bc:94: d3:6d:7a:23:47:3f:96:16:66:7f:11:7d:ce:ed:5c: 67:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:AF:66:9F:3F:2F:3B:83:1A:1D:00:98:CE:72:16:89:FF:65:2E:7B X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200158.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:600::/40 Signature Algorithm: sha256WithRSAEncryption 0b:0a:20:48:2d:3d:d7:cc:27:c2:02:2b:7e:20:1b:b6:ac:53: 3d:d4:e8:8d:e7:65:18:57:fc:20:d2:d8:88:e9:23:a1:e7:36: d5:e9:bb:5a:62:0f:d0:1f:83:ec:dc:ba:45:67:4d:9e:de:14: b4:dd:32:fd:7c:d4:c5:46:c7:12:ac:58:cc:a4:a3:ef:57:27: be:9f:f7:c4:d7:f9:03:5d:ea:b3:59:5f:32:69:a4:c9:e3:c2: a8:19:45:5c:7f:ce:03:32:23:d5:38:78:c9:7d:a0:82:26:f7: 6e:09:92:9e:10:d7:e5:f4:56:b6:51:43:95:fb:23:48:28:eb: e0:31:03:97:9d:5f:c3:e8:97:08:0c:6f:b0:cf:9a:e0:56:2d: 1e:42:c4:29:50:ea:6b:15:6f:fc:99:51:9f:40:3e:b6:2c:8e: 3a:29:c1:29:42:e6:ff:be:ba:6b:5c:00:34:ba:95:01:ef:3d: 58:d7:ee:bf:ed:dc:6a:0b:91:96:5c:4d:99:c3:e7:a1:2f:b0: 5c:1d:7e:da:c3:ee:62:1b:42:0a:63:3c:2e:9f:23:14:58:63: 29:1a:03:1d:63:bc:be:84:97:9b:ad:15:6f:e4:df:a8:47:60: dc:4d:24:ce:c2:1d:fd:63:96:81:38:8c:5d:ce:08:23:72:8c: b8:ea:38:26 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXjqFvv1k2mEb10Wk2cA5QDIF1FcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKEVBQUY2NjlGM0YyRjNCODMxQTFEMDA5OENFNzIxNjg5RkY2NTJFN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUAgZwu+JsB7qDFjQk6S55fyLA 8ZzPD8v3DxkpRtHAG9E7hj77KGj1gtsHw03tKgvTmLWDD3DYlNiNPcpqEC7ky1No 0mtofPgnnJH1/XvSeR18YvEcLef67gz8JzB4ZJsNskwHwkGZnby7E9FC8tCZy4+C Y/wbg5aeo4BuqDm3NtAMdmsNONi5SeSmzjkieIpqtFZmUS53a7fxeQ65Jc9/bFfi ur6Sof8X8ejzLx0zOGXiHALwqkMNgqiL+uDYYl0w9MuxIsAEtK/sKjfz4kMNMswk 74lcoyFu4QbT6ko0LxFlbYuHPxQeUIlbRA+8lNNteiNHP5YWZn8Rfc7tXGdRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6q9mnz8vO4MaHQCYznIWif9lLnswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAYwDQYJKoZIhvcNAQELBQADggEBAAsK IEgtPdfMJ8ICK34gG7asUz3U6I3nZRhX/CDS2IjpI6HnNtXpu1piD9Afg+zcukVn TZ7eFLTdMv181MVGxxKsWMyko+9XJ76f98TX+QNd6rNZXzJppMnjwqgZRVx/zgMy I9U4eMl9oIIm924Jkp4Q1+X0VrZRQ5X7I0go6+AxA5edX8PolwgMb7DPmuBWLR5C xClQ6msVb/yZUZ9APrYsjjopwSlC5v++umtcADS6lQHvPVjX7r/t3GoLkZZcTZnD 56EvsFwdftrD7mIbQgpjPC6fIxRYYykaAx1jvL6El5utFW/k36hHYNxNJM7CHf1j loE4jF3OCCNyjLjqOCY= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org