$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200172.roa File: AS200172.roa (raw, json) Hash identifier: lMUsJZVsR9gR20OEiKtg9QNlE0MkNQe2ZAZf3zC/U44= Subject key identifier: AA:45:67:4D:4F:35:A9:9D:44:D8:62:9D:82:F3:0A:65:5A:AE:01:79 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 771C492FBAF6CF61ADADBB0808F9C5398744F57B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200172.roa Signing time: Sun 05 Nov 2023 04:07:08 +0000 ROA not before: Sun 05 Nov 2023 04:02:08 +0000 ROA not after: Sun 03 Nov 2024 04:07:08 +0000 asID: 200172 IP address blocks: 2a0a:6040:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:1c:49:2f:ba:f6:cf:61:ad:ad:bb:08:08:f9:c5:39:87:44:f5:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:08 2023 GMT Not After : Nov 3 04:07:08 2024 GMT Subject: CN=AA45674D4F35A99D44D8629D82F30A655AAE0179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:da:f7:4f:39:62:a3:0f:68:98:51:a9:04:93: 7d:ba:e7:51:4f:ce:fa:52:0e:a0:0b:fc:58:34:13: f9:df:e9:45:c6:61:a2:6f:e0:77:80:05:ab:b0:0b: 09:8d:19:0d:21:3f:59:d7:35:9f:06:60:8c:77:eb: cf:41:20:7e:f1:e8:d3:31:71:40:09:88:74:39:70: f4:4c:2b:65:ed:f4:16:07:d1:f8:17:19:07:04:ad: d4:aa:36:a6:a2:22:76:19:e1:15:03:f1:4e:36:d2: b8:0b:a7:6c:7c:8e:06:ff:d8:14:de:6a:38:f3:da: 09:c0:51:3e:72:a6:a9:89:17:82:a9:ee:b8:a9:d2: 98:8e:a7:e0:5f:e7:51:12:01:ff:a3:7a:a0:c0:67: f2:17:00:87:7d:b0:d9:20:af:da:03:42:11:cb:c0: 88:5a:cf:16:2c:69:76:5d:8c:51:bb:24:6d:b5:33: 3a:8e:99:10:d2:09:65:f1:3b:3c:f6:64:98:ce:64: ad:75:62:12:b7:7b:d9:5f:f6:21:5a:57:59:e3:96: 49:24:e4:48:7b:b1:2a:ef:96:b2:a1:a7:5b:2b:28: 69:b5:f1:63:f0:15:14:d0:5a:44:57:82:81:29:bc: c4:16:ee:22:bb:69:8c:ad:f6:fd:a8:04:7f:af:28: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:45:67:4D:4F:35:A9:9D:44:D8:62:9D:82:F3:0A:65:5A:AE:01:79 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200172.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2600::/40 Signature Algorithm: sha256WithRSAEncryption 6c:fb:8a:c6:3a:b3:56:db:6a:f7:34:1a:e9:33:d1:d2:6f:ec: ae:0e:34:a7:45:f9:1b:a0:e7:70:2e:24:4b:f5:57:8e:f2:4e: 76:c2:07:7e:6e:44:0e:6c:c1:d3:f3:1d:69:1b:40:f2:60:c6: f6:43:1d:58:7b:50:b7:30:55:e5:20:bd:38:b7:c7:72:96:dc: 15:d1:3f:0e:d1:93:47:94:be:60:cb:92:2f:05:ba:d8:87:f8: 1b:7d:e8:3f:cc:0e:7f:62:74:51:82:b5:79:82:5b:66:0a:0e: a3:98:fe:e7:d1:67:e7:52:41:9d:5d:8c:8b:3c:f1:97:1e:b9: a5:4e:d9:42:e0:2e:f6:a9:56:36:10:9c:3f:9c:b6:49:b1:25: 14:9f:2e:33:4d:6e:aa:9e:d8:53:99:29:73:ad:af:91:36:7f: d2:bc:6c:b5:f7:b2:d1:03:f3:67:83:35:b0:58:6a:d6:7d:27: ab:6b:9f:3b:7f:51:c6:33:1a:63:e4:79:37:4b:b6:7e:28:16: 20:d1:75:2b:38:9d:37:8e:d1:5f:74:95:97:e8:86:27:03:e8: c7:5f:41:6b:e5:64:30:be:3c:18:2d:f6:40:9c:44:dc:49:9f: b7:d2:0d:fa:79:2e:53:af:4a:c1:86:fd:f5:4c:a0:aa:e0:57: bd:ed:29:05 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdxxJL7r2z2GtrbsICPnFOYdE9XswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDhaFw0yNDExMDMwNDA3MDhaMDMxMTAvBgNV BAMTKEFBNDU2NzRENEYzNUE5OUQ0NEQ4NjI5RDgyRjMwQTY1NUFBRTAxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP2vdPOWKjD2iYUakEk32651FP zvpSDqAL/Fg0E/nf6UXGYaJv4HeABauwCwmNGQ0hP1nXNZ8GYIx3689BIH7x6NMx cUAJiHQ5cPRMK2Xt9BYH0fgXGQcErdSqNqaiInYZ4RUD8U420rgLp2x8jgb/2BTe ajjz2gnAUT5ypqmJF4Kp7rip0piOp+Bf51ESAf+jeqDAZ/IXAId9sNkgr9oDQhHL wIhazxYsaXZdjFG7JG21MzqOmRDSCWXxOzz2ZJjOZK11YhK3e9lf9iFaV1njlkkk 5Eh7sSrvlrKhp1srKGm18WPwFRTQWkRXgoEpvMQW7iK7aYyt9v2oBH+vKLSNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUqkVnTU81qZ1E2GKdgvMKZVquAXkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMTcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCYwDQYJKoZIhvcNAQELBQADggEBAGz7 isY6s1bbavc0Gukz0dJv7K4ONKdF+Rug53AuJEv1V47yTnbCB35uRA5swdPzHWkb QPJgxvZDHVh7ULcwVeUgvTi3x3KW3BXRPw7Rk0eUvmDLki8FutiH+Bt96D/MDn9i dFGCtXmCW2YKDqOY/ufRZ+dSQZ1djIs88ZceuaVO2ULgLvapVjYQnD+ctkmxJRSf LjNNbqqe2FOZKXOtr5E2f9K8bLX3stED82eDNbBYatZ9J6trnzt/UcYzGmPkeTdL tn4oFiDRdSs4nTeO0V90lZfohicD6MdfQWvlZDC+PBgt9kCcRNxJn7fSDfp5LlOv SsGG/fVMoKrgV73tKQU= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org