$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200219.roa File: AS200219.roa (raw, json) Hash identifier: dWviQT0TAJBAxkID936ECliVFAmaWKQCqjTiQzL711k= Subject key identifier: 85:8B:5E:66:74:1E:AC:96:D0:91:B9:90:49:77:B9:C5:63:40:0F:04 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 26C1F1212F0A4012A1C2A01C8869280CCE1D922A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200219.roa Signing time: Sun 05 Nov 2023 04:07:22 +0000 ROA not before: Sun 05 Nov 2023 04:02:22 +0000 ROA not after: Sun 03 Nov 2024 04:07:22 +0000 asID: 200219 IP address blocks: 2a0a:6040:2500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c1:f1:21:2f:0a:40:12:a1:c2:a0:1c:88:69:28:0c:ce:1d:92:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:22 2023 GMT Not After : Nov 3 04:07:22 2024 GMT Subject: CN=858B5E66741EAC96D091B9904977B9C563400F04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f8:cc:77:d3:78:53:19:e5:23:ae:f4:c9:6a: 00:19:a9:b4:9a:49:d3:2f:89:1c:04:16:54:fd:04: 3b:29:df:c8:7b:85:f0:fc:5c:85:0f:80:3a:71:09: 2b:fe:66:19:b8:e8:83:14:22:50:38:2c:82:0c:84: 55:9b:6f:61:bb:a3:6d:8a:07:01:5e:2e:fe:7d:c2: fb:c7:0b:10:e0:be:fa:b9:41:17:93:2b:86:33:0b: cc:4c:04:49:21:c5:9f:fe:7b:16:48:9e:60:9c:d2: 33:a6:fe:6f:fa:83:1b:f9:08:df:a1:ca:8f:66:2c: 55:56:53:58:58:6f:22:44:22:05:31:8b:3a:80:c5: 6e:b6:bb:2c:3f:6e:33:01:d2:0d:19:dd:50:e4:a0: ab:f3:52:7e:9b:c9:43:e3:a2:9b:df:89:b8:2f:25: c5:28:a9:1c:c0:f3:a1:3b:c0:8c:cf:0e:89:52:4b: 46:48:84:4e:46:47:b5:42:0b:7f:ac:da:1a:96:18: 88:be:95:d9:2d:15:e2:80:e3:e2:3d:3d:6d:e7:ab: a6:54:b0:4a:27:e1:94:5f:6e:35:52:4e:03:ef:8f: 59:81:7c:24:43:c0:b7:8a:ed:ec:df:ce:41:b6:dc: 68:33:2c:85:46:6d:b1:f9:7c:cf:4f:21:ae:1a:8a: 6b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8B:5E:66:74:1E:AC:96:D0:91:B9:90:49:77:B9:C5:63:40:0F:04 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200219.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2500::/40 Signature Algorithm: sha256WithRSAEncryption 33:17:82:cc:c6:be:ae:cd:98:dc:8b:83:e1:35:16:ec:71:67: e7:5b:41:8e:1a:89:89:b2:a9:9a:c4:72:94:44:44:90:8d:94: fc:e8:72:fb:14:08:c5:ec:c5:3a:af:d4:c0:f5:af:46:90:b5: 23:e2:e9:2b:f3:b0:a9:8f:fd:a7:04:b1:3a:79:e7:f8:8f:74: ac:78:c7:83:7a:50:69:ee:9b:37:ba:05:d7:99:f4:35:74:e8: e9:35:9e:71:37:a2:1c:84:0f:a2:c9:70:f7:6d:ce:6c:23:fd: a5:a7:58:cb:8a:10:c6:e4:77:2f:46:dc:b0:33:8c:f5:b0:25: 12:ee:e5:54:aa:56:db:fa:ad:73:a7:30:5f:2d:73:71:80:b2: 89:ac:99:8c:3d:ae:83:cf:fe:de:ba:0d:09:f5:94:e2:4f:de: 27:76:a2:ba:d2:ea:c8:84:c7:fa:bf:fe:a0:36:d1:0d:f2:86: b7:59:43:da:2e:46:5c:22:70:82:85:d2:96:5b:30:90:57:c8: 21:2a:12:63:81:c5:3d:40:5a:88:30:16:74:b4:aa:f3:1d:7b: 41:c2:45:9e:8d:a3:33:27:40:c8:78:20:4a:99:d9:f3:54:2a: 59:d5:9a:4a:60:c6:fa:dd:4c:bd:3b:e3:de:7c:21:f9:6e:c6: 71:78:f9:90 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJsHxIS8KQBKhwqAciGkoDM4dkiowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjJaFw0yNDExMDMwNDA3MjJaMDMxMTAvBgNV BAMTKDg1OEI1RTY2NzQxRUFDOTZEMDkxQjk5MDQ5NzdCOUM1NjM0MDBGMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi+Mx303hTGeUjrvTJagAZqbSa SdMviRwEFlT9BDsp38h7hfD8XIUPgDpxCSv+Zhm46IMUIlA4LIIMhFWbb2G7o22K BwFeLv59wvvHCxDgvvq5QReTK4YzC8xMBEkhxZ/+exZInmCc0jOm/m/6gxv5CN+h yo9mLFVWU1hYbyJEIgUxizqAxW62uyw/bjMB0g0Z3VDkoKvzUn6byUPjopvfibgv JcUoqRzA86E7wIzPDolSS0ZIhE5GR7VCC3+s2hqWGIi+ldktFeKA4+I9PW3nq6ZU sEon4ZRfbjVSTgPvj1mBfCRDwLeK7ezfzkG23GgzLIVGbbH5fM9PIa4aimtDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhYteZnQerJbQkbmQSXe5xWNADwQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjE5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCUwDQYJKoZIhvcNAQELBQADggEBADMX gszGvq7NmNyLg+E1FuxxZ+dbQY4aiYmyqZrEcpRERJCNlPzocvsUCMXsxTqv1MD1 r0aQtSPi6SvzsKmP/acEsTp55/iPdKx4x4N6UGnumze6BdeZ9DV06Ok1nnE3ohyE D6LJcPdtzmwj/aWnWMuKEMbkdy9G3LAzjPWwJRLu5VSqVtv6rXOnMF8tc3GAsoms mYw9roPP/t66DQn1lOJP3id2orrS6siEx/q//qA20Q3yhrdZQ9ouRlwicIKF0pZb MJBXyCEqEmOBxT1AWogwFnS0qvMde0HCRZ6NozMnQMh4IEqZ2fNUKlnVmkpgxvrd TL074958IfluxnF4+ZA= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org