$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200221.roa File: AS200221.roa (raw, json) Hash identifier: /X69ICqdbde2pUOiNTLQs47Q/dUgz/h91HojjnqXheU= Subject key identifier: 74:C7:96:34:DC:48:41:09:5B:97:D8:41:E7:47:CE:37:31:FD:1A:3E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6029E897A3A839F2AB73B0158186D16A6B317CB0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200221.roa Signing time: Sun 05 Nov 2023 04:07:07 +0000 ROA not before: Sun 05 Nov 2023 04:02:07 +0000 ROA not after: Sun 03 Nov 2024 04:07:07 +0000 asID: 200221 IP address blocks: 2a0a:6040:2100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:29:e8:97:a3:a8:39:f2:ab:73:b0:15:81:86:d1:6a:6b:31:7c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:07 2023 GMT Not After : Nov 3 04:07:07 2024 GMT Subject: CN=74C79634DC4841095B97D841E747CE3731FD1A3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:05:fc:6f:c5:d0:76:53:69:61:c9:ad:0b:dc: 81:42:dc:f2:67:1a:73:1a:a0:1e:68:e4:f6:d1:4a: b0:24:63:81:bb:32:c9:c1:af:1f:10:f8:c8:67:60: fd:0b:fd:e3:c7:50:cc:db:3e:fd:d5:e3:1d:7b:07: 13:d8:91:cc:05:a2:9a:07:d9:04:38:48:83:b2:9e: 86:3a:a2:89:03:f4:e5:01:b1:8b:0e:ad:15:ec:51: 3f:7a:8d:df:d3:40:5d:ce:27:8d:4d:d2:6a:2a:f2: 62:93:fc:23:dc:cb:bf:64:f5:0f:bb:b6:a0:7c:7c: ef:23:5f:95:72:d5:4d:92:d8:bc:68:de:b0:a3:1b: e5:39:79:65:94:2a:4d:0c:87:55:ff:27:42:44:4c: ee:99:d0:b5:b2:ff:b0:03:75:0e:bb:e9:54:27:3e: ef:2c:81:fd:61:80:cf:56:a7:4e:4e:98:11:a6:bc: 50:43:43:86:9d:1e:e7:e6:81:08:f9:cc:fb:37:26: fa:53:03:69:66:bc:bd:f0:8a:31:28:5c:30:86:57: f3:5e:b5:75:af:f2:2f:86:ad:f0:bd:59:f8:bd:e1: 06:e0:25:58:ea:59:c2:d0:17:44:6e:23:53:0c:c5: 54:f0:ac:ea:95:0f:be:57:06:79:d3:8f:78:0e:70: 27:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C7:96:34:DC:48:41:09:5B:97:D8:41:E7:47:CE:37:31:FD:1A:3E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200221.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2100::/40 Signature Algorithm: sha256WithRSAEncryption 37:39:31:b9:f6:bd:54:05:c2:ee:01:56:2d:e2:33:07:3d:80: 07:20:82:37:8a:a8:ed:09:c9:0f:2b:55:04:c1:fc:24:f4:f4: f3:b2:ef:88:2e:e9:ea:79:e2:ba:cf:5a:d1:02:42:c7:84:d8: c9:02:62:87:13:b8:a8:96:a4:8d:42:77:23:ca:b1:38:ab:07: ea:98:cf:a0:0b:0e:4d:c1:0d:aa:26:09:77:44:f8:b4:44:93: c6:94:bb:ec:01:22:2e:9a:eb:9f:25:db:c8:a6:b6:dd:df:fc: 01:76:4c:4c:01:b6:ea:58:c9:18:84:e2:83:8a:2d:9e:f4:29: f8:50:9c:26:cd:de:f1:09:73:9b:7b:77:8b:d2:18:fe:16:f5: f7:c5:4e:7b:9b:7e:a7:57:46:f7:bf:8e:c1:8d:fe:7d:05:67: 3a:c6:ac:b0:44:61:2c:c1:81:8f:bc:6e:64:24:0b:17:e5:63: 52:76:da:02:33:6f:72:00:24:14:1e:3e:79:ab:12:a6:c6:c7: c8:a2:b3:b6:bd:ab:50:f1:ed:d8:6d:0b:0a:b4:22:7d:ee:89: e4:1c:25:45:37:56:ba:c6:54:a9:5d:e8:f0:d7:88:26:b5:a0: 10:f8:d1:ef:50:c2:44:8a:50:dc:51:63:3c:eb:96:82:5d:84: 31:d7:7f:62 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYCnol6OoOfKrc7AVgYbRamsxfLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDdaFw0yNDExMDMwNDA3MDdaMDMxMTAvBgNV BAMTKDc0Qzc5NjM0REM0ODQxMDk1Qjk3RDg0MUU3NDdDRTM3MzFGRDFBM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKBfxvxdB2U2lhya0L3IFC3PJn GnMaoB5o5PbRSrAkY4G7MsnBrx8Q+MhnYP0L/ePHUMzbPv3V4x17BxPYkcwFopoH 2QQ4SIOynoY6ookD9OUBsYsOrRXsUT96jd/TQF3OJ41N0moq8mKT/CPcy79k9Q+7 tqB8fO8jX5Vy1U2S2Lxo3rCjG+U5eWWUKk0Mh1X/J0JETO6Z0LWy/7ADdQ676VQn Pu8sgf1hgM9Wp05OmBGmvFBDQ4adHufmgQj5zPs3JvpTA2lmvL3wijEoXDCGV/Ne tXWv8i+GrfC9Wfi94QbgJVjqWcLQF0RuI1MMxVTwrOqVD75XBnnTj3gOcCe/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdMeWNNxIQQlbl9hB50fONzH9Gj4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCEwDQYJKoZIhvcNAQELBQADggEBADc5 Mbn2vVQFwu4BVi3iMwc9gAcggjeKqO0JyQ8rVQTB/CT09POy74gu6ep54rrPWtEC QseE2MkCYocTuKiWpI1CdyPKsTirB+qYz6ALDk3BDaomCXdE+LREk8aUu+wBIi6a 658l28imtt3f/AF2TEwBtupYyRiE4oOKLZ70KfhQnCbN3vEJc5t7d4vSGP4W9ffF TnubfqdXRve/jsGN/n0FZzrGrLBEYSzBgY+8bmQkCxflY1J22gIzb3IAJBQePnmr EqbGx8iis7a9q1Dx7dhtCwq0In3uieQcJUU3VrrGVKld6PDXiCa1oBD40e9QwkSK UNxRYzzrloJdhDHXf2I= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org