$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200237.roa File: AS200237.roa (raw, json) Hash identifier: WUSFIHJva36D+twBOUDGwKgUDsLT/5a0ZvK6XHbGDLs= Subject key identifier: 13:C4:0F:F8:FA:53:18:53:9B:62:2E:7F:38:4D:CB:FC:CA:28:65:4C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 06C75E62E92EE6DD4055F780B61BA0CBDB88F7B6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200237.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 200237 IP address blocks: 2a0a:6040:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c7:5e:62:e9:2e:e6:dd:40:55:f7:80:b6:1b:a0:cb:db:88:f7:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=13C40FF8FA5318539B622E7F384DCBFCCA28654C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1c:3e:f5:77:b8:4c:22:48:e2:fc:01:6e:d1: a9:18:4a:d3:8a:51:3b:a8:af:d8:38:48:33:52:42: 06:1e:6d:8a:f4:af:73:a5:4c:24:bb:ff:14:a1:27: 3f:d3:75:3e:c4:18:cc:c8:83:9f:7b:f3:6a:1c:76: 38:0f:b4:c1:7c:ca:f4:34:e4:f0:b2:c1:68:de:c6: 83:a5:5d:40:81:c1:33:10:30:79:37:1c:57:39:68: d5:5d:f0:4b:62:5e:f1:4e:a2:70:f2:3a:10:bc:93: 6c:ae:bc:4c:33:bb:a6:73:63:b7:ad:1e:25:3a:8b: 0e:5a:23:16:1a:b6:4c:3f:78:5b:0a:04:fa:69:e0: 05:fd:e6:82:1f:cc:b6:61:36:7a:59:13:f5:25:9d: 56:ac:72:06:9d:f2:6e:1b:ec:d7:e6:7e:51:21:04: a9:fc:53:0d:1c:2e:44:f7:8e:ce:74:b7:5d:88:57: 52:62:bc:81:8f:34:ff:55:fb:82:d7:49:5d:b9:93: 49:a2:86:33:14:74:29:07:3c:c1:4a:24:39:95:cd: b9:18:55:1d:28:2c:dc:a2:29:cf:31:24:29:bb:28: b8:e5:71:20:9c:f6:ec:e5:98:16:92:02:41:b3:cf: 98:1f:bc:ee:bb:56:28:88:bc:a0:12:42:fd:13:ad: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C4:0F:F8:FA:53:18:53:9B:62:2E:7F:38:4D:CB:FC:CA:28:65:4C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200237.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3800::/40 Signature Algorithm: sha256WithRSAEncryption 14:16:45:ce:b0:ac:52:35:62:f5:cd:47:78:b6:d2:00:9d:d5: 14:a8:54:54:1d:1d:63:5f:b4:92:9e:7b:c3:5d:4a:6c:a8:4f: db:4e:8a:45:30:21:e9:b6:a3:30:63:db:0b:c2:53:32:8b:19: 56:61:f7:7f:e6:7d:75:ed:0f:8b:35:6b:5b:c2:17:7c:fb:2b: a1:5a:e6:cf:cf:f9:96:73:d8:8a:1f:85:a8:0d:44:69:b0:eb: f3:4a:2b:f4:cf:e7:65:cf:6d:ec:5f:b6:db:32:2f:09:87:f4: ff:49:30:c0:4f:1b:b5:0d:59:ac:04:4a:67:dc:34:3a:a7:55: c1:62:7e:f8:61:19:06:c4:82:e1:df:8d:28:0d:1c:06:0b:d4: b4:06:ba:c8:fa:ae:77:d1:c7:3b:00:c2:e8:3e:8e:61:a5:6e: 20:04:44:8b:ea:45:8d:e2:bb:44:e1:b3:8e:e6:aa:b0:7b:36: 67:e7:da:22:9b:25:43:56:09:46:ab:8b:9c:ef:81:72:aa:e7: 89:5f:c2:1b:1b:ef:7a:44:b5:56:d6:34:43:90:26:bd:9f:96: 13:c4:d3:95:54:95:2f:d0:8f:17:c0:e3:c7:87:57:cf:4d:f9: 89:9d:c1:19:c2:98:1e:da:cc:7b:e5:ef:d7:cd:ee:9f:e8:da: 6a:4e:4f:7d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBsdeYuku5t1AVfeAthugy9uI97YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDEzQzQwRkY4RkE1MzE4NTM5QjYyMkU3RjM4NERDQkZDQ0EyODY1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpHD71d7hMIkji/AFu0akYStOK UTuor9g4SDNSQgYebYr0r3OlTCS7/xShJz/TdT7EGMzIg59782ocdjgPtMF8yvQ0 5PCywWjexoOlXUCBwTMQMHk3HFc5aNVd8EtiXvFOonDyOhC8k2yuvEwzu6ZzY7et HiU6iw5aIxYatkw/eFsKBPpp4AX95oIfzLZhNnpZE/UlnVascgad8m4b7NfmflEh BKn8Uw0cLkT3js50t12IV1JivIGPNP9V+4LXSV25k0mihjMUdCkHPMFKJDmVzbkY VR0oLNyiKc8xJCm7KLjlcSCc9uzlmBaSAkGzz5gfvO67ViiIvKASQv0TrWwBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUE8QP+PpTGFObYi5/OE3L/MooZUwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDgwDQYJKoZIhvcNAQELBQADggEBABQW Rc6wrFI1YvXNR3i20gCd1RSoVFQdHWNftJKee8NdSmyoT9tOikUwIem2ozBj2wvC UzKLGVZh93/mfXXtD4s1a1vCF3z7K6Fa5s/P+ZZz2IofhagNRGmw6/NKK/TP52XP bexfttsyLwmH9P9JMMBPG7UNWawESmfcNDqnVcFifvhhGQbEguHfjSgNHAYL1LQG usj6rnfRxzsAwug+jmGlbiAERIvqRY3iu0Ths47mqrB7Nmfn2iKbJUNWCUari5zv gXKq54lfwhsb73pEtVbWNEOQJr2flhPE05VUlS/QjxfA48eHV89N+YmdwRnCmB7a zHvl79fN7p/o2mpOT30= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org