$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200242.roa File: AS200242.roa (raw, json) Hash identifier: eq+KRHBDMkAsfcx0mQ1X89o4bxVxfNhCu4cMzCefrsc= Subject key identifier: 9A:70:03:46:D3:EC:B8:D9:D9:97:7A:3C:C2:57:86:30:7E:E6:4F:14 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 53AE36D09B94BB9CA685E3302D0FB0BA31633500 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200242.roa Signing time: Sun 05 Nov 2023 04:07:22 +0000 ROA not before: Sun 05 Nov 2023 04:02:22 +0000 ROA not after: Sun 03 Nov 2024 04:07:22 +0000 asID: 200242 IP address blocks: 2a0a:6040:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:ae:36:d0:9b:94:bb:9c:a6:85:e3:30:2d:0f:b0:ba:31:63:35:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:22 2023 GMT Not After : Nov 3 04:07:22 2024 GMT Subject: CN=9A700346D3ECB8D9D9977A3CC25786307EE64F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c4:2a:20:35:fd:8f:05:d9:14:10:01:c3:ee: f7:ff:eb:58:4d:8d:2b:4c:2c:a4:84:fb:01:2d:fd: 7c:ba:2c:45:f8:90:cb:49:56:a6:5b:ee:47:3e:1f: 5f:d1:d6:3b:8b:75:27:16:6a:5a:e4:bd:04:de:52: 1e:74:34:70:cf:64:26:b0:f0:d4:4e:eb:33:d9:fc: 07:96:9d:fa:90:b5:cf:06:61:34:3a:48:a4:63:80: db:cf:27:67:75:d6:ed:9a:15:bd:8d:61:ef:1a:89: 6c:c5:28:a7:4e:d2:eb:e3:a8:06:71:34:9b:d1:7b: d5:79:25:f3:f1:49:99:a0:e5:12:66:f9:78:36:2f: 75:aa:14:94:40:6f:0e:c1:f8:dc:1b:92:2e:4d:8a: 88:0a:3a:b9:02:56:ae:a2:ed:06:75:75:14:6d:0e: c3:01:6d:09:f7:70:11:72:63:46:e2:fd:a5:50:f9: 6f:57:a3:45:17:1c:2b:00:37:0b:c4:1f:b6:c6:04: bc:b7:7c:98:20:3f:e1:fa:0a:b2:29:ac:c5:e0:dd: cd:46:f8:7f:22:26:fd:c7:7f:17:0e:2c:c9:71:81: 38:6b:1b:52:1f:01:a2:45:d0:d8:5f:44:b1:d1:20: 09:e6:47:76:a4:22:3e:ba:33:54:99:8c:f3:c1:4c: a5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:70:03:46:D3:EC:B8:D9:D9:97:7A:3C:C2:57:86:30:7E:E6:4F:14 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4100::/40 Signature Algorithm: sha256WithRSAEncryption bf:bb:ca:4a:42:98:d0:2f:d3:e6:63:9f:b9:61:49:43:5e:27: 31:37:3c:f2:dd:5a:c4:2e:ed:23:93:1b:9e:8b:1f:3d:a1:67: 85:4e:b4:9c:93:80:ed:cb:1b:37:ac:1f:1c:e9:76:8c:15:c9: c9:29:98:7a:f9:c8:a0:18:02:87:39:d6:dc:33:a4:84:e1:e2: 84:5b:16:ea:ee:f5:aa:10:4a:19:2b:e8:13:57:21:15:d9:1b: c1:6f:46:be:27:68:cf:7f:5e:80:49:b3:c1:59:dc:d5:0c:6c: db:a2:3f:ca:5d:56:5e:e9:50:64:8f:c5:66:46:33:5a:c8:d0: d1:58:ed:b1:0f:3a:93:8f:c7:68:dd:87:63:c3:0c:00:00:d9: fa:16:00:32:30:d6:e7:60:5b:d1:31:6c:bb:02:0d:b3:6d:6a: 60:96:fa:b3:22:fc:9b:4f:64:37:d5:96:88:9a:3e:9a:4d:ae: 91:8e:68:8e:81:7e:6d:52:3d:55:b1:c1:a1:31:0d:5c:1f:cb: 14:f2:72:31:c7:d0:ff:c8:d8:9a:75:e6:6e:22:8d:72:be:4e: fc:1a:96:cc:d1:20:2e:aa:05:75:ae:2a:1c:02:39:e6:28:e0: de:e6:10:a9:3a:59:7d:65:2e:6c:ea:c8:38:fa:dd:40:92:bd: 30:79:65:8d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUU6420JuUu5ymheMwLQ+wujFjNQAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjJaFw0yNDExMDMwNDA3MjJaMDMxMTAvBgNV BAMTKDlBNzAwMzQ2RDNFQ0I4RDlEOTk3N0EzQ0MyNTc4NjMwN0VFNjRGMTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+xCogNf2PBdkUEAHD7vf/61hN jStMLKSE+wEt/Xy6LEX4kMtJVqZb7kc+H1/R1juLdScWalrkvQTeUh50NHDPZCaw 8NRO6zPZ/AeWnfqQtc8GYTQ6SKRjgNvPJ2d11u2aFb2NYe8aiWzFKKdO0uvjqAZx NJvRe9V5JfPxSZmg5RJm+Xg2L3WqFJRAbw7B+Nwbki5NiogKOrkCVq6i7QZ1dRRt DsMBbQn3cBFyY0bi/aVQ+W9Xo0UXHCsANwvEH7bGBLy3fJggP+H6CrIprMXg3c1G +H8iJv3HfxcOLMlxgThrG1IfAaJF0NhfRLHRIAnmR3akIj66M1SZjPPBTKV3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmnADRtPsuNnZl3o8wleGMH7mTxQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEEwDQYJKoZIhvcNAQELBQADggEBAL+7 ykpCmNAv0+Zjn7lhSUNeJzE3PPLdWsQu7SOTG56LHz2hZ4VOtJyTgO3LGzesHxzp dowVyckpmHr5yKAYAoc51twzpITh4oRbFuru9aoQShkr6BNXIRXZG8FvRr4naM9/ XoBJs8FZ3NUMbNuiP8pdVl7pUGSPxWZGM1rI0NFY7bEPOpOPx2jdh2PDDAAA2foW ADIw1udgW9ExbLsCDbNtamCW+rMi/JtPZDfVloiaPppNrpGOaI6Bfm1SPVWxwaEx DVwfyxTycjHH0P/I2Jp15m4ijXK+TvwalszRIC6qBXWuKhwCOeYo4N7mEKk6WX1l LmzqyDj63UCSvTB5ZY0= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org