$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200243.roa File: AS200243.roa (raw, json) Hash identifier: 4lJa+yBjzvRZEJLyF0jEAt+fAw0jFBoXeTTMKJJoGbs= Subject key identifier: 9E:0D:CA:13:55:FD:AB:D9:4B:2A:0F:C6:CA:B6:AC:E2:7C:40:5C:E0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 16763116B657155B0E5E462F7F7FFB90217A005D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200243.roa Signing time: Sun 05 Nov 2023 04:07:02 +0000 ROA not before: Sun 05 Nov 2023 04:02:02 +0000 ROA not after: Sun 03 Nov 2024 04:07:02 +0000 asID: 200243 IP address blocks: 2a0a:6040:900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:76:31:16:b6:57:15:5b:0e:5e:46:2f:7f:7f:fb:90:21:7a:00:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:02 2023 GMT Not After : Nov 3 04:07:02 2024 GMT Subject: CN=9E0DCA1355FDABD94B2A0FC6CAB6ACE27C405CE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:be:55:6b:f0:c4:ec:b3:fe:e4:94:69:dc:f1: d5:24:03:61:6e:68:fe:a2:66:aa:74:d9:a4:09:87: 10:9f:a7:21:ed:b4:66:16:c9:9a:08:c2:9e:b1:0a: 9d:8e:da:21:39:b4:03:77:b8:3d:88:c7:1c:e9:80: 60:cb:de:35:05:ad:76:66:f7:0f:4c:c9:e4:32:26: 08:eb:ce:45:c7:48:12:1e:d4:16:11:c6:30:d4:4d: b8:53:18:fd:81:51:c6:97:e0:74:20:e1:25:78:7e: f1:7f:35:e0:aa:e9:43:61:f2:a0:a7:3c:9f:d5:f8: 13:80:8c:8a:17:a4:63:f3:cd:31:61:d6:4a:10:31: 38:2a:de:76:71:14:1d:bf:e8:c6:8a:3b:a4:fe:2f: 73:e8:8d:7d:65:a8:c3:0e:df:bc:32:17:89:11:e1: 3b:20:c2:2f:a0:75:3f:39:96:24:36:8f:2a:95:2b: 21:db:c5:c3:38:3a:31:c7:74:18:53:22:bc:0c:16: 88:0f:b5:14:d1:d9:a7:42:56:1f:17:84:dc:c3:75: ae:3e:b2:48:ab:0d:2b:bc:fc:9d:7f:42:9a:cd:99: 43:6e:27:4a:e1:ee:fd:25:f3:4f:a0:2d:9f:78:32: d4:15:da:7b:c8:ec:25:1d:9c:7f:2c:d4:09:e1:a3: 20:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0D:CA:13:55:FD:AB:D9:4B:2A:0F:C6:CA:B6:AC:E2:7C:40:5C:E0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200243.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:900::/40 Signature Algorithm: sha256WithRSAEncryption 1c:b1:38:4a:15:06:6f:80:6d:0e:1d:3f:75:10:0a:68:09:6e: d3:1e:af:97:53:58:c9:9e:fe:20:55:74:80:15:f8:6f:1a:9b: c0:bf:36:f2:68:a0:9b:77:48:a8:70:4e:c7:90:0d:23:0b:94: 5a:08:c1:fa:1d:3a:2f:aa:c3:33:a0:f2:16:58:28:64:e8:fb: 4c:f4:07:4c:77:2b:37:a1:99:8c:d2:99:d9:7e:88:15:35:23: b4:68:9f:c1:dc:10:1c:7b:49:33:e2:78:93:14:92:62:12:bd: 38:7e:d0:23:c9:58:11:d3:90:0c:d2:7d:29:bf:0b:52:5b:c3: 36:71:65:8c:95:bf:1f:fd:54:32:6d:39:e1:8f:9f:58:e9:4d: a4:f9:40:31:16:59:c2:1b:41:54:e1:52:4c:3d:5c:91:6d:ef: df:5a:41:eb:9e:f6:4a:c3:4c:31:37:85:7f:87:6e:fd:27:72: fe:09:e8:f7:da:1e:cf:fa:cc:6a:52:e1:b8:ae:41:c9:52:89: 3a:99:9b:da:07:fc:e5:ae:0e:6e:33:e9:ab:3c:3e:04:43:48: ab:ef:fa:d9:b9:e8:58:fb:af:1e:09:20:16:c3:3d:66:2a:2d: 5f:05:cf:76:67:4c:a0:7b:b5:aa:47:91:a0:51:26:c6:37:7b: 41:0e:50:15 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFnYxFrZXFVsOXkYvf3/7kCF6AF0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDJaFw0yNDExMDMwNDA3MDJaMDMxMTAvBgNV BAMTKDlFMERDQTEzNTVGREFCRDk0QjJBMEZDNkNBQjZBQ0UyN0M0MDVDRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8vlVr8MTss/7klGnc8dUkA2Fu aP6iZqp02aQJhxCfpyHttGYWyZoIwp6xCp2O2iE5tAN3uD2IxxzpgGDL3jUFrXZm 9w9MyeQyJgjrzkXHSBIe1BYRxjDUTbhTGP2BUcaX4HQg4SV4fvF/NeCq6UNh8qCn PJ/V+BOAjIoXpGPzzTFh1koQMTgq3nZxFB2/6MaKO6T+L3PojX1lqMMO37wyF4kR 4Tsgwi+gdT85liQ2jyqVKyHbxcM4OjHHdBhTIrwMFogPtRTR2adCVh8XhNzDda4+ skirDSu8/J1/QprNmUNuJ0rh7v0l80+gLZ94MtQV2nvI7CUdnH8s1AnhoyAJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUng3KE1X9q9lLKg/Gyras4nxAXOAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAkwDQYJKoZIhvcNAQELBQADggEBAByx OEoVBm+AbQ4dP3UQCmgJbtMer5dTWMme/iBVdIAV+G8am8C/NvJooJt3SKhwTseQ DSMLlFoIwfodOi+qwzOg8hZYKGTo+0z0B0x3KzehmYzSmdl+iBU1I7Ron8HcEBx7 STPieJMUkmISvTh+0CPJWBHTkAzSfSm/C1JbwzZxZYyVvx/9VDJtOeGPn1jpTaT5 QDEWWcIbQVThUkw9XJFt799aQeue9krDTDE3hX+Hbv0ncv4J6PfaHs/6zGpS4biu QclSiTqZm9oH/OWuDm4z6as8PgRDSKvv+tm56Fj7rx4JIBbDPWYqLV8Fz3ZnTKB7 tapHkaBRJsY3e0EOUBU= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org