$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200257.roa File: AS200257.roa (raw, json) Hash identifier: d8dT/ZZXmtQXYQejBFNvGzBuG94gE+v7yUfkfLzKuQA= Subject key identifier: 3D:8F:8D:32:8A:36:1F:82:CF:15:36:DA:2C:0E:B3:B2:E9:28:EF:88 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2821E91C8F98BD8CA1C20044834EBEA8815CBD1B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200257.roa Signing time: Sun 05 Nov 2023 04:07:08 +0000 ROA not before: Sun 05 Nov 2023 04:02:08 +0000 ROA not after: Sun 03 Nov 2024 04:07:08 +0000 asID: 200257 IP address blocks: 2a0a:6040:3300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:21:e9:1c:8f:98:bd:8c:a1:c2:00:44:83:4e:be:a8:81:5c:bd:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:08 2023 GMT Not After : Nov 3 04:07:08 2024 GMT Subject: CN=3D8F8D328A361F82CF1536DA2C0EB3B2E928EF88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:57:5a:92:c5:ad:5e:85:a0:47:f4:09:ca:63: 06:78:87:63:e6:12:fb:80:39:8d:de:ac:ae:9b:dc: 0c:83:ed:e9:32:25:9a:59:5b:d3:30:fe:c9:68:53: 75:ca:fc:c7:bc:4f:6d:30:c4:92:8d:cb:c4:a2:8c: c8:73:40:f3:30:76:d2:8e:ce:7b:92:bd:2b:d4:d7: ee:b1:ac:1a:92:4b:73:3b:bc:76:ca:06:fa:9a:88: 5d:60:63:e5:06:9b:a6:26:fa:66:d7:77:bc:8a:8f: f7:22:79:8e:2e:01:b0:65:d1:84:f5:ec:0d:d9:1a: f9:12:96:7f:01:45:f0:60:c5:01:59:7b:ad:39:cb: c9:81:9e:be:09:ef:83:56:30:8c:f6:55:34:bb:75: 7c:ea:72:05:82:e0:a0:38:9e:bc:fc:a2:c7:57:a9: 2f:d6:f4:32:df:e4:ab:fc:50:d3:c5:6c:4f:32:38: 09:d8:a1:cc:60:48:d5:cb:df:74:c6:46:da:f5:ed: 92:3e:d3:d5:93:13:d1:70:35:46:b5:b8:0e:4d:8a: 00:ef:3f:e1:8c:80:bb:7a:4b:e8:75:29:9d:b5:c2: 5b:ed:95:15:ca:0b:19:7f:cc:15:67:98:0a:69:22: 13:af:4b:76:69:d0:9c:db:cf:45:4b:03:f0:de:24: 57:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:8F:8D:32:8A:36:1F:82:CF:15:36:DA:2C:0E:B3:B2:E9:28:EF:88 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200257.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3300::/40 Signature Algorithm: sha256WithRSAEncryption a8:a1:28:83:75:06:72:7d:e5:12:e6:e0:43:e6:6c:9a:70:6f: 86:33:93:36:3f:c0:03:d3:28:97:eb:4f:b9:56:81:40:d0:ef: c4:b8:4a:ec:7b:0b:be:ae:a5:c2:ad:46:f4:0f:8f:fd:64:6e: 01:8a:c4:e7:25:06:a9:4f:40:28:9d:f4:3e:03:72:c6:e0:e6: f7:b2:a7:17:87:73:6a:9f:5a:60:ae:70:b3:f0:54:d1:a4:77: a4:6b:c3:76:88:13:94:9b:ad:c1:8e:13:65:1a:0d:9d:67:f2: 8a:4b:b2:f9:d0:91:5d:2a:7f:f3:0c:79:87:da:b3:57:5f:64: dd:ed:96:10:95:b6:45:fd:d0:0f:30:2a:53:be:8b:f7:e5:a6: 07:26:1c:3d:58:33:35:96:53:dc:0e:d4:04:4f:c7:e6:bd:e1: fd:b8:2c:79:70:bd:87:8f:8e:34:27:5c:03:48:82:79:90:65: 46:f2:93:ef:33:4b:da:3d:3c:0d:af:3c:f9:3d:7d:59:71:40: e0:86:0f:4e:88:75:e4:5a:96:49:c1:4a:bc:a5:7f:21:02:40: 64:f7:18:cd:e5:aa:29:6e:94:3b:a1:9d:33:4a:da:0b:67:4c: 6e:2a:15:67:2a:f9:57:04:79:81:3c:6f:97:0d:14:d1:4c:33: 6d:d3:0f:6e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKCHpHI+YvYyhwgBEg06+qIFcvRswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDhaFw0yNDExMDMwNDA3MDhaMDMxMTAvBgNV BAMTKDNEOEY4RDMyOEEzNjFGODJDRjE1MzZEQTJDMEVCM0IyRTkyOEVGODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiV1qSxa1ehaBH9AnKYwZ4h2Pm EvuAOY3erK6b3AyD7ekyJZpZW9Mw/sloU3XK/Me8T20wxJKNy8SijMhzQPMwdtKO znuSvSvU1+6xrBqSS3M7vHbKBvqaiF1gY+UGm6Ym+mbXd7yKj/cieY4uAbBl0YT1 7A3ZGvkSln8BRfBgxQFZe605y8mBnr4J74NWMIz2VTS7dXzqcgWC4KA4nrz8osdX qS/W9DLf5Kv8UNPFbE8yOAnYocxgSNXL33TGRtr17ZI+09WTE9FwNUa1uA5NigDv P+GMgLt6S+h1KZ21wlvtlRXKCxl/zBVnmAppIhOvS3Zp0Jzbz0VLA/DeJFd9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPY+NMoo2H4LPFTbaLA6zsuko74gwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDMwDQYJKoZIhvcNAQELBQADggEBAKih KIN1BnJ95RLm4EPmbJpwb4YzkzY/wAPTKJfrT7lWgUDQ78S4Sux7C76upcKtRvQP j/1kbgGKxOclBqlPQCid9D4Dcsbg5veypxeHc2qfWmCucLPwVNGkd6Rrw3aIE5Sb rcGOE2UaDZ1n8opLsvnQkV0qf/MMeYfas1dfZN3tlhCVtkX90A8wKlO+i/flpgcm HD1YMzWWU9wO1ARPx+a94f24LHlwvYePjjQnXANIgnmQZUbyk+8zS9o9PA2vPPk9 fVlxQOCGD06IdeRalknBSrylfyECQGT3GM3lqilulDuhnTNK2gtnTG4qFWcq+VcE eYE8b5cNFNFMM23TD24= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org