$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200266.roa File: AS200266.roa (raw, json) Hash identifier: B84c2HII8JX3fkPp5FhL8bjZ8WWzZDNAzT/Yfc32Mak= Subject key identifier: 0D:57:83:71:34:ED:8D:18:85:79:FE:01:0E:42:06:D6:46:F7:6F:63 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 111C3517098AF14857D2B9B153DA80509498E828 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200266.roa Signing time: Sun 05 Nov 2023 04:07:12 +0000 ROA not before: Sun 05 Nov 2023 04:02:12 +0000 ROA not after: Sun 03 Nov 2024 04:07:12 +0000 asID: 200266 IP address blocks: 2a0a:6040:d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:1c:35:17:09:8a:f1:48:57:d2:b9:b1:53:da:80:50:94:98:e8:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:12 2023 GMT Not After : Nov 3 04:07:12 2024 GMT Subject: CN=0D57837134ED8D188579FE010E4206D646F76F63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c3:5f:33:64:71:90:2d:12:01:f1:69:57:29: 7d:96:a7:d1:95:1a:ef:10:a0:74:53:70:42:c4:0a: 08:de:ca:20:1c:3c:e2:77:98:1c:ee:ab:b9:40:7d: d3:c9:6d:c8:57:c4:53:f4:7e:0b:65:83:44:5a:b6: 40:4d:62:3e:c1:ec:13:8b:50:57:ef:2d:9f:b0:5c: d8:86:67:02:fe:b9:04:88:f1:4b:d9:bd:40:33:df: 07:0f:64:2d:68:46:9c:f9:0e:c3:cf:85:20:7e:4d: 74:f7:c9:db:65:b5:1f:f3:a4:94:35:01:21:7a:98: 73:d6:77:bb:9c:b4:2f:40:96:ca:82:b3:b2:6d:2e: 17:bb:e6:18:70:f2:51:7c:44:0a:a3:01:ca:49:6a: cc:92:ab:0f:ea:d8:1c:fc:fc:ba:2d:1e:8d:b8:82: 4f:39:18:ad:01:be:48:2d:74:7e:f6:b4:fd:f5:dc: b8:4b:f2:26:2a:24:f2:cf:58:27:be:b8:90:68:da: cc:e1:d6:ec:16:60:66:e8:d1:6a:c4:5d:fd:15:13: 62:cf:00:d1:e7:3e:d9:02:95:b3:4f:d0:57:63:eb: fd:ac:69:16:39:fb:ad:b1:15:30:e4:d1:6e:80:f8: 67:b8:c9:82:72:b9:34:5f:3c:32:ff:5c:f0:ae:fa: fa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:57:83:71:34:ED:8D:18:85:79:FE:01:0E:42:06:D6:46:F7:6F:63 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200266.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d00::/40 Signature Algorithm: sha256WithRSAEncryption 95:32:b8:65:90:85:4b:19:bd:d6:16:41:3a:82:a3:44:da:6c: 11:2a:54:01:bc:e8:35:35:86:19:3e:c8:ae:0d:a5:92:5a:65: f4:7d:e0:84:3a:ef:a4:02:58:e7:a3:38:95:4f:c7:09:f2:08: 01:3b:f5:a3:88:52:17:c0:65:84:fe:38:ed:a8:ee:b3:27:a3: 32:8f:7e:bf:8b:46:dd:46:17:09:e6:09:19:ca:c8:37:55:81: 25:32:ba:8d:44:14:37:94:cf:72:08:e7:36:83:9e:c8:7a:4d: 60:0e:93:7c:d3:c7:6a:3d:86:80:f6:fc:34:07:cc:7a:ca:a8: a4:62:00:9b:77:4a:71:ea:26:2f:a6:68:09:ec:57:80:79:67: 6e:86:02:56:ac:dd:7e:cf:53:f2:37:ac:3c:7e:e1:20:83:41: 3e:6c:48:c1:3f:e4:2f:6b:58:33:58:d7:0e:d5:a2:e7:53:85: ca:8d:5c:82:57:07:76:32:76:6d:87:2b:c7:ac:39:38:16:75: 51:87:23:12:b1:c7:a8:ad:e5:8d:04:e1:f4:e0:e0:db:46:de: 5b:fa:ed:54:8c:9b:b5:59:3f:ed:57:20:d8:23:9b:fa:ee:24: 2c:2b:4b:2c:c7:25:83:e9:c7:64:8a:fb:b1:bb:5d:4c:6e:58: e8:2b:c9:1d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUERw1FwmK8UhX0rmxU9qAUJSY6CgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTJaFw0yNDExMDMwNDA3MTJaMDMxMTAvBgNV BAMTKDBENTc4MzcxMzRFRDhEMTg4NTc5RkUwMTBFNDIwNkQ2NDZGNzZGNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiw18zZHGQLRIB8WlXKX2Wp9GV Gu8QoHRTcELECgjeyiAcPOJ3mBzuq7lAfdPJbchXxFP0fgtlg0RatkBNYj7B7BOL UFfvLZ+wXNiGZwL+uQSI8UvZvUAz3wcPZC1oRpz5DsPPhSB+TXT3ydtltR/zpJQ1 ASF6mHPWd7uctC9AlsqCs7JtLhe75hhw8lF8RAqjAcpJasySqw/q2Bz8/LotHo24 gk85GK0BvkgtdH72tP313LhL8iYqJPLPWCe+uJBo2szh1uwWYGbo0WrEXf0VE2LP ANHnPtkClbNP0Fdj6/2saRY5+62xFTDk0W6A+Ge4yYJyuTRfPDL/XPCu+vpJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDVeDcTTtjRiFef4BDkIG1kb3b2MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQA0wDQYJKoZIhvcNAQELBQADggEBAJUy uGWQhUsZvdYWQTqCo0TabBEqVAG86DU1hhk+yK4NpZJaZfR94IQ676QCWOejOJVP xwnyCAE79aOIUhfAZYT+OO2o7rMnozKPfr+LRt1GFwnmCRnKyDdVgSUyuo1EFDeU z3II5zaDnsh6TWAOk3zTx2o9hoD2/DQHzHrKqKRiAJt3SnHqJi+maAnsV4B5Z26G Alas3X7PU/I3rDx+4SCDQT5sSME/5C9rWDNY1w7VoudThcqNXIJXB3Yydm2HK8es OTgWdVGHIxKxx6it5Y0E4fTg4NtG3lv67VSMm7VZP+1XINgjm/ruJCwrSyzHJYPp x2SK+7G7XUxuWOgryR0= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org