$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200267.roa File: AS200267.roa (raw, json) Hash identifier: UIH8ZlJXYLCwTX3P1Siu52idCyQQNJjOhvJXfnd8kiM= Subject key identifier: 80:C4:2A:14:0A:78:50:46:6C:AF:FC:CE:9F:3C:D7:44:96:E1:28:A6 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 334CC13196F1321E9067D46A93098C6A35A830B5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200267.roa Signing time: Sun 05 Nov 2023 04:07:00 +0000 ROA not before: Sun 05 Nov 2023 04:02:00 +0000 ROA not after: Sun 03 Nov 2024 04:07:00 +0000 asID: 200267 IP address blocks: 2a0a:6040:c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:4c:c1:31:96:f1:32:1e:90:67:d4:6a:93:09:8c:6a:35:a8:30:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:00 2023 GMT Not After : Nov 3 04:07:00 2024 GMT Subject: CN=80C42A140A7850466CAFFCCE9F3CD74496E128A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:69:dd:ec:62:03:16:41:11:be:9f:84:5a:0b: 8c:c2:db:21:31:9d:e8:e7:c3:dc:48:6b:72:0a:de: a4:bc:c7:36:e3:94:bd:ba:8d:f3:32:1c:64:89:18: f9:8a:0f:79:9f:79:f7:6a:49:17:95:24:a4:ca:8b: 17:7b:9c:2d:bc:25:d8:20:5a:5d:87:f5:a0:4c:e3: 70:4d:6e:55:54:a0:70:d8:03:56:e6:03:21:5c:8b: 76:2d:3c:4d:5e:96:70:55:9a:38:37:88:40:8e:d2: 4e:a7:01:56:35:cd:69:9a:29:e4:06:bf:2f:fe:db: b8:2e:96:f0:90:a3:16:ff:0e:90:df:5f:a4:2b:00: 4a:73:f6:2f:e8:9f:c8:6d:6f:31:65:0f:79:16:70: 0a:6c:29:cd:23:08:e5:c4:c3:2b:a4:72:6a:5a:67: fe:6c:72:d6:0e:91:0b:43:f8:51:c1:8e:d8:b1:20: b7:8c:b3:ca:b9:7f:b4:05:f5:6d:43:ad:eb:25:3d: 4a:09:89:b9:41:19:cd:e8:9e:af:fa:a4:46:c3:8b: b1:53:44:ce:49:54:d1:d5:32:6b:d2:a0:35:b5:5a: c4:f8:8f:b6:a7:9c:0c:09:63:5c:cb:ab:5b:2c:a3: a8:a5:ce:fb:c5:98:44:65:39:c5:61:c5:15:fb:3d: 68:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C4:2A:14:0A:78:50:46:6C:AF:FC:CE:9F:3C:D7:44:96:E1:28:A6 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200267.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c00::/40 Signature Algorithm: sha256WithRSAEncryption 14:f8:f0:59:86:91:65:e1:5c:21:d0:d9:b3:b3:44:10:1a:33: 97:ad:bf:c8:02:7f:82:1e:4c:4b:c9:bc:59:8c:b9:41:46:02: 52:4d:50:91:36:00:77:77:01:8c:0b:3c:53:fe:9d:06:56:01: bb:70:94:da:b1:1f:20:8a:b2:bc:c1:13:a5:fb:05:c1:55:a3: ba:e8:df:84:d1:0e:f1:a0:af:64:02:86:46:9b:1c:b0:37:c2: 9b:35:64:95:1e:27:37:9d:fe:7f:5e:d3:b8:2c:53:9e:14:ce: 74:d3:a6:8d:55:f8:d6:8c:e1:bf:f7:09:81:f0:c6:0c:b7:cc: c4:4d:3e:72:ce:6d:64:93:20:08:28:7d:bc:46:7b:3e:b8:fd: 32:f6:b0:d1:04:49:7f:0f:e2:f3:2a:3e:38:b9:71:b5:3a:bc: 99:cb:57:90:c7:4e:31:99:c9:f3:37:88:36:7a:5a:7e:40:62: 53:b7:2b:13:9f:5f:66:35:92:c9:ad:6c:e8:7a:60:73:50:7a: 48:2f:f1:6f:aa:92:58:9a:49:9c:64:06:33:1a:03:d0:58:10: 43:09:f7:a2:27:96:43:24:04:b9:82:8b:ec:74:26:69:f9:c6: 02:6d:ce:50:2e:93:2a:8f:ee:95:fd:ac:b2:91:4d:7f:bc:5f: a0:7c:60:6c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM0zBMZbxMh6QZ9RqkwmMajWoMLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDBaFw0yNDExMDMwNDA3MDBaMDMxMTAvBgNV BAMTKDgwQzQyQTE0MEE3ODUwNDY2Q0FGRkNDRTlGM0NENzQ0OTZFMTI4QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXad3sYgMWQRG+n4RaC4zC2yEx nejnw9xIa3IK3qS8xzbjlL26jfMyHGSJGPmKD3mfefdqSReVJKTKixd7nC28Jdgg Wl2H9aBM43BNblVUoHDYA1bmAyFci3YtPE1elnBVmjg3iECO0k6nAVY1zWmaKeQG vy/+27gulvCQoxb/DpDfX6QrAEpz9i/on8htbzFlD3kWcApsKc0jCOXEwyukcmpa Z/5sctYOkQtD+FHBjtixILeMs8q5f7QF9W1DreslPUoJiblBGc3onq/6pEbDi7FT RM5JVNHVMmvSoDW1WsT4j7annAwJY1zLq1sso6ilzvvFmERlOcVhxRX7PWgjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgMQqFAp4UEZsr/zOnzzXRJbhKKYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAwwDQYJKoZIhvcNAQELBQADggEBABT4 8FmGkWXhXCHQ2bOzRBAaM5etv8gCf4IeTEvJvFmMuUFGAlJNUJE2AHd3AYwLPFP+ nQZWAbtwlNqxHyCKsrzBE6X7BcFVo7ro34TRDvGgr2QChkabHLA3wps1ZJUeJzed /n9e07gsU54UznTTpo1V+NaM4b/3CYHwxgy3zMRNPnLObWSTIAgofbxGez64/TL2 sNEESX8P4vMqPji5cbU6vJnLV5DHTjGZyfM3iDZ6Wn5AYlO3KxOfX2Y1ksmtbOh6 YHNQekgv8W+qkliaSZxkBjMaA9BYEEMJ96InlkMkBLmCi+x0Jmn5xgJtzlAukyqP 7pX9rLKRTX+8X6B8YGw= -----END CERTIFICATE-----Generated at Thu May 16 11:56:10 2024 by rpki-client on console-fra.rpki-client.org