$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200268.roa File: AS200268.roa (raw, json) Hash identifier: j6uTRFooztF8npSsIhnBjyQQuQ2oSQvrec32jNU9CgU= Subject key identifier: 25:05:59:10:A8:83:E8:D7:6C:F3:87:9F:35:06:62:E2:4E:59:90:84 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5F769D9B86D4E9922D5D5148E3409CF694E5A7A4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200268.roa Signing time: Sun 05 Nov 2023 04:07:00 +0000 ROA not before: Sun 05 Nov 2023 04:02:00 +0000 ROA not after: Sun 03 Nov 2024 04:07:00 +0000 asID: 200268 IP address blocks: 2a0a:6040:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:76:9d:9b:86:d4:e9:92:2d:5d:51:48:e3:40:9c:f6:94:e5:a7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:00 2023 GMT Not After : Nov 3 04:07:00 2024 GMT Subject: CN=25055910A883E8D76CF3879F350662E24E599084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:09:4c:10:49:67:69:bf:f3:b5:46:ee:88:f4: 86:48:65:f2:37:f2:94:a1:a0:68:47:56:66:68:c5: 80:fd:3b:3f:af:89:0f:1f:c5:1a:ea:b2:39:aa:21: 0e:f2:17:61:89:1c:fa:de:20:5e:72:55:25:c4:83: 8b:57:47:84:c7:1d:ce:b1:b1:5a:71:01:23:c5:f9: 09:75:f3:5d:0e:dc:ee:3c:ce:d5:f1:57:58:ac:bd: 83:66:a2:c7:c7:b6:7f:e8:f2:13:ee:72:93:f3:73: 43:c6:ae:e4:a2:88:3f:44:b0:2f:97:59:fb:b7:87: 0b:c9:79:28:89:ea:65:9d:3e:b3:48:a8:a2:e6:39: 99:50:40:cf:82:e4:0d:c1:ac:15:57:d9:8c:0e:5d: 11:ba:90:77:89:4c:91:31:b2:99:d7:0b:86:77:bf: 23:66:19:c1:74:f6:7f:62:4b:bd:a0:bc:f8:f1:b8: fd:7e:41:c6:0d:8b:25:c8:82:c0:b6:17:6b:9a:57: 94:de:b9:a3:4e:e8:3a:32:d2:91:68:04:35:bb:4f: 29:53:9b:82:12:65:3d:10:ea:b2:49:68:b4:bd:81: 39:ab:13:f5:bc:96:d0:2f:63:e0:6b:e3:8e:f7:bf: 05:4e:70:9e:82:43:36:06:02:71:0b:3e:1e:6d:d5: d4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:05:59:10:A8:83:E8:D7:6C:F3:87:9F:35:06:62:E2:4E:59:90:84 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200268.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 59:53:c4:bb:7d:9f:30:20:1e:cb:3c:c5:ab:a1:93:21:9e:1c: b9:bf:f2:34:1e:fd:89:27:32:13:10:cb:fa:8d:55:dc:7d:da: 51:82:b8:a9:90:5d:ef:f2:57:b7:67:38:ba:cb:1b:25:33:3d: 97:40:f6:49:5c:5b:5d:cb:a1:1e:4d:9e:19:ab:23:ab:4e:de: 99:2f:dc:b1:3f:5a:96:cc:0c:77:aa:31:44:70:55:75:f2:36: db:f7:88:32:0a:11:dd:0d:93:00:9a:7f:6b:3e:3d:39:96:17: e0:b2:13:16:89:47:05:c7:5f:b9:2d:26:3f:38:1b:b5:29:f4: 4a:3d:f4:dc:63:b1:ab:5a:35:23:d2:d1:32:ff:ad:71:98:5e: 9c:41:ff:c6:af:b2:39:d9:88:af:c8:2f:8b:68:ec:64:8f:1e: 10:ad:da:b3:18:9d:ad:bf:87:fd:9d:85:4a:90:6c:ea:23:54: 78:ee:bc:2c:a0:7e:3b:e3:86:a0:39:4e:ce:f3:8e:fa:19:e6: 56:37:4e:53:20:82:f0:d8:3b:dd:ac:48:44:5f:c5:39:0d:c8: 7b:cb:41:f8:d9:eb:94:5c:44:ce:1a:f4:b2:0f:f6:a0:a1:b3: e8:f2:b3:e0:87:95:b8:62:6b:f7:34:05:4a:dd:e8:3d:76:6d: a1:ea:53:8b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX3adm4bU6ZItXVFI40Cc9pTlp6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDBaFw0yNDExMDMwNDA3MDBaMDMxMTAvBgNV BAMTKDI1MDU1OTEwQTg4M0U4RDc2Q0YzODc5RjM1MDY2MkUyNEU1OTkwODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJCUwQSWdpv/O1Ru6I9IZIZfI3 8pShoGhHVmZoxYD9Oz+viQ8fxRrqsjmqIQ7yF2GJHPreIF5yVSXEg4tXR4THHc6x sVpxASPF+Ql1810O3O48ztXxV1isvYNmosfHtn/o8hPucpPzc0PGruSiiD9EsC+X Wfu3hwvJeSiJ6mWdPrNIqKLmOZlQQM+C5A3BrBVX2YwOXRG6kHeJTJExspnXC4Z3 vyNmGcF09n9iS72gvPjxuP1+QcYNiyXIgsC2F2uaV5TeuaNO6Doy0pFoBDW7TylT m4ISZT0Q6rJJaLS9gTmrE/W8ltAvY+Br4473vwVOcJ6CQzYGAnELPh5t1dRRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJQVZEKiD6Nds84efNQZi4k5ZkIQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBswDQYJKoZIhvcNAQELBQADggEBAFlT xLt9nzAgHss8xauhkyGeHLm/8jQe/YknMhMQy/qNVdx92lGCuKmQXe/yV7dnOLrL GyUzPZdA9klcW13LoR5NnhmrI6tO3pkv3LE/WpbMDHeqMURwVXXyNtv3iDIKEd0N kwCaf2s+PTmWF+CyExaJRwXHX7ktJj84G7Up9Eo99NxjsataNSPS0TL/rXGYXpxB /8avsjnZiK/IL4to7GSPHhCt2rMYna2/h/2dhUqQbOojVHjuvCygfjvjhqA5Ts7z jvoZ5lY3TlMggvDYO92sSERfxTkNyHvLQfjZ65RcRM4a9LIP9qChs+jys+CHlbhi a/c0BUrd6D12baHqU4s= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org