$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200269.roa File: AS200269.roa (raw, json) Hash identifier: YA77yKhuIv2x94RfczqLNFgq3ohCY7AQDbBDV7zE6a8= Subject key identifier: 52:05:6B:CA:CF:69:19:97:49:1B:02:98:37:FB:70:57:C9:F4:F9:3A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 688D0668B9DC27DA1155FF1B29C4F50062415E97 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200269.roa Signing time: Sun 05 Nov 2023 04:06:57 +0000 ROA not before: Sun 05 Nov 2023 04:01:57 +0000 ROA not after: Sun 03 Nov 2024 04:06:57 +0000 asID: 200269 IP address blocks: 2a0a:6040:2f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:8d:06:68:b9:dc:27:da:11:55:ff:1b:29:c4:f5:00:62:41:5e:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:57 2023 GMT Not After : Nov 3 04:06:57 2024 GMT Subject: CN=52056BCACF691997491B029837FB7057C9F4F93A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7f:6f:39:65:bd:39:8e:27:94:eb:e5:7c:d9: 0d:dd:5a:fb:99:99:a3:f0:d5:81:c2:62:62:2e:6c: 30:9b:e6:ef:4c:25:f0:62:45:e4:52:32:7c:a3:ee: 2b:bf:de:2d:7b:d5:fd:bd:71:d2:14:22:16:af:f3: 0b:da:9b:3b:33:6d:0f:a6:aa:d9:2b:e0:4c:e8:17: e9:d6:77:2a:ab:19:27:08:03:e0:cd:64:02:a4:5c: 8a:7c:9b:7e:85:fe:9a:75:58:d4:9c:cf:60:20:05: 9c:ea:77:87:b9:9a:85:61:ad:3c:77:ce:25:1c:45: bd:b8:1d:5d:67:8a:e7:d0:44:7e:7c:09:4b:17:d6: f6:77:1b:51:70:dd:04:6b:9c:02:fe:b0:de:50:5d: 38:ec:87:02:6e:67:f7:36:73:ab:ab:17:91:1c:7f: 35:6c:31:f2:73:28:ab:3d:12:02:8a:0f:fa:b0:75: 4e:06:e8:09:0c:fb:78:94:7f:da:fa:8c:e9:12:bd: a1:0d:d0:de:af:bd:f8:d5:89:08:2c:3a:ac:79:62: f8:dc:12:86:f5:70:bd:ab:9b:26:85:fa:75:d9:01: c2:11:14:07:e2:e6:9f:a3:1f:a2:b1:83:12:85:37: 8e:59:db:7f:79:ef:64:a1:9c:4e:ce:8b:6b:f5:9c: ad:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:05:6B:CA:CF:69:19:97:49:1B:02:98:37:FB:70:57:C9:F4:F9:3A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200269.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2f00::/40 Signature Algorithm: sha256WithRSAEncryption 16:ae:54:18:f1:75:6c:28:98:d8:e4:b7:1f:f5:f4:6e:d2:f6: 1f:a3:ed:c1:f6:de:86:cf:3a:82:e2:58:20:37:5e:0d:6a:fa: b6:fc:ff:af:cf:dd:0d:11:43:fe:61:6e:c9:65:b1:44:fe:e6: e5:9f:d0:71:65:2e:c3:de:9d:de:cf:4e:65:26:bf:4d:2c:0a: 0e:8e:e8:b7:c7:9f:82:39:25:c3:0d:0a:6b:df:f5:ad:37:8b: a3:5d:61:b3:77:00:02:f3:c4:a8:c7:cc:d6:f1:3c:05:37:5a: a0:6a:ed:42:42:b4:ec:31:0d:56:39:da:a6:b2:68:82:0e:e4: c7:e6:78:dd:7b:f6:fc:f4:42:98:56:7e:a0:71:8b:53:ff:2f: b1:82:43:17:92:8b:6d:a5:2b:a0:22:e9:78:51:9f:52:d3:77: 76:36:ac:58:d6:19:42:86:c7:2b:c6:ba:ae:8f:fe:ae:00:42: 24:20:76:16:3d:5e:72:14:d5:33:ef:a7:be:82:82:0d:0c:97: 3a:6e:d6:5b:85:03:8b:06:0c:2b:f5:5a:62:7d:94:47:10:82: 98:60:47:b5:35:04:c5:f1:8f:17:9e:3b:86:39:01:78:93:57: 58:c7:4c:bb:57:ff:5f:7d:08:76:6f:a1:0c:83:1b:20:73:56: 95:12:bc:42 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaI0GaLncJ9oRVf8bKcT1AGJBXpcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNTdaFw0yNDExMDMwNDA2NTdaMDMxMTAvBgNV BAMTKDUyMDU2QkNBQ0Y2OTE5OTc0OTFCMDI5ODM3RkI3MDU3QzlGNEY5M0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0f285Zb05jieU6+V82Q3dWvuZ maPw1YHCYmIubDCb5u9MJfBiReRSMnyj7iu/3i171f29cdIUIhav8wvamzszbQ+m qtkr4EzoF+nWdyqrGScIA+DNZAKkXIp8m36F/pp1WNScz2AgBZzqd4e5moVhrTx3 ziUcRb24HV1niufQRH58CUsX1vZ3G1Fw3QRrnAL+sN5QXTjshwJuZ/c2c6urF5Ec fzVsMfJzKKs9EgKKD/qwdU4G6AkM+3iUf9r6jOkSvaEN0N6vvfjViQgsOqx5Yvjc Eob1cL2rmyaF+nXZAcIRFAfi5p+jH6KxgxKFN45Z239572ShnE7Oi2v1nK3bAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUgVrys9pGZdJGwKYN/twV8n0+TowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMjY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQC8wDQYJKoZIhvcNAQELBQADggEBABau VBjxdWwomNjktx/19G7S9h+j7cH23obPOoLiWCA3Xg1q+rb8/6/P3Q0RQ/5hbsll sUT+5uWf0HFlLsPend7PTmUmv00sCg6O6LfHn4I5JcMNCmvf9a03i6NdYbN3AALz xKjHzNbxPAU3WqBq7UJCtOwxDVY52qayaIIO5MfmeN179vz0QphWfqBxi1P/L7GC QxeSi22lK6Ai6XhRn1LTd3Y2rFjWGUKGxyvGuq6P/q4AQiQgdhY9XnIU1TPvp76C gg0Mlzpu1luFA4sGDCv1WmJ9lEcQgphgR7U1BMXxjxeeO4Y5AXiTV1jHTLtX/199 CHZvoQyDGyBzVpUSvEI= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org