$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200307.roa File: AS200307.roa (raw, json) Hash identifier: OX0zREgJqSKff5Aq7+//IuOgi2tBelOh/a5dn248Br0= Subject key identifier: 55:F9:98:85:05:3B:26:E2:15:D8:3E:26:68:29:23:2E:EA:90:72:E8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 619505EEB377F1679E6568544C35752C5B1B789D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200307.roa Signing time: Sun 05 Nov 2023 04:07:20 +0000 ROA not before: Sun 05 Nov 2023 04:02:20 +0000 ROA not after: Sun 03 Nov 2024 04:07:20 +0000 asID: 200307 IP address blocks: 2a0a:6040:ac00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:95:05:ee:b3:77:f1:67:9e:65:68:54:4c:35:75:2c:5b:1b:78:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:20 2023 GMT Not After : Nov 3 04:07:20 2024 GMT Subject: CN=55F99885053B26E215D83E266829232EEA9072E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d8:6f:6d:e0:0e:60:9d:61:b9:c6:85:e3:13: 82:92:65:60:ba:66:96:c0:e5:10:8d:2e:4f:1a:da: f6:07:bf:d2:55:eb:67:95:72:d3:b9:ca:ba:24:85: 78:29:72:94:56:d7:1a:8d:61:4b:59:ef:06:95:be: 80:24:a2:16:cb:da:02:ef:83:9b:a5:b5:c6:40:f5: 32:d0:11:16:93:53:ae:85:47:a9:a4:96:ab:6f:a3: 06:2d:8d:f8:19:6d:84:ed:d3:ac:a4:db:98:18:f8: a8:50:c2:df:7d:ce:e7:a3:59:30:2b:5c:07:b3:a2: 35:3f:fe:d9:8d:99:6b:7f:4b:26:2f:9e:58:b8:80: 4b:bd:27:1c:ae:fd:28:85:b6:43:f8:a3:1a:2b:43: af:e9:00:c3:90:14:cb:08:eb:f8:a8:73:64:66:e7: ff:09:d1:95:c2:84:3a:4d:d9:53:4e:48:ed:13:c0: ac:0c:00:f7:79:3d:1e:86:ef:bc:70:e5:61:70:b0: 94:cc:ab:bc:ae:ab:77:8d:cc:69:fe:5f:64:6d:74: 14:f8:1e:d4:bc:b2:d6:53:1d:b8:e0:ba:6d:f9:8f: 06:3b:a3:d3:0b:b1:b0:6c:d6:df:98:21:f8:71:2c: 2f:7c:91:89:30:0b:fb:64:c5:74:11:0a:8f:ff:03: ec:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F9:98:85:05:3B:26:E2:15:D8:3E:26:68:29:23:2E:EA:90:72:E8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200307.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ac00::/40 Signature Algorithm: sha256WithRSAEncryption a9:d9:f6:0e:00:40:23:17:e5:34:71:ef:af:e7:a0:c5:4e:65: d3:1c:0f:02:3b:0e:d8:52:40:c7:cc:9d:b2:59:64:af:f7:64: c2:95:f9:65:1b:ca:f4:b8:e4:a6:9f:6e:5f:56:41:55:d0:3c: 7e:8b:a6:42:fc:c8:7d:5e:70:01:43:f0:76:51:c7:26:7c:61: 00:17:b6:5b:1c:47:54:f9:c8:6c:6e:2a:9e:61:be:37:5a:55: 5e:f4:98:5d:62:4e:04:45:e8:6e:96:64:a6:00:6e:3a:b8:e4: d0:ed:87:fd:5b:f5:c4:5d:ac:c8:bd:0f:52:52:0f:0f:90:ad: 29:e1:5b:3a:99:05:8b:30:3b:29:46:50:06:0e:16:9f:54:4f: 71:ca:5d:ff:b7:84:f6:b8:a9:93:eb:a7:32:5f:a0:3e:c3:1f: 4a:69:11:cf:eb:c9:7f:33:7f:97:ce:43:69:d0:15:bb:9b:97: d2:b1:ae:67:22:d0:24:18:7b:37:f1:ce:60:05:58:27:4c:46: 65:e8:a7:db:c6:f3:45:0d:de:ac:e3:63:04:58:c6:c4:db:5c: 82:83:64:13:61:d8:a5:66:c6:55:f8:35:25:19:e8:0b:e3:b3: 01:17:7b:38:b6:ec:f7:e1:67:66:5c:32:89:10:61:ad:4c:1c: a3:63:0d:10 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYZUF7rN38WeeZWhUTDV1LFsbeJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjBaFw0yNDExMDMwNDA3MjBaMDMxMTAvBgNV BAMTKDU1Rjk5ODg1MDUzQjI2RTIxNUQ4M0UyNjY4MjkyMzJFRUE5MDcyRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD2G9t4A5gnWG5xoXjE4KSZWC6 ZpbA5RCNLk8a2vYHv9JV62eVctO5yrokhXgpcpRW1xqNYUtZ7waVvoAkohbL2gLv g5ultcZA9TLQERaTU66FR6mklqtvowYtjfgZbYTt06yk25gY+KhQwt99zuejWTAr XAezojU//tmNmWt/SyYvnli4gEu9Jxyu/SiFtkP4oxorQ6/pAMOQFMsI6/ioc2Rm 5/8J0ZXChDpN2VNOSO0TwKwMAPd5PR6G77xw5WFwsJTMq7yuq3eNzGn+X2RtdBT4 HtS8stZTHbjgum35jwY7o9MLsbBs1t+YIfhxLC98kYkwC/tkxXQRCo//A+xtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUVfmYhQU7JuIV2D4maCkjLuqQcugwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKwwDQYJKoZIhvcNAQELBQADggEBAKnZ 9g4AQCMX5TRx76/noMVOZdMcDwI7DthSQMfMnbJZZK/3ZMKV+WUbyvS45Kafbl9W QVXQPH6LpkL8yH1ecAFD8HZRxyZ8YQAXtlscR1T5yGxuKp5hvjdaVV70mF1iTgRF 6G6WZKYAbjq45NDth/1b9cRdrMi9D1JSDw+QrSnhWzqZBYswOylGUAYOFp9UT3HK Xf+3hPa4qZPrpzJfoD7DH0ppEc/ryX8zf5fOQ2nQFbubl9Kxrmci0CQYezfxzmAF WCdMRmXop9vG80UN3qzjYwRYxsTbXIKDZBNh2KVmxlX4NSUZ6AvjswEXezi27Pfh Z2ZcMokQYa1MHKNjDRA= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org