$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200326.roa File: AS200326.roa (raw, json) Hash identifier: ui1RtngT2AdWZugn7gHWIVVwAyeZQWTZadyMFdT3lQo= Subject key identifier: 5A:0D:1A:0F:2A:F3:4B:FE:DF:4F:FD:5B:2B:0A:85:50:F9:5C:1C:AC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0C6155616EC767207613C02E80F3E312F9581D56 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200326.roa Signing time: Sun 05 Nov 2023 04:07:07 +0000 ROA not before: Sun 05 Nov 2023 04:02:07 +0000 ROA not after: Sun 03 Nov 2024 04:07:07 +0000 asID: 200326 IP address blocks: 2a0a:6040:a500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:61:55:61:6e:c7:67:20:76:13:c0:2e:80:f3:e3:12:f9:58:1d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:07 2023 GMT Not After : Nov 3 04:07:07 2024 GMT Subject: CN=5A0D1A0F2AF34BFEDF4FFD5B2B0A8550F95C1CAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:49:43:d0:dd:f9:ef:1a:10:0f:e3:55:72:bc: 8f:cc:31:84:42:f2:6f:a3:c4:e7:fc:bf:36:a6:a5: 98:6b:96:30:29:01:fb:54:86:72:74:5f:2c:0f:69: 26:6d:34:79:38:4e:56:d2:2f:bd:36:d4:99:fc:f5: 83:a6:32:a5:a2:d5:96:82:65:dd:c7:b1:37:c8:3c: 8e:6c:35:c2:67:fa:f8:77:8d:e3:d0:05:88:bb:2c: 3e:47:05:0b:24:26:1b:73:41:0f:86:89:bc:70:b5: 5a:77:53:0c:8e:59:bb:9b:b0:b4:f8:f6:b8:73:11: ee:91:ea:ed:f3:9a:df:f9:fc:28:a7:cb:ae:79:74: 24:47:55:a5:7c:81:a4:13:3a:5d:79:19:84:b5:8b: e6:5a:80:34:fa:c7:b5:ad:50:68:8a:25:05:83:71: 05:f2:aa:df:bf:76:d9:cd:cd:d3:25:2e:75:4c:b4: 5f:29:a9:bb:ed:5b:2a:cf:d6:c4:01:11:d8:b3:41: 13:52:8a:ed:4a:a7:5b:89:e1:6f:2d:cf:fb:c2:75: f5:2c:3c:9b:49:c7:10:2c:6f:23:f2:ff:0c:ca:20: 91:00:c2:93:fd:ab:30:e9:37:02:dd:fb:24:46:b8: e4:09:9d:d7:c0:85:a9:80:64:e9:4a:37:6b:e8:fd: fb:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0D:1A:0F:2A:F3:4B:FE:DF:4F:FD:5B:2B:0A:85:50:F9:5C:1C:AC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a500::/40 Signature Algorithm: sha256WithRSAEncryption 0f:b3:4a:40:e5:4f:48:41:2f:5d:3f:89:c5:b9:aa:1a:93:0b: 4d:94:b7:15:0e:63:87:77:e9:4d:6f:07:78:a0:87:64:70:83: d8:b2:ce:a1:6e:5e:00:1b:14:c6:bb:0b:ec:d7:27:91:14:c4: 60:25:f9:18:81:31:cb:3d:16:b7:e8:29:fe:12:ed:9d:5c:be: ae:fe:01:05:8f:a9:7d:8c:ba:8f:55:e6:32:4c:37:25:2d:f9: 69:8c:fa:5c:5b:a4:99:41:ea:93:1d:0f:24:b0:9d:3e:4c:4d: f5:b8:f3:60:62:dd:47:91:67:4c:c9:1c:f5:d6:bf:12:39:c0: 43:b1:d0:5e:b0:7a:48:ec:8f:1e:57:56:c2:d2:49:59:17:40: b0:49:18:a4:5b:79:16:6a:1b:46:4d:99:6d:cd:5f:e8:e6:0c: a8:ee:61:75:26:c3:3a:44:cd:d4:d1:64:2c:d3:43:48:85:86: 07:37:f5:01:aa:67:79:81:49:15:2e:21:30:d5:59:92:03:38: d5:30:07:12:37:0a:bb:d3:e0:64:c2:2e:b9:62:19:66:ce:81: 57:11:2a:34:91:af:5c:54:ea:32:5f:30:25:c5:96:66:56:39: be:14:4e:f7:8d:02:5b:44:70:8b:42:d8:d9:c4:aa:f7:51:bc: a4:16:d2:65 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDGFVYW7HZyB2E8AugPPjEvlYHVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDdaFw0yNDExMDMwNDA3MDdaMDMxMTAvBgNV BAMTKDVBMEQxQTBGMkFGMzRCRkVERjRGRkQ1QjJCMEE4NTUwRjk1QzFDQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGSUPQ3fnvGhAP41VyvI/MMYRC 8m+jxOf8vzampZhrljApAftUhnJ0XywPaSZtNHk4TlbSL7021Jn89YOmMqWi1ZaC Zd3HsTfIPI5sNcJn+vh3jePQBYi7LD5HBQskJhtzQQ+GibxwtVp3UwyOWbubsLT4 9rhzEe6R6u3zmt/5/Ciny655dCRHVaV8gaQTOl15GYS1i+ZagDT6x7WtUGiKJQWD cQXyqt+/dtnNzdMlLnVMtF8pqbvtWyrP1sQBEdizQRNSiu1Kp1uJ4W8tz/vCdfUs PJtJxxAsbyPy/wzKIJEAwpP9qzDpNwLd+yRGuOQJndfAhamAZOlKN2vo/fudAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWg0aDyrzS/7fT/1bKwqFUPlcHKwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKUwDQYJKoZIhvcNAQELBQADggEBAA+z SkDlT0hBL10/icW5qhqTC02UtxUOY4d36U1vB3igh2Rwg9iyzqFuXgAbFMa7C+zX J5EUxGAl+RiBMcs9FrfoKf4S7Z1cvq7+AQWPqX2Muo9V5jJMNyUt+WmM+lxbpJlB 6pMdDySwnT5MTfW482Bi3UeRZ0zJHPXWvxI5wEOx0F6wekjsjx5XVsLSSVkXQLBJ GKRbeRZqG0ZNmW3NX+jmDKjuYXUmwzpEzdTRZCzTQ0iFhgc39QGqZ3mBSRUuITDV WZIDONUwBxI3CrvT4GTCLrliGWbOgVcRKjSRr1xU6jJfMCXFlmZWOb4UTveNAltE cItC2NnEqvdRvKQW0mU= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org