$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200329.roa File: AS200329.roa (raw, json) Hash identifier: He511EDssPcIwB74kKwcnZTmHwtSKWe+o9YLKQW8h0E= Subject key identifier: 12:8F:42:F0:06:36:3A:B6:FC:42:A8:B0:05:85:8C:DC:6B:1E:FF:FE Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 786A44BA4BF8CBF75EF3944092ADE80785FC6148 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200329.roa Signing time: Sun 05 Nov 2023 04:07:05 +0000 ROA not before: Sun 05 Nov 2023 04:02:05 +0000 ROA not after: Sun 03 Nov 2024 04:07:05 +0000 asID: 200329 IP address blocks: 2a0a:6040:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:6a:44:ba:4b:f8:cb:f7:5e:f3:94:40:92:ad:e8:07:85:fc:61:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:05 2023 GMT Not After : Nov 3 04:07:05 2024 GMT Subject: CN=128F42F006363AB6FC42A8B005858CDC6B1EFFFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7c:49:45:46:a8:4d:a3:0a:cf:40:02:8a:39: d1:15:de:4b:7b:87:ec:6c:93:0f:6c:3a:d8:58:8d: 2a:b8:8c:98:d1:17:c4:9c:4a:35:c4:fd:a2:ed:67: de:d2:e8:06:95:f5:ae:8a:65:cf:b6:97:90:e9:d7: 9c:64:ce:3b:e4:1a:3c:77:fa:5a:1f:91:d5:b8:21: b2:72:c3:e7:bc:4d:dc:ef:1c:79:c2:d2:65:4f:56: 6d:66:9a:84:97:b6:6d:08:54:9f:7b:53:45:90:37: 62:37:18:31:bb:56:01:be:16:49:63:e9:86:9b:db: d3:d1:51:1a:0a:27:30:cb:8b:c5:ed:f9:cb:78:b0: 43:1e:88:b7:af:8d:a1:f3:9c:4c:fd:54:61:30:f3: 0d:81:63:9a:fe:46:55:aa:db:65:db:34:3d:15:16: 90:e2:0a:be:0b:5d:c1:9b:5b:aa:8e:46:97:64:f6: 96:ec:ee:15:9c:18:58:6a:fd:68:6d:75:83:de:f2: f0:12:0d:1b:e3:b5:4c:99:a2:62:ff:52:9a:3c:76: 94:34:9a:71:d1:3d:a3:88:f7:c9:b1:0c:d0:a2:59: c8:39:ff:dd:5b:0a:ab:79:a6:c3:68:35:4f:7b:d5: aa:1d:42:37:80:98:43:66:84:d8:d7:6e:23:49:97: d6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:8F:42:F0:06:36:3A:B6:FC:42:A8:B0:05:85:8C:DC:6B:1E:FF:FE X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200329.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b00::/40 Signature Algorithm: sha256WithRSAEncryption 5c:bb:a1:3a:b7:39:c5:5b:98:58:8e:54:40:32:b2:fa:28:b4: f7:03:29:be:d9:47:43:1a:b2:f0:39:ec:d8:d2:4e:17:94:43: 6d:aa:bf:94:4b:a1:c1:89:d6:28:9d:34:f5:21:6a:01:8b:4e: 6c:2c:bb:aa:de:de:5b:db:de:8a:36:41:ca:3d:d9:bf:0e:2d: 65:83:5e:c4:c3:ca:d4:70:35:56:0a:fe:9c:0c:b3:28:c2:9f: 30:8b:66:7c:b1:08:2d:5a:a3:5f:3a:6d:f4:ec:bd:6a:d3:35: f4:e2:0f:38:d9:7a:6a:09:d7:95:06:26:d9:87:51:76:6a:3c: 37:c2:6a:cf:b2:a3:7f:bb:fc:f2:fa:04:a8:43:f8:a5:d1:86: 7e:55:a9:d5:1e:27:99:a0:21:b9:8d:3e:68:d8:7b:f7:f6:2e: c7:cc:ec:99:7e:28:01:8c:59:a9:a9:0d:e3:61:23:3c:71:aa: a9:d3:16:2f:4f:f0:ec:8b:b2:58:1a:6a:63:81:8b:c1:fb:b4: 0a:24:dc:a2:c7:1b:2d:67:6e:d1:39:23:27:7e:85:44:98:76: e1:82:5b:2e:38:55:7c:43:41:16:0b:ee:31:c9:f6:f3:ad:91: a9:56:5a:24:1a:fd:ba:44:2e:6c:22:78:1e:29:50:ae:55:8a: f4:9e:58:e0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeGpEukv4y/de85RAkq3oB4X8YUgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDVaFw0yNDExMDMwNDA3MDVaMDMxMTAvBgNV BAMTKDEyOEY0MkYwMDYzNjNBQjZGQzQyQThCMDA1ODU4Q0RDNkIxRUZGRkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDfElFRqhNowrPQAKKOdEV3kt7 h+xskw9sOthYjSq4jJjRF8ScSjXE/aLtZ97S6AaV9a6KZc+2l5Dp15xkzjvkGjx3 +lofkdW4IbJyw+e8TdzvHHnC0mVPVm1mmoSXtm0IVJ97U0WQN2I3GDG7VgG+Fklj 6Yab29PRURoKJzDLi8Xt+ct4sEMeiLevjaHznEz9VGEw8w2BY5r+RlWq22XbND0V FpDiCr4LXcGbW6qORpdk9pbs7hWcGFhq/WhtdYPe8vASDRvjtUyZomL/Upo8dpQ0 mnHRPaOI98mxDNCiWcg5/91bCqt5psNoNU971aodQjeAmENmhNjXbiNJl9YdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEo9C8AY2Orb8QqiwBYWM3Gse//4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAswDQYJKoZIhvcNAQELBQADggEBAFy7 oTq3OcVbmFiOVEAysvootPcDKb7ZR0MasvA57NjSTheUQ22qv5RLocGJ1iidNPUh agGLTmwsu6re3lvb3oo2Qco92b8OLWWDXsTDytRwNVYK/pwMsyjCnzCLZnyxCC1a o186bfTsvWrTNfTiDzjZemoJ15UGJtmHUXZqPDfCas+yo3+7/PL6BKhD+KXRhn5V qdUeJ5mgIbmNPmjYe/f2LsfM7Jl+KAGMWampDeNhIzxxqqnTFi9P8OyLslgaamOB i8H7tAok3KLHGy1nbtE5Iyd+hUSYduGCWy44VXxDQRYL7jHJ9vOtkalWWiQa/bpE LmwieB4pUK5VivSeWOA= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org