$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200335.roa File: AS200335.roa (raw, json) Hash identifier: N+XGQqrry3NseDyqojdiiRYNI4H9ckLAV4pGvpk49YQ= Subject key identifier: BB:E6:CB:B5:80:00:BD:9D:3F:70:F1:0A:A3:59:52:E3:C8:5A:21:9A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7FC5F62BE00A797E30068E13FF86DEC9F9707F6D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200335.roa Signing time: Sun 05 Nov 2023 04:07:01 +0000 ROA not before: Sun 05 Nov 2023 04:02:01 +0000 ROA not after: Sun 03 Nov 2024 04:07:01 +0000 asID: 200335 IP address blocks: 2a0a:6040:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c5:f6:2b:e0:0a:79:7e:30:06:8e:13:ff:86:de:c9:f9:70:7f:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:01 2023 GMT Not After : Nov 3 04:07:01 2024 GMT Subject: CN=BBE6CBB58000BD9D3F70F10AA35952E3C85A219A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2b:7c:6c:67:ba:3f:19:8b:ae:95:b6:1e:66: 7b:d5:e2:99:88:ac:98:e8:91:c2:6e:61:39:01:04: 20:7c:ba:74:47:f5:21:9b:6e:ff:6b:59:54:02:c6: 71:1a:20:03:65:fc:74:65:ef:32:a4:1c:f6:13:9f: d2:b4:23:35:dc:79:16:17:5a:c2:08:8d:39:ed:0b: ef:78:0b:83:61:15:45:c1:ef:09:ad:d1:f8:b0:ba: 3e:42:82:b0:3f:b3:36:92:fc:e8:01:9c:fc:95:76: f3:10:24:ef:a1:92:1f:40:fe:73:7d:a6:8e:88:10: d9:dc:68:4b:22:6e:87:9e:13:d5:10:2b:91:62:aa: 17:44:b7:8b:1f:ae:18:64:ef:0b:d2:9a:b0:17:1c: 80:6a:59:99:27:9a:92:1a:c0:96:28:0f:23:b5:df: 27:c2:25:3d:30:ab:fd:47:79:fd:ec:e8:f0:a9:ac: 3d:71:24:a3:23:82:e8:b1:af:87:3f:2c:cf:f0:d7: c2:57:13:40:51:60:d1:8f:62:b1:d4:a9:1f:ec:c2: 2e:5b:cb:45:2f:73:dc:55:b0:51:16:d5:f9:2a:5f: f5:25:f9:89:c6:09:da:e6:11:d4:0e:d2:b8:5c:ab: f9:90:72:c8:43:45:ec:3f:c1:ea:b6:86:43:c1:03: f3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:E6:CB:B5:80:00:BD:9D:3F:70:F1:0A:A3:59:52:E3:C8:5A:21:9A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3100::/40 Signature Algorithm: sha256WithRSAEncryption 4e:70:82:56:22:ea:d3:5d:62:88:ae:b7:7c:05:58:c3:74:9e: 0d:93:46:46:4e:1c:51:19:e1:b1:11:cb:da:98:1a:75:0b:ec: 2b:3c:23:a4:16:92:8c:26:ef:c9:69:18:db:25:26:c7:f8:7c: 7e:c4:b5:6b:a4:e2:82:f6:3e:6b:95:61:9b:85:1f:32:6b:2c: b1:ef:da:2c:94:2e:e0:b2:5c:4d:75:56:00:60:71:6e:66:0b: 2e:8d:3c:81:7d:5a:4a:b5:ad:44:81:d7:65:8d:9c:a4:f0:34: 0d:91:21:75:0c:b5:e3:93:42:41:04:61:60:47:a1:4a:04:71: 17:df:e3:29:f4:f3:a9:ff:58:d1:b7:fb:24:aa:23:77:c7:f1: b4:09:1e:04:27:43:c2:f8:cf:85:d1:83:14:11:d7:61:96:6f: 3a:b4:ac:e7:eb:f5:78:8f:72:62:88:fb:c5:36:33:05:39:bf: c9:65:18:47:e9:0e:aa:30:7d:41:4f:e2:90:5d:b2:8f:e3:c7: 8e:62:2c:27:f4:db:a7:22:2b:4b:ea:fe:0c:75:76:4d:15:db: a7:4e:49:31:2c:15:93:c1:58:75:69:fd:a3:74:66:2f:ba:87: 69:20:98:d7:ba:48:7c:fa:57:52:6d:3d:aa:b5:fc:d3:51:c0: ba:e7:88:33 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUf8X2K+AKeX4wBo4T/4beyflwf20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDFaFw0yNDExMDMwNDA3MDFaMDMxMTAvBgNV BAMTKEJCRTZDQkI1ODAwMEJEOUQzRjcwRjEwQUEzNTk1MkUzQzg1QTIxOUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlK3xsZ7o/GYuulbYeZnvV4pmI rJjokcJuYTkBBCB8unRH9SGbbv9rWVQCxnEaIANl/HRl7zKkHPYTn9K0IzXceRYX WsIIjTntC+94C4NhFUXB7wmt0fiwuj5CgrA/szaS/OgBnPyVdvMQJO+hkh9A/nN9 po6IENncaEsiboeeE9UQK5FiqhdEt4sfrhhk7wvSmrAXHIBqWZknmpIawJYoDyO1 3yfCJT0wq/1Hef3s6PCprD1xJKMjguixr4c/LM/w18JXE0BRYNGPYrHUqR/swi5b y0Uvc9xVsFEW1fkqX/Ul+YnGCdrmEdQO0rhcq/mQcshDRew/weq2hkPBA/O3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUu+bLtYAAvZ0/cPEKo1lS48haIZowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDEwDQYJKoZIhvcNAQELBQADggEBAE5w glYi6tNdYoiut3wFWMN0ng2TRkZOHFEZ4bERy9qYGnUL7Cs8I6QWkowm78lpGNsl Jsf4fH7EtWuk4oL2PmuVYZuFHzJrLLHv2iyULuCyXE11VgBgcW5mCy6NPIF9Wkq1 rUSB12WNnKTwNA2RIXUMteOTQkEEYWBHoUoEcRff4yn086n/WNG3+ySqI3fH8bQJ HgQnQ8L4z4XRgxQR12GWbzq0rOfr9XiPcmKI+8U2MwU5v8llGEfpDqowfUFP4pBd so/jx45iLCf026ciK0vq/gx1dk0V26dOSTEsFZPBWHVp/aN0Zi+6h2kgmNe6SHz6 V1JtPaq1/NNRwLrniDM= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org