$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200447.roa File: AS200447.roa (raw, json) Hash identifier: yCQJbzTKcB5mhsl0mpP6IsD7N9SFpzVHPc/OHerN1iI= Subject key identifier: 4A:32:A2:D6:38:35:AD:67:FD:B2:B8:13:15:25:93:84:0F:4A:75:93 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1DC23F386E55AD140F0F6E755DAFA23ED7EE9C7B Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200447.roa Signing time: Thu 23 Nov 2023 23:37:58 +0000 ROA not before: Thu 23 Nov 2023 23:32:58 +0000 ROA not after: Thu 21 Nov 2024 23:37:58 +0000 asID: 200447 IP address blocks: 2a06:9f81:2100::/40 maxlen: 48 2a0a:6040:b900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:c2:3f:38:6e:55:ad:14:0f:0f:6e:75:5d:af:a2:3e:d7:ee:9c:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 23 23:32:58 2023 GMT Not After : Nov 21 23:37:58 2024 GMT Subject: CN=4A32A2D63835AD67FDB2B813152593840F4A7593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3f:6e:82:2e:c3:74:a9:9f:51:61:6b:c5:9a: e1:91:d5:66:7d:8c:c1:65:9c:20:34:67:09:72:d2: 29:d9:33:ac:c8:26:27:6f:47:e2:29:5f:8d:68:5b: cf:c9:5f:03:ca:1f:9e:f3:2c:4b:68:50:c1:33:bf: be:17:38:69:0a:a0:e5:bc:c9:83:bf:57:35:c8:1e: 9f:6b:3a:02:01:6a:cc:b3:17:79:0b:4b:75:46:33: 92:0b:03:e9:44:13:89:69:18:90:b0:a2:fb:d3:b8: a1:d9:98:d1:1b:09:12:bc:36:82:af:49:2e:7e:fe: 74:d4:79:03:f3:a2:9d:91:ef:b8:cc:53:e9:df:bd: 90:de:00:39:6b:b4:dc:12:aa:48:1c:76:c7:28:7b: 25:03:fa:8a:8d:bd:7d:84:89:4b:c8:95:5e:94:35: 9a:de:b4:3f:b9:f6:39:d5:60:a8:a0:87:19:35:d8: 20:3d:94:13:ba:14:e2:79:07:92:b7:65:d8:55:c8: 55:6a:f7:aa:93:64:b8:70:c9:15:a7:c1:fd:88:f6: d8:30:77:65:87:e8:cf:61:a8:2e:f3:1c:f3:5b:70: 71:25:cd:92:4e:19:f9:e5:14:cb:9d:51:7c:cc:49: bc:03:60:6e:28:de:19:de:91:4c:a1:d8:e7:36:19: c9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:32:A2:D6:38:35:AD:67:FD:B2:B8:13:15:25:93:84:0F:4A:75:93 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200447.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2100::/40 2a0a:6040:b900::/40 Signature Algorithm: sha256WithRSAEncryption 4f:56:da:52:c1:d3:ab:a5:f3:92:d3:5a:f3:29:c3:ee:83:4a: ac:7c:10:02:95:18:07:7f:f0:ec:30:0a:71:ad:a6:4b:82:f8: c0:ff:72:f1:e2:79:ac:8c:66:0b:aa:bc:fd:18:6b:35:6a:c5: 7c:6c:50:ef:1e:87:f8:7e:46:da:75:16:6e:f7:8a:14:5c:ab: 69:fa:cc:d7:58:d3:a3:89:27:22:2e:75:8b:71:71:ef:0d:cd: 54:ac:e0:88:ac:01:a6:8d:69:00:b5:07:93:0d:c8:d6:99:6d: ea:b3:79:19:b1:3b:6f:88:5d:3c:2c:75:db:33:c7:92:9c:5d: ca:6c:31:cc:68:ed:33:83:d1:08:6b:ec:91:af:e4:9e:2e:a6: 28:f8:d7:1a:2b:d3:11:45:f4:2f:91:47:02:1d:aa:89:ef:88: 2b:84:b3:93:42:b7:94:80:50:dc:81:0a:63:63:2f:82:98:69: be:9f:35:80:3f:d2:86:b3:76:4a:19:b0:28:e1:2a:d4:57:0b: b6:43:ad:18:3f:3c:cc:e6:4f:04:44:09:b4:74:01:35:83:cf: 46:70:5f:0e:ea:23:4b:bb:06:13:39:42:eb:50:56:e2:88:54: 64:55:2a:70:eb:f9:89:b7:af:ec:c1:4b:87:65:ae:4a:33:0c: 5a:c2:c0:48 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUHcI/OG5VrRQPD251Xa+iPtfunHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMjMyMzMyNThaFw0yNDExMjEyMzM3NThaMDMxMTAvBgNV BAMTKDRBMzJBMkQ2MzgzNUFENjdGREIyQjgxMzE1MjU5Mzg0MEY0QTc1OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBP26CLsN0qZ9RYWvFmuGR1WZ9 jMFlnCA0Zwly0inZM6zIJidvR+IpX41oW8/JXwPKH57zLEtoUMEzv74XOGkKoOW8 yYO/VzXIHp9rOgIBasyzF3kLS3VGM5ILA+lEE4lpGJCwovvTuKHZmNEbCRK8NoKv SS5+/nTUeQPzop2R77jMU+nfvZDeADlrtNwSqkgcdscoeyUD+oqNvX2EiUvIlV6U NZretD+59jnVYKighxk12CA9lBO6FOJ5B5K3ZdhVyFVq96qTZLhwyRWnwf2I9tgw d2WH6M9hqC7zHPNbcHElzZJOGfnlFMudUXzMSbwDYG4o3hnekUyh2Oc2GclXAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUSjKi1jg1rWf9srgTFSWThA9KdZMwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNDQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgafgSEDBgAqCmBAuTANBgkqhkiG9w0BAQsF AAOCAQEAT1baUsHTq6XzktNa8ynD7oNKrHwQApUYB3/w7DAKca2mS4L4wP9y8eJ5 rIxmC6q8/RhrNWrFfGxQ7x6H+H5G2nUWbveKFFyrafrM11jTo4knIi51i3Fx7w3N VKzgiKwBpo1pALUHkw3I1plt6rN5GbE7b4hdPCx12zPHkpxdymwxzGjtM4PRCGvs ka/kni6mKPjXGivTEUX0L5FHAh2qie+IK4Szk0K3lIBQ3IEKY2Mvgphpvp81gD/S hrN2ShmwKOEq1FcLtkOtGD88zOZPBEQJtHQBNYPPRnBfDuojS7sGEzlC61BW4ohU ZFUqcOv5ibev7MFLh2WuSjMMWsLASA== -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org