$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200454.roa File: AS200454.roa (raw, json) Hash identifier: AC4i3zPgbEeT6lSAJMfj6uSvksF1XUKjjPlSzl22h6E= Subject key identifier: 88:00:EB:6A:B6:11:95:86:BC:45:F2:96:6B:95:F4:3A:12:D0:BB:FB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 61953FAD27C7DC0126F7183A4C4E94795FA74CA9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200454.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 200454 IP address blocks: 2a0a:6040:aa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:95:3f:ad:27:c7:dc:01:26:f7:18:3a:4c:4e:94:79:5f:a7:4c:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=8800EB6AB6119586BC45F2966B95F43A12D0BBFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8d:d0:35:3b:25:f3:74:b2:80:63:f2:13:23: 2d:81:e3:cc:69:6d:86:08:65:f3:97:7a:7e:58:d1: be:1a:10:d8:28:3a:d5:21:50:69:57:7f:6c:5a:89: 51:43:54:7e:5e:c9:e0:13:53:2c:4d:54:55:1c:34: fe:1a:f4:b5:b5:47:60:da:ae:cc:c6:80:ca:85:18: 2e:6a:5e:79:c6:c4:23:3f:71:36:d0:d8:a5:d2:e6: 50:8b:a0:71:e7:ca:27:3a:e1:a8:9d:1b:47:71:c4: 10:1a:f1:5a:41:4b:e4:fe:21:f3:b0:52:50:77:3f: 92:04:fb:53:df:97:8a:99:56:8f:3c:ee:53:61:26: 78:51:12:46:ca:8a:d1:47:9d:14:89:c9:51:26:70: b7:1e:8a:b1:ed:49:e4:4c:47:7e:20:80:5a:b5:85: 1d:bc:f7:93:5b:c5:86:49:0d:6c:83:3f:36:02:e9: 88:f8:24:b5:37:66:72:61:09:9a:be:67:43:b5:9e: cb:fd:0d:26:05:8a:13:a0:4b:48:47:7d:37:a7:4e: 27:08:4a:31:e6:3e:52:44:f2:b3:f9:98:ca:1a:21: a5:4f:1c:2a:c1:9a:00:3d:a1:08:cb:7b:f5:68:d0: 3a:94:ae:80:9a:b4:46:82:8c:9d:a9:f0:5f:0b:dd: e3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:00:EB:6A:B6:11:95:86:BC:45:F2:96:6B:95:F4:3A:12:D0:BB:FB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:aa00::/40 Signature Algorithm: sha256WithRSAEncryption 4c:0c:7d:26:55:16:09:77:74:a0:17:7f:c5:c2:86:74:e4:4d: 8a:54:58:2b:64:64:b2:a5:61:51:86:a6:22:41:5d:28:46:3d: ec:78:c3:2f:83:b2:27:ba:4e:bb:bf:24:72:80:d0:69:37:aa: 3a:cd:1e:6b:c7:38:fe:75:41:78:79:aa:b9:22:35:8a:d7:66: 01:37:e7:78:30:ad:b8:39:8f:b1:80:ef:38:a0:4a:83:f1:d2: b2:83:41:a1:51:25:f1:8b:69:e7:8d:c2:6d:be:94:75:49:b2: bd:e8:ca:d6:5a:f9:b9:e7:8d:58:7b:ac:d7:0b:69:94:ab:68: 42:bb:2d:ec:05:0f:a9:68:dc:29:8b:81:ce:34:02:b4:4b:34: b4:72:95:0f:95:29:07:05:1b:2e:26:61:bd:ae:a5:5a:56:1d: 31:93:cd:8e:2e:36:c1:32:fc:ad:12:fc:e5:b9:06:d7:7f:6f: d6:c5:97:39:56:b1:3d:77:45:03:c8:53:20:4f:27:87:a9:5a: 98:50:0f:05:29:e6:20:4e:41:94:48:cd:9a:0d:04:b7:23:f9: ec:0c:7d:cd:eb:9e:6e:ed:b0:b4:b8:54:d6:8c:11:58:94:b2: 1e:4b:09:85:06:e6:b3:8c:3d:90:bd:ce:f1:ef:70:f3:2d:6d: 39:88:95:f8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYZU/rSfH3AEm9xg6TE6UeV+nTKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKDg4MDBFQjZBQjYxMTk1ODZCQzQ1RjI5NjZCOTVGNDNBMTJEMEJCRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jdA1OyXzdLKAY/ITIy2B48xp bYYIZfOXen5Y0b4aENgoOtUhUGlXf2xaiVFDVH5eyeATUyxNVFUcNP4a9LW1R2Da rszGgMqFGC5qXnnGxCM/cTbQ2KXS5lCLoHHnyic64aidG0dxxBAa8VpBS+T+IfOw UlB3P5IE+1Pfl4qZVo887lNhJnhREkbKitFHnRSJyVEmcLceirHtSeRMR34ggFq1 hR2895NbxYZJDWyDPzYC6Yj4JLU3ZnJhCZq+Z0O1nsv9DSYFihOgS0hHfTenTicI SjHmPlJE8rP5mMoaIaVPHCrBmgA9oQjLe/Vo0DqUroCatEaCjJ2p8F8L3ePVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiADrarYRlYa8RfKWa5X0OhLQu/swHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKowDQYJKoZIhvcNAQELBQADggEBAEwM fSZVFgl3dKAXf8XChnTkTYpUWCtkZLKlYVGGpiJBXShGPex4wy+Dsie6Tru/JHKA 0Gk3qjrNHmvHOP51QXh5qrkiNYrXZgE353gwrbg5j7GA7zigSoPx0rKDQaFRJfGL aeeNwm2+lHVJsr3oytZa+bnnjVh7rNcLaZSraEK7LewFD6lo3CmLgc40ArRLNLRy lQ+VKQcFGy4mYb2upVpWHTGTzY4uNsEy/K0S/OW5Btd/b9bFlzlWsT13RQPIUyBP J4epWphQDwUp5iBOQZRIzZoNBLcj+ewMfc3rnm7tsLS4VNaMEViUsh5LCYUG5rOM PZC9zvHvcPMtbTmIlfg= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org