$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200455.roa File: AS200455.roa (raw, json) Hash identifier: iYoTOlmChWGZzrcdJSMj8POZ2QxP2E86t6gDiD6ss+c= Subject key identifier: 1F:1F:21:63:7D:60:F8:10:A8:00:D8:4B:9F:FD:B7:77:0D:E1:BD:E1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 65501BC85A434029A779D87A775BE2EAF574BC06 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200455.roa Signing time: Sun 05 Nov 2023 04:07:11 +0000 ROA not before: Sun 05 Nov 2023 04:02:11 +0000 ROA not after: Sun 03 Nov 2024 04:07:11 +0000 asID: 200455 IP address blocks: 2a0a:6040:400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:50:1b:c8:5a:43:40:29:a7:79:d8:7a:77:5b:e2:ea:f5:74:bc:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:11 2023 GMT Not After : Nov 3 04:07:11 2024 GMT Subject: CN=1F1F21637D60F810A800D84B9FFDB7770DE1BDE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:29:b1:22:dd:41:ba:57:33:14:6e:12:44:21: 65:56:10:08:a6:0b:bb:bb:cb:9b:09:32:73:d3:81: e4:cd:ae:77:7e:5c:c3:0c:58:c7:de:18:b3:bd:89: de:e6:b2:83:b6:74:d1:c7:75:61:b0:ca:c4:bf:a9: c9:95:37:79:b9:14:f1:9b:49:19:a0:8c:bc:5c:83: ad:e1:8b:e3:b0:15:3e:b9:a5:d4:fc:c2:eb:7b:78: 6b:7a:62:8c:9e:81:5d:16:b3:6f:56:ca:5b:17:33: 1b:81:f6:bb:82:28:12:e1:77:d1:de:33:f8:a0:50: 85:50:9c:c2:66:00:b1:94:87:5b:c1:93:9b:19:0d: 65:6b:44:72:fd:23:a9:3d:ad:c6:7f:f3:ea:12:0c: 26:26:30:12:e9:31:d5:ca:46:e8:0b:31:4c:89:db: 38:5b:a8:9f:24:32:16:2f:2c:fb:c9:ab:ec:05:90: 2c:a5:0a:5b:b1:85:ad:8d:fd:5f:6e:f7:a9:24:17: ce:99:a6:88:5b:5e:09:9d:cc:e2:4c:14:d6:e2:d6: 9b:ed:52:ca:47:b2:3c:01:90:cd:6a:53:cd:36:06: 61:ca:2e:0c:d1:61:38:bc:d1:4a:24:99:49:c9:13: ca:e0:90:1b:c1:66:1a:2b:7a:7e:e6:d3:6f:7c:9c: 71:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:1F:21:63:7D:60:F8:10:A8:00:D8:4B:9F:FD:B7:77:0D:E1:BD:E1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200455.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:400::/40 Signature Algorithm: sha256WithRSAEncryption b7:25:4e:0e:8d:bf:60:c5:06:05:05:4d:34:4d:ec:b9:85:e5: 35:25:81:f2:a1:78:64:c3:bc:22:af:fc:5f:a7:f0:60:90:6d: f2:d2:63:8b:74:35:62:5d:54:c7:6d:05:53:fb:11:6b:41:34: a2:3d:68:d3:90:76:97:14:ba:ee:c7:e9:26:2d:cc:ea:5e:01: e9:e7:52:59:39:24:3d:44:19:a1:38:62:ca:b8:17:73:12:ea: 74:54:66:45:1d:2f:b9:bc:2b:4b:20:35:44:d8:51:5b:7f:d9: 95:83:83:1d:67:66:c4:0e:19:21:83:67:4f:1a:e6:78:9f:c4: 2b:c6:86:63:ff:f6:af:1b:6a:6c:d9:e6:39:e4:db:05:d8:89: fd:26:09:3b:3c:54:08:e8:9b:31:28:5d:c8:0b:5c:cb:6b:67: 12:20:d0:eb:af:fd:ca:2a:d4:fe:fd:c2:de:6b:13:fc:d1:fe: f0:fd:e8:04:24:87:9a:1c:34:3c:dc:81:b8:d1:71:17:e4:af: 97:ee:87:63:2b:6b:27:08:d2:8a:fa:20:02:51:8b:2f:dc:dd: ac:e7:d8:ae:cf:01:aa:03:b5:3b:bc:8a:aa:da:49:35:9b:63: 65:8a:46:03:fd:92:e5:79:be:33:e1:e4:4e:5b:39:76:0e:bd: ba:67:0d:95 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZVAbyFpDQCmnedh6d1vi6vV0vAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTFaFw0yNDExMDMwNDA3MTFaMDMxMTAvBgNV BAMTKDFGMUYyMTYzN0Q2MEY4MTBBODAwRDg0QjlGRkRCNzc3MERFMUJERTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjKbEi3UG6VzMUbhJEIWVWEAim C7u7y5sJMnPTgeTNrnd+XMMMWMfeGLO9id7msoO2dNHHdWGwysS/qcmVN3m5FPGb SRmgjLxcg63hi+OwFT65pdT8wut7eGt6YoyegV0Ws29WylsXMxuB9ruCKBLhd9He M/igUIVQnMJmALGUh1vBk5sZDWVrRHL9I6k9rcZ/8+oSDCYmMBLpMdXKRugLMUyJ 2zhbqJ8kMhYvLPvJq+wFkCylCluxha2N/V9u96kkF86ZpohbXgmdzOJMFNbi1pvt UspHsjwBkM1qU802BmHKLgzRYTi80UokmUnJE8rgkBvBZhoren7m0298nHHVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUHx8hY31g+BCoANhLn/23dw3hveEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNDU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAQwDQYJKoZIhvcNAQELBQADggEBALcl Tg6Nv2DFBgUFTTRN7LmF5TUlgfKheGTDvCKv/F+n8GCQbfLSY4t0NWJdVMdtBVP7 EWtBNKI9aNOQdpcUuu7H6SYtzOpeAennUlk5JD1EGaE4Ysq4F3MS6nRUZkUdL7m8 K0sgNUTYUVt/2ZWDgx1nZsQOGSGDZ08a5nifxCvGhmP/9q8bamzZ5jnk2wXYif0m CTs8VAjomzEoXcgLXMtrZxIg0Ouv/coq1P79wt5rE/zR/vD96AQkh5ocNDzcgbjR cRfkr5fuh2MraycI0or6IAJRiy/c3azn2K7PAaoDtTu8iqraSTWbY2WKRgP9kuV5 vjPh5E5bOXYOvbpnDZU= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org