$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200535.roa File: AS200535.roa (raw, json) Hash identifier: JwDijXpujorqV9Byj1oGxMEKba0RK7tgAcJ24PTSM2c= Subject key identifier: 78:9C:C8:B5:61:A3:74:96:3D:99:1C:CC:95:08:68:82:64:A3:3F:64 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3BBC6B6509B7E01826CA1EA607EB1E700DF08790 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200535.roa Signing time: Sun 05 Nov 2023 04:07:23 +0000 ROA not before: Sun 05 Nov 2023 04:02:23 +0000 ROA not after: Sun 03 Nov 2024 04:07:23 +0000 asID: 200535 IP address blocks: 2a0a:6040:500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:bc:6b:65:09:b7:e0:18:26:ca:1e:a6:07:eb:1e:70:0d:f0:87:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:23 2023 GMT Not After : Nov 3 04:07:23 2024 GMT Subject: CN=789CC8B561A374963D991CCC9508688264A33F64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6a:97:06:0a:95:cc:45:81:84:93:08:4c:00: d6:43:fb:d1:7c:c9:44:41:8d:f1:bd:46:e0:fc:6a: b3:63:2c:23:9c:cb:fa:19:b1:58:e6:d2:42:34:a0: 69:d3:2b:a9:41:a9:a8:72:d6:2a:da:4e:13:98:0e: 2d:fe:62:4c:41:3b:df:48:a5:b6:2d:c8:66:a7:5a: f8:61:c1:e6:9d:02:36:ff:e9:14:bc:59:79:f5:2a: 7d:12:32:5a:55:c3:0c:55:93:2d:1b:c7:c5:5b:90: 75:c3:cc:d1:6a:c7:cd:60:f4:97:97:9a:69:b1:c1: 81:52:20:2e:e4:15:55:35:8e:05:93:c2:e5:ce:d4: c9:92:40:4a:11:85:0c:fb:05:16:fa:27:4e:c4:e7: ba:50:52:c4:74:1c:64:07:76:10:d7:2e:cf:a7:52: 87:07:99:7c:c1:99:91:1f:c9:a6:c1:da:a4:25:9a: e6:d0:c0:eb:ff:0f:0f:68:bc:5a:7d:4b:2b:41:ab: bf:97:d7:57:28:b1:f0:20:e8:46:28:9c:a0:96:58: 1a:15:bd:6c:83:93:ce:e6:00:20:72:9d:10:8f:52: 83:f7:1a:b1:f5:f0:f0:53:5d:2b:b4:14:a8:b5:03: d6:38:80:0a:b3:9d:9e:4c:06:c6:9f:8f:f8:b4:d6: 3b:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:9C:C8:B5:61:A3:74:96:3D:99:1C:CC:95:08:68:82:64:A3:3F:64 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:500::/40 Signature Algorithm: sha256WithRSAEncryption 18:39:d6:d5:9a:8a:50:fd:82:7b:05:c1:3b:1e:34:b6:01:df: 1d:0f:8b:a3:38:09:e9:59:c9:bd:56:25:ee:4a:5f:e0:ff:2a: 1c:33:99:6c:4e:c1:05:03:2d:23:95:d3:56:ae:7e:db:79:01: 4e:e9:e8:71:a3:e8:33:e1:2b:c6:45:3e:6b:c6:fe:ed:21:60: 95:24:94:94:ef:fa:8e:5b:fa:7e:8d:a5:a9:ff:89:50:e6:9f: c4:4f:de:4d:8a:d0:7a:9d:fd:68:d6:ad:9f:0e:c7:0d:8d:81: 81:cc:2f:21:4f:47:73:ba:d8:1c:9e:04:2a:5a:cc:cb:0f:ed: 76:ea:d5:8e:35:c0:df:2b:2b:35:8d:01:6f:06:aa:f3:e0:d2: 8f:d6:25:70:19:83:ef:55:a6:d6:47:85:75:a1:bc:f3:41:f8: ee:65:50:9c:7d:b1:ce:83:62:e2:2c:61:a8:4d:df:cb:e3:c0: b7:f3:83:26:a5:70:50:94:92:7e:20:9c:1a:ef:4c:b4:8b:11: 1b:c8:69:2b:03:de:e9:81:32:76:ec:83:2b:2e:de:49:b0:29: c3:d5:7d:3d:56:ed:46:5a:75:0a:1b:b9:40:9c:df:2e:6d:de: d0:f4:8e:38:d4:ff:b5:4f:21:42:15:38:c6:fd:2e:80:da:a7: 07:1b:16:db -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUO7xrZQm34Bgmyh6mB+secA3wh5AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjNaFw0yNDExMDMwNDA3MjNaMDMxMTAvBgNV BAMTKDc4OUNDOEI1NjFBMzc0OTYzRDk5MUNDQzk1MDg2ODgyNjRBMzNGNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKapcGCpXMRYGEkwhMANZD+9F8 yURBjfG9RuD8arNjLCOcy/oZsVjm0kI0oGnTK6lBqahy1iraThOYDi3+YkxBO99I pbYtyGanWvhhweadAjb/6RS8WXn1Kn0SMlpVwwxVky0bx8VbkHXDzNFqx81g9JeX mmmxwYFSIC7kFVU1jgWTwuXO1MmSQEoRhQz7BRb6J07E57pQUsR0HGQHdhDXLs+n UocHmXzBmZEfyabB2qQlmubQwOv/Dw9ovFp9SytBq7+X11cosfAg6EYonKCWWBoV vWyDk87mACBynRCPUoP3GrH18PBTXSu0FKi1A9Y4gAqznZ5MBsafj/i01jubAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUeJzItWGjdJY9mRzMlQhogmSjP2QwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAUwDQYJKoZIhvcNAQELBQADggEBABg5 1tWailD9gnsFwTseNLYB3x0Pi6M4CelZyb1WJe5KX+D/KhwzmWxOwQUDLSOV01au ftt5AU7p6HGj6DPhK8ZFPmvG/u0hYJUklJTv+o5b+n6Npan/iVDmn8RP3k2K0Hqd /WjWrZ8Oxw2NgYHMLyFPR3O62ByeBCpazMsP7Xbq1Y41wN8rKzWNAW8GqvPg0o/W JXAZg+9VptZHhXWhvPNB+O5lUJx9sc6DYuIsYahN38vjwLfzgyalcFCUkn4gnBrv TLSLERvIaSsD3umBMnbsgysu3kmwKcPVfT1W7UZadQobuUCc3y5t3tD0jjjU/7VP IUIVOMb9LoDapwcbFts= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org