$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200545.roa File: AS200545.roa (raw, json) Hash identifier: Opv38xQNZp500B8U44zvqVvh9UpDzh7AZg9/mRobWUE= Subject key identifier: F5:22:02:9A:70:97:71:58:30:26:1E:6A:08:94:EF:BC:DA:EB:74:2C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1F2790B4587E1BCF72A81D0511F92D41E860CE87 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200545.roa Signing time: Sun 05 Nov 2023 04:07:09 +0000 ROA not before: Sun 05 Nov 2023 04:02:09 +0000 ROA not after: Sun 03 Nov 2024 04:07:09 +0000 asID: 200545 IP address blocks: 2a0a:6040:e900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:27:90:b4:58:7e:1b:cf:72:a8:1d:05:11:f9:2d:41:e8:60:ce:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:09 2023 GMT Not After : Nov 3 04:07:09 2024 GMT Subject: CN=F522029A7097715830261E6A0894EFBCDAEB742C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b3:9f:59:cc:80:bc:0d:33:d5:60:05:53:f0: c9:b1:3d:4f:5e:67:5e:79:bd:5b:74:5e:63:eb:e0: 58:36:c7:78:e4:ab:e8:a9:1b:63:d6:c0:5e:8b:4a: 34:50:ac:39:4d:2a:6f:b3:43:0a:94:37:3a:e1:7a: 30:3f:b7:37:81:55:98:7b:97:e5:bc:d7:73:6d:bf: ef:62:5a:be:3c:52:65:04:19:86:00:a1:47:78:c6: 1a:a4:2c:6e:ee:ff:ec:52:e6:5b:41:2d:7a:19:52: aa:4d:4e:1b:4d:23:26:22:b9:72:b9:73:83:87:7b: 41:af:58:95:d3:48:12:12:78:18:cc:d7:52:d7:f8: fe:81:1a:46:1d:60:c8:98:93:cf:46:40:5d:9a:50: 12:66:3f:4e:76:6c:31:e6:50:d3:1d:d7:3d:14:d0: 78:ca:6f:e7:5c:92:9a:af:ae:e6:92:a6:e3:32:02: da:97:09:99:a9:7d:ca:26:3a:7f:d4:90:a1:03:b3: dc:e5:01:ee:bf:8e:0b:f9:58:f0:2b:d5:60:3e:d4: d7:20:7b:e3:38:a5:64:57:a5:53:7e:39:ad:f4:6e: b2:49:19:4b:88:c5:77:ca:92:fe:50:4f:05:ab:4f: 36:a9:21:57:54:22:d6:80:7f:de:0e:3d:c2:e8:42: c3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:22:02:9A:70:97:71:58:30:26:1E:6A:08:94:EF:BC:DA:EB:74:2C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200545.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e900::/40 Signature Algorithm: sha256WithRSAEncryption 7f:b5:fd:ec:32:76:54:30:93:ef:94:11:1d:d1:41:ce:93:c0: 0c:ab:f3:e4:25:31:d2:2e:53:58:87:7e:e5:d2:14:9e:e8:07: 22:db:28:1e:6a:69:02:56:21:ef:0c:b8:c4:59:30:c2:db:7c: c3:aa:05:23:89:e8:b8:2f:9c:a2:61:76:9a:e1:5f:3e:22:cf: b1:5e:da:e2:ae:2a:ec:6c:12:fd:57:da:fd:4f:e6:f0:27:d2: a8:fe:2f:9d:d8:39:18:48:59:14:80:6b:69:8b:46:3a:dd:fe: 50:f1:a4:e9:96:74:34:87:b5:ac:49:21:34:e8:42:0f:78:cc: 84:6a:dc:a3:e1:db:78:b7:df:e4:bd:3e:30:94:db:6f:bd:ff: e5:d5:51:60:2d:a3:43:ac:7b:a6:f7:ac:86:0a:6e:06:23:ba: 92:4e:3a:2f:0e:8c:8b:20:bc:69:97:7e:80:23:37:82:3d:24: 44:94:d2:d1:90:6b:d5:1c:8f:73:e9:2c:c8:05:2a:a1:55:63: 77:8d:6c:bc:82:08:b9:45:ff:fd:b5:9c:64:05:e8:78:af:36: 28:f2:14:fc:dd:e3:a2:4a:da:aa:4f:03:5f:a3:3b:69:e6:ff: ca:d3:7a:ee:ee:4d:4b:8a:f9:d7:22:2e:11:b1:b9:28:b3:d7: d3:16:fa:51 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHyeQtFh+G89yqB0FEfktQehgzocwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDlaFw0yNDExMDMwNDA3MDlaMDMxMTAvBgNV BAMTKEY1MjIwMjlBNzA5NzcxNTgzMDI2MUU2QTA4OTRFRkJDREFFQjc0MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWs59ZzIC8DTPVYAVT8MmxPU9e Z155vVt0XmPr4Fg2x3jkq+ipG2PWwF6LSjRQrDlNKm+zQwqUNzrhejA/tzeBVZh7 l+W813Ntv+9iWr48UmUEGYYAoUd4xhqkLG7u/+xS5ltBLXoZUqpNThtNIyYiuXK5 c4OHe0GvWJXTSBISeBjM11LX+P6BGkYdYMiYk89GQF2aUBJmP052bDHmUNMd1z0U 0HjKb+dckpqvruaSpuMyAtqXCZmpfcomOn/UkKEDs9zlAe6/jgv5WPAr1WA+1Ncg e+M4pWRXpVN+Oa30brJJGUuIxXfKkv5QTwWrTzapIVdUItaAf94OPcLoQsNpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU9SICmnCXcVgwJh5qCJTvvNrrdCwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTQ1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOkwDQYJKoZIhvcNAQELBQADggEBAH+1 /ewydlQwk++UER3RQc6TwAyr8+QlMdIuU1iHfuXSFJ7oByLbKB5qaQJWIe8MuMRZ MMLbfMOqBSOJ6LgvnKJhdprhXz4iz7Fe2uKuKuxsEv1X2v1P5vAn0qj+L53YORhI WRSAa2mLRjrd/lDxpOmWdDSHtaxJITToQg94zIRq3KPh23i33+S9PjCU22+9/+XV UWAto0Ose6b3rIYKbgYjupJOOi8OjIsgvGmXfoAjN4I9JESU0tGQa9Ucj3PpLMgF KqFVY3eNbLyCCLlF//21nGQF6HivNijyFPzd46JK2qpPA1+jO2nm/8rTeu7uTUuK +dciLhGxuSiz19MW+lE= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org