$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200558.roa File: AS200558.roa (raw, json) Hash identifier: u0MvOABE4/33YDZYASoKT7BKw9HdGh07/5Qds9tFGVw= Subject key identifier: 68:D0:F6:65:27:2E:24:60:99:BC:59:E2:B6:C8:CC:69:B7:F8:05:96 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7F5269D5A89782FB30143816B0FEEFEE37605311 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200558.roa Signing time: Sun 05 Nov 2023 04:07:08 +0000 ROA not before: Sun 05 Nov 2023 04:02:08 +0000 ROA not after: Sun 03 Nov 2024 04:07:08 +0000 asID: 200558 IP address blocks: 2a0a:6040:a700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:52:69:d5:a8:97:82:fb:30:14:38:16:b0:fe:ef:ee:37:60:53:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:08 2023 GMT Not After : Nov 3 04:07:08 2024 GMT Subject: CN=68D0F665272E246099BC59E2B6C8CC69B7F80596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7c:5f:17:91:f7:2e:f6:81:1f:9c:88:c0:2b: 13:34:07:1d:28:87:f3:7d:4d:3a:e6:af:70:94:47: df:d8:01:7b:d7:3c:a6:17:f5:33:e3:1a:2a:dc:f1: f2:4b:0b:74:21:12:f1:81:79:f4:71:74:9c:ff:e9: 85:18:c1:dc:6a:11:7a:5a:f7:d3:ee:5b:cd:7d:ec: 3a:51:49:d6:86:e3:46:3c:00:97:4e:89:80:7f:c4: cf:95:41:6f:b2:a2:f5:4f:ee:cc:b1:db:d4:40:ed: b5:c5:4a:2a:19:a4:8a:89:e1:56:3c:bd:be:3d:82: 23:16:55:1e:2b:26:5e:1a:f3:1b:08:e2:cc:e2:e5: 44:3b:1d:bf:56:bd:b5:3c:29:ce:c4:1b:a5:78:c6: eb:df:eb:d2:1f:45:11:00:c1:57:b8:2b:d4:5d:7b: 6e:d5:a7:82:f8:d6:7c:0b:cc:55:5c:08:87:61:b4: e9:bb:8e:24:ef:38:56:35:c6:af:72:8f:fd:92:f1: 27:1b:70:c8:59:03:78:18:55:ba:e8:08:d5:dc:1b: 96:5d:b5:ec:63:0e:b3:73:50:1f:36:84:7e:90:94: 98:6d:e1:48:41:6f:06:d1:57:3c:6b:57:c7:5c:ab: 27:d2:5a:a2:bc:92:d7:04:f3:b1:29:3b:20:bd:4f: a7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:D0:F6:65:27:2E:24:60:99:BC:59:E2:B6:C8:CC:69:B7:F8:05:96 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200558.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a700::/40 Signature Algorithm: sha256WithRSAEncryption 9c:66:af:f9:43:86:32:c4:5a:ad:f2:b2:5a:07:81:bb:88:e7: fb:65:ba:a1:f1:4d:48:c0:79:99:14:af:b4:00:2c:bf:e2:cb: ff:d4:6f:1f:f4:87:2a:ad:a0:ca:51:4d:c1:51:5e:66:fd:02: 36:3a:94:99:dc:04:27:5d:9a:59:da:4d:bd:2e:30:fa:c2:e7: cc:b9:ca:7b:d3:bc:06:a2:b0:15:6e:01:2d:39:8f:45:8f:19: 4b:12:be:96:3b:b1:43:ad:fd:90:8a:ba:07:68:61:ae:e5:14: 0c:f4:6f:4a:03:8a:90:a4:68:37:71:3b:84:aa:89:c7:0d:64: db:0a:80:bb:a2:b2:d4:d0:fd:a3:09:85:d4:91:c5:72:de:45: bc:2c:8d:28:9c:c4:7b:23:b9:91:45:70:63:4f:90:55:af:54: 4c:47:2e:e4:f1:88:0b:94:20:23:fe:9e:00:eb:48:8a:29:2e: 95:21:95:66:a7:c9:a5:a5:ad:d0:f0:c5:bf:bc:19:9b:5c:3c: 4c:ec:0e:69:99:ac:24:65:e9:4a:6f:fb:10:5f:30:08:8e:27: 40:01:79:36:67:20:48:4f:9b:2f:87:e3:c1:e3:d7:15:ce:95: eb:da:6c:99:d8:8f:f8:fa:a1:35:ed:8f:73:98:fc:0f:14:0a: dc:dd:e2:5b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUf1Jp1aiXgvswFDgWsP7v7jdgUxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDhaFw0yNDExMDMwNDA3MDhaMDMxMTAvBgNV BAMTKDY4RDBGNjY1MjcyRTI0NjA5OUJDNTlFMkI2QzhDQzY5QjdGODA1OTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmfF8Xkfcu9oEfnIjAKxM0Bx0o h/N9TTrmr3CUR9/YAXvXPKYX9TPjGirc8fJLC3QhEvGBefRxdJz/6YUYwdxqEXpa 99PuW8197DpRSdaG40Y8AJdOiYB/xM+VQW+yovVP7syx29RA7bXFSioZpIqJ4VY8 vb49giMWVR4rJl4a8xsI4szi5UQ7Hb9WvbU8Kc7EG6V4xuvf69IfRREAwVe4K9Rd e27Vp4L41nwLzFVcCIdhtOm7jiTvOFY1xq9yj/2S8ScbcMhZA3gYVbroCNXcG5Zd texjDrNzUB82hH6QlJht4UhBbwbRVzxrV8dcqyfSWqK8ktcE87EpOyC9T6frAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaND2ZScuJGCZvFnitsjMabf4BZYwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKcwDQYJKoZIhvcNAQELBQADggEBAJxm r/lDhjLEWq3ysloHgbuI5/tluqHxTUjAeZkUr7QALL/iy//Ubx/0hyqtoMpRTcFR Xmb9AjY6lJncBCddmlnaTb0uMPrC58y5ynvTvAaisBVuAS05j0WPGUsSvpY7sUOt /ZCKugdoYa7lFAz0b0oDipCkaDdxO4SqiccNZNsKgLuistTQ/aMJhdSRxXLeRbws jSicxHsjuZFFcGNPkFWvVExHLuTxiAuUICP+ngDrSIopLpUhlWanyaWlrdDwxb+8 GZtcPEzsDmmZrCRl6Upv+xBfMAiOJ0ABeTZnIEhPmy+H48Hj1xXOlevabJnYj/j6 oTXtj3OY/A8UCtzd4ls= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org