$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200579.roa File: AS200579.roa (raw, json) Hash identifier: xreJT6h+DupsdCcCRcv+VXOy/+E52HQReBFOPtMiMI8= Subject key identifier: BF:22:E3:61:8C:44:78:49:64:8F:45:24:25:A5:EF:44:9D:59:79:48 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 68D9086DB916BAF406D6C45B51EE2CF808803A0D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200579.roa Signing time: Sun 05 Nov 2023 04:07:12 +0000 ROA not before: Sun 05 Nov 2023 04:02:12 +0000 ROA not after: Sun 03 Nov 2024 04:07:12 +0000 asID: 200579 IP address blocks: 2a0a:6040:fb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Apr 2024 14:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d9:08:6d:b9:16:ba:f4:06:d6:c4:5b:51:ee:2c:f8:08:80:3a:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:12 2023 GMT Not After : Nov 3 04:07:12 2024 GMT Subject: CN=BF22E3618C447849648F452425A5EF449D597948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:10:b0:73:b0:9f:0b:d5:e7:3c:7d:27:45:d5: 9c:59:3b:a4:7e:04:37:2e:36:03:10:78:50:45:e1: 91:c4:3c:57:2d:7e:37:7d:91:11:a2:04:4a:dc:e5: 53:de:6d:7f:ba:ab:a1:0f:de:b2:70:04:5a:b4:07: da:5c:3f:f0:fb:c8:25:5d:46:26:6b:91:73:a4:fc: cf:3b:4a:14:47:a7:c4:3b:ba:b1:bb:fe:54:56:d1: a1:ee:10:01:04:bd:a8:ac:0b:00:8c:3f:0e:c2:52: 75:16:9c:01:51:ea:f6:f0:88:87:83:b4:01:5c:87: 0a:e1:a4:82:dc:37:04:76:e3:80:9a:8e:d2:ba:90: 22:34:d0:a8:72:cc:f1:cb:79:2f:97:4f:16:df:89: 6b:8e:23:2d:4b:da:88:92:27:c6:c9:83:97:39:0d: 34:be:fa:97:76:9a:ab:7b:46:84:a3:9c:ef:25:11: d5:7f:bf:4b:3d:f5:b6:3d:60:d9:c4:06:26:1d:f1: 7c:07:bb:4f:e2:fc:79:15:3d:ab:b3:2b:28:ac:2c: 6d:db:b3:8f:68:a2:ce:5b:76:6f:df:27:13:c5:e1: 92:db:cb:ed:5a:6e:52:f3:a5:2f:7b:c0:21:bc:39: 98:f5:0f:5d:80:0f:6c:32:57:08:83:24:d2:31:1a: 57:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:22:E3:61:8C:44:78:49:64:8F:45:24:25:A5:EF:44:9D:59:79:48 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fb00::/40 Signature Algorithm: sha256WithRSAEncryption 37:66:f6:82:8b:55:59:eb:ee:f6:ec:4e:19:fa:41:c6:c4:68: ca:e3:00:bc:1d:90:9a:b4:b8:c2:f7:f1:85:b9:95:c6:d2:fb: 8f:8f:cd:3f:aa:8e:89:23:91:e7:cd:b9:b0:67:7c:cd:95:9f: 5c:84:54:c5:d9:42:a9:68:66:ea:cb:ff:44:6e:b4:bc:72:13: d0:99:8e:da:c2:ed:cd:41:c9:9b:90:8d:0a:f5:4d:8c:94:34: f1:a2:c7:70:0a:16:ff:0a:88:8c:2b:5b:61:66:04:1c:20:e3: 80:9c:c9:31:72:05:64:d7:9c:d7:49:20:4f:e9:b4:e5:10:54: 52:26:44:0b:db:2f:e3:c4:d4:0a:51:6d:22:54:7e:e1:d6:13: 0e:82:33:4e:d1:16:95:e3:27:2e:8d:c0:58:e8:43:75:b5:3a: 53:7b:09:7c:c4:8f:c2:81:f0:75:14:a3:10:36:0d:73:76:23: ba:29:94:56:d5:0d:e8:b1:67:cd:9e:f4:ac:73:b6:2f:b8:ad: 5b:77:95:08:50:32:0f:ad:59:dc:9e:d9:b2:17:7a:72:2e:f5: a8:c1:6c:b8:4c:62:6a:e0:83:26:9f:29:81:7d:75:fa:60:f3: a9:e1:13:fc:7c:96:93:88:43:91:32:6e:6b:8c:9a:41:c4:f5: e4:a4:b9:d0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaNkIbbkWuvQG1sRbUe4s+AiAOg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTJaFw0yNDExMDMwNDA3MTJaMDMxMTAvBgNV BAMTKEJGMjJFMzYxOEM0NDc4NDk2NDhGNDUyNDI1QTVFRjQ0OUQ1OTc5NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaELBzsJ8L1ec8fSdF1ZxZO6R+ BDcuNgMQeFBF4ZHEPFctfjd9kRGiBErc5VPebX+6q6EP3rJwBFq0B9pcP/D7yCVd RiZrkXOk/M87ShRHp8Q7urG7/lRW0aHuEAEEvaisCwCMPw7CUnUWnAFR6vbwiIeD tAFchwrhpILcNwR244CajtK6kCI00KhyzPHLeS+XTxbfiWuOIy1L2oiSJ8bJg5c5 DTS++pd2mqt7RoSjnO8lEdV/v0s99bY9YNnEBiYd8XwHu0/i/HkVPauzKyisLG3b s49oos5bdm/fJxPF4ZLby+1ablLzpS97wCG8OZj1D12AD2wyVwiDJNIxGldDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvyLjYYxEeElkj0UkJaXvRJ1ZeUgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPswDQYJKoZIhvcNAQELBQADggEBADdm 9oKLVVnr7vbsThn6QcbEaMrjALwdkJq0uML38YW5lcbS+4+PzT+qjokjkefNubBn fM2Vn1yEVMXZQqloZurL/0RutLxyE9CZjtrC7c1ByZuQjQr1TYyUNPGix3AKFv8K iIwrW2FmBBwg44CcyTFyBWTXnNdJIE/ptOUQVFImRAvbL+PE1ApRbSJUfuHWEw6C M07RFpXjJy6NwFjoQ3W1OlN7CXzEj8KB8HUUoxA2DXN2I7oplFbVDeixZ82e9Kxz ti+4rVt3lQhQMg+tWdye2bIXenIu9ajBbLhMYmrggyafKYF9dfpg86nhE/x8lpOI Q5EybmuMmkHE9eSkudA= -----END CERTIFICATE-----Generated at Thu Apr 18 20:31:21 2024 by rpki-client on console-ams.rpki-client.org