$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200592.roa File: AS200592.roa (raw, json) Hash identifier: 2pysN+53t5yqW0dnuZVp6Tl/kk1/Rtp8eiNcNULbsyc= Subject key identifier: 7F:E4:38:20:B2:8C:54:8B:EF:0D:1C:1B:DB:89:85:FF:49:F3:03:01 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 455A26F22DAA3813069D7239EFC95CE1D7DC8031 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200592.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 200592 IP address blocks: 2a0a:6040:d300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:5a:26:f2:2d:aa:38:13:06:9d:72:39:ef:c9:5c:e1:d7:dc:80:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=7FE43820B28C548BEF0D1C1BDB8985FF49F30301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8e:e9:60:25:bb:03:a3:d2:26:40:3a:63:1b: a0:54:8f:97:68:8b:a1:4c:45:ab:ef:87:86:7b:e4: 01:99:54:b2:4c:33:7d:33:73:bc:af:b0:77:bb:23: 47:38:84:35:16:e0:b4:fb:fa:4c:02:be:1d:c7:3d: 14:d3:65:f0:59:69:8a:ec:44:61:d9:a1:59:5f:f5: 25:63:1f:27:da:5e:4a:3f:c9:26:56:82:2b:01:e6: 90:90:66:27:22:35:c7:c1:a9:dd:a8:18:1a:f0:b8: af:50:d2:cc:8b:7e:b0:0e:97:19:54:d0:22:27:9b: ad:57:1d:cd:8f:d7:0e:76:0d:65:b7:43:34:9a:2f: 4a:0e:af:27:f5:3c:97:af:bb:ea:00:57:a7:68:fc: 7a:48:7a:47:16:7d:29:74:1d:23:3e:5d:53:21:38: e3:9a:a9:7c:42:f4:a0:2c:d0:39:13:0e:85:ce:81: c5:fc:34:95:31:50:78:ee:65:a7:b1:67:66:30:c5: e9:92:21:d1:ff:8b:b4:af:60:a7:17:34:0b:72:f4: b0:0d:b6:2f:11:26:e6:1e:3b:7d:61:c3:61:46:e0: 04:4c:80:f8:30:92:2f:25:11:08:fe:9c:1d:e8:66: b5:e5:3b:26:d0:8d:33:60:a6:5a:40:5e:59:e9:39: 2a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E4:38:20:B2:8C:54:8B:EF:0D:1C:1B:DB:89:85:FF:49:F3:03:01 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d300::/40 Signature Algorithm: sha256WithRSAEncryption 61:c9:ca:f8:11:94:f7:c9:de:78:9a:25:98:c5:ef:8b:66:dc: d0:b5:c6:e1:fd:f9:fe:99:7d:bd:92:79:50:f6:c8:45:57:8e: e9:ea:9a:6c:4f:22:89:79:11:ae:a2:d8:87:2a:97:f7:52:1f: c9:bf:97:f3:32:01:f8:df:0c:b1:dd:09:fd:64:08:eb:57:85: 92:90:d2:9b:25:ba:98:fa:85:3d:af:57:99:4d:e2:9c:e6:c6: b0:87:be:bf:2f:3c:c5:d9:c6:16:83:b9:81:5a:08:d6:d3:6a: 46:d5:63:c0:98:c7:bb:c8:04:78:ef:75:fb:a8:41:83:7a:a5: 72:27:88:a1:bc:13:ca:e9:ac:b9:20:8c:25:4f:5d:94:4e:68: 31:04:19:11:57:27:8e:8b:05:db:db:fe:bc:59:4a:3c:f6:ee: 00:15:f3:b4:3e:c6:36:5e:71:21:bf:37:08:01:78:30:70:a5: 3a:a7:da:d3:7a:8c:ec:07:d6:4a:e5:51:8e:97:54:ba:46:f5: 7d:b2:29:0b:dc:34:37:b9:f5:24:4d:a5:65:56:21:21:6f:2c: 7c:54:c2:42:f6:5f:ef:e1:54:00:2d:42:9c:48:36:c7:70:b0: 50:96:48:6b:85:49:39:4e:62:bd:88:8e:4d:8f:24:e6:35:48: a7:fb:2c:92 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURVom8i2qOBMGnXI578lc4dfcgDEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDdGRTQzODIwQjI4QzU0OEJFRjBEMUMxQkRCODk4NUZGNDlGMzAzMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEjulgJbsDo9ImQDpjG6BUj5do i6FMRavvh4Z75AGZVLJMM30zc7yvsHe7I0c4hDUW4LT7+kwCvh3HPRTTZfBZaYrs RGHZoVlf9SVjHyfaXko/ySZWgisB5pCQZiciNcfBqd2oGBrwuK9Q0syLfrAOlxlU 0CInm61XHc2P1w52DWW3QzSaL0oOryf1PJevu+oAV6do/HpIekcWfSl0HSM+XVMh OOOaqXxC9KAs0DkTDoXOgcX8NJUxUHjuZaexZ2YwxemSIdH/i7SvYKcXNAty9LAN ti8RJuYeO31hw2FG4ARMgPgwki8lEQj+nB3oZrXlOybQjTNgplpAXlnpOSq3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUf+Q4ILKMVIvvDRwb24mF/0nzAwEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNTkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNMwDQYJKoZIhvcNAQELBQADggEBAGHJ yvgRlPfJ3niaJZjF74tm3NC1xuH9+f6Zfb2SeVD2yEVXjunqmmxPIol5Ea6i2Icq l/dSH8m/l/MyAfjfDLHdCf1kCOtXhZKQ0pslupj6hT2vV5lN4pzmxrCHvr8vPMXZ xhaDuYFaCNbTakbVY8CYx7vIBHjvdfuoQYN6pXIniKG8E8rprLkgjCVPXZROaDEE GRFXJ46LBdvb/rxZSjz27gAV87Q+xjZecSG/NwgBeDBwpTqn2tN6jOwH1krlUY6X VLpG9X2yKQvcNDe59SRNpWVWISFvLHxUwkL2X+/hVAAtQpxINsdwsFCWSGuFSTlO Yr2Ijk2PJOY1SKf7LJI= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org