$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200671.roa File: AS200671.roa (raw, json) Hash identifier: RgtI+G9PzbV1yWa5OoHaa/xP/JtZTZXe5gSJWOYgoYU= Subject key identifier: D6:A7:9D:8B:9C:B2:21:43:48:35:93:16:F9:21:C2:E4:E9:0B:09:D2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 06EFB20F1A08016E30C5B3194A5F4390F5A32855 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200671.roa Signing time: Sun 05 Nov 2023 04:07:01 +0000 ROA not before: Sun 05 Nov 2023 04:02:01 +0000 ROA not after: Sun 03 Nov 2024 04:07:01 +0000 asID: 200671 IP address blocks: 2a0a:6040:f700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:ef:b2:0f:1a:08:01:6e:30:c5:b3:19:4a:5f:43:90:f5:a3:28:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:01 2023 GMT Not After : Nov 3 04:07:01 2024 GMT Subject: CN=D6A79D8B9CB2214348359316F921C2E4E90B09D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a7:9c:01:80:3f:92:dd:fc:36:a7:d4:4f:6a: e8:aa:c4:6c:4e:c9:25:82:be:df:6b:b8:a7:47:f0: ab:c8:53:f8:04:70:de:eb:fc:93:cf:ed:23:0e:b9: fb:75:7f:93:f2:23:17:e5:60:ce:e9:a2:2a:a0:27: e1:ef:ab:1c:26:bd:a1:c4:c1:f7:eb:4d:75:43:8d: 40:ea:5f:1e:a3:61:ec:fe:cf:ab:a4:84:57:8c:d8: 7a:f4:5e:7c:1e:04:cd:11:18:10:66:76:9f:ca:0c: 46:2b:c0:11:7d:21:97:de:52:04:31:8f:84:ff:9b: 27:7b:06:44:61:e9:98:c8:c7:7c:98:fa:37:df:86: ff:9a:2a:3d:b8:87:97:9e:13:46:00:0e:dd:24:e8: fb:01:8d:94:4a:af:36:c2:ee:c5:24:26:47:d2:e1: 8c:50:66:8e:8a:57:3d:16:0d:a6:fa:ae:ed:e0:0b: 16:54:57:fa:9b:64:61:2f:1f:05:91:59:d8:03:da: 3b:4e:0d:70:03:26:fc:72:78:86:55:cb:0c:41:c2: 01:82:f2:d6:b2:bd:5d:c7:4c:40:87:8a:8f:3e:08: e8:89:56:0c:fa:da:d6:81:03:3e:d1:c6:28:9f:b2: 6f:c8:ee:a0:88:69:97:fa:05:ea:cc:88:95:79:7e: 17:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A7:9D:8B:9C:B2:21:43:48:35:93:16:F9:21:C2:E4:E9:0B:09:D2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f700::/40 Signature Algorithm: sha256WithRSAEncryption 5c:c3:f7:72:e3:bc:82:e5:ce:f4:65:f9:92:cb:ae:7f:18:b9: 44:f3:8f:23:90:bb:21:bd:b1:e9:a6:bd:6f:08:25:4e:e0:33: f0:4e:80:91:a3:ca:ab:d0:06:2c:32:f6:b2:0f:bc:0c:6f:48: 88:a4:bc:8e:38:88:cd:ae:3e:52:18:8b:1d:ba:29:64:25:08: 06:50:00:13:32:1e:02:69:c9:65:42:e7:91:cc:07:ef:89:b9: 78:ae:5e:26:bf:3e:28:9f:d3:26:68:a6:1b:1e:11:42:c0:83: 48:f0:cf:3e:df:6a:0f:d7:cb:0e:e6:b5:3c:56:6c:d0:22:2e: a5:8d:f3:b2:63:b2:40:4a:f5:7e:b7:a4:f1:b5:1f:d0:bd:64: db:b0:eb:26:31:12:2a:d0:ab:75:c5:40:6c:a8:5d:4e:94:cb: 38:9a:46:e7:32:72:f3:37:70:3d:bd:cf:58:94:d3:d8:2e:85: f1:85:d2:22:e7:bc:8c:72:7e:4a:98:c3:d4:e4:ba:6f:60:93: fc:eb:13:ea:2b:36:4f:29:48:2e:37:f1:58:45:17:66:54:ab: bf:ef:a5:2e:42:fa:c3:e9:5b:0a:8b:3f:6d:a1:fd:95:a9:5e: db:21:f4:73:f3:aa:69:f3:17:c1:b0:82:4a:f1:99:bb:4d:69: e3:d5:fb:29 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBu+yDxoIAW4wxbMZSl9DkPWjKFUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDFaFw0yNDExMDMwNDA3MDFaMDMxMTAvBgNV BAMTKEQ2QTc5RDhCOUNCMjIxNDM0ODM1OTMxNkY5MjFDMkU0RTkwQjA5RDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+p5wBgD+S3fw2p9RPauiqxGxO ySWCvt9ruKdH8KvIU/gEcN7r/JPP7SMOuft1f5PyIxflYM7poiqgJ+HvqxwmvaHE wffrTXVDjUDqXx6jYez+z6ukhFeM2Hr0XnweBM0RGBBmdp/KDEYrwBF9IZfeUgQx j4T/myd7BkRh6ZjIx3yY+jffhv+aKj24h5eeE0YADt0k6PsBjZRKrzbC7sUkJkfS 4YxQZo6KVz0WDab6ru3gCxZUV/qbZGEvHwWRWdgD2jtODXADJvxyeIZVywxBwgGC 8tayvV3HTECHio8+COiJVgz62taBAz7Rxiifsm/I7qCIaZf6BerMiJV5fhdTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1qedi5yyIUNINZMW+SHC5OkLCdIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNjcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPcwDQYJKoZIhvcNAQELBQADggEBAFzD 93LjvILlzvRl+ZLLrn8YuUTzjyOQuyG9semmvW8IJU7gM/BOgJGjyqvQBiwy9rIP vAxvSIikvI44iM2uPlIYix26KWQlCAZQABMyHgJpyWVC55HMB++JuXiuXia/Piif 0yZophseEULAg0jwzz7fag/Xyw7mtTxWbNAiLqWN87JjskBK9X63pPG1H9C9ZNuw 6yYxEirQq3XFQGyoXU6UyziaRucycvM3cD29z1iU09guhfGF0iLnvIxyfkqYw9Tk um9gk/zrE+orNk8pSC438VhFF2ZUq7/vpS5C+sPpWwqLP22h/ZWpXtsh9HPzqmnz F8GwgkrxmbtNaePV+yk= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org