$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200676.roa File: AS200676.roa (raw, json) Hash identifier: RQ6576se1O8+Toce/WnDKhevK8QcZ+mjk1Km6IiuX6g= Subject key identifier: 35:F7:BA:A1:A8:46:1A:5D:E6:E7:D0:34:5E:BA:A1:95:B4:F3:8A:6D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 460CBF33233C8B71897ADC4B59427E52DD1FB911 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200676.roa Signing time: Sun 05 Nov 2023 04:06:58 +0000 ROA not before: Sun 05 Nov 2023 04:01:58 +0000 ROA not after: Sun 03 Nov 2024 04:06:58 +0000 asID: 200676 IP address blocks: 2a0a:6040:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:0c:bf:33:23:3c:8b:71:89:7a:dc:4b:59:42:7e:52:dd:1f:b9:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:01:58 2023 GMT Not After : Nov 3 04:06:58 2024 GMT Subject: CN=35F7BAA1A8461A5DE6E7D0345EBAA195B4F38A6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:a1:fc:c7:d7:6b:7c:d1:e9:3d:9d:94:a1: 29:63:3d:a1:fb:e8:5a:fc:18:74:c7:17:c0:95:3e: ae:04:dd:88:1a:27:8c:3c:54:14:4f:19:cb:48:99: 3a:2c:46:2d:d2:7e:6e:c9:eb:4d:1c:fa:d0:37:84: d2:d2:19:86:91:49:b8:7c:4b:b8:81:78:36:77:b1: 45:29:69:91:1b:06:d2:bd:87:88:ef:89:8c:6c:ec: c2:0a:42:70:c3:82:0d:2a:d1:7f:94:1e:75:4e:92: 7c:b6:50:b9:c1:80:c0:6b:a0:2e:83:70:01:a7:59: 98:35:6f:60:5e:51:19:98:3f:69:16:fa:9d:c2:b3: dc:51:ad:a7:f3:6c:cf:0e:59:22:ee:7b:0e:30:96: eb:c1:17:8d:a7:b7:51:74:4a:08:02:f7:e6:c9:9f: f6:2b:c9:5e:a6:3e:95:67:93:9d:89:1a:18:97:a8: 79:cb:7d:89:db:f3:12:c9:c5:ee:48:dc:29:06:b2: e6:36:23:c3:36:2a:7c:f8:ac:08:04:c1:6c:ac:8b: d9:6a:aa:9b:79:2c:cb:42:20:24:3e:61:f1:4a:00: 10:44:bd:ec:35:b7:12:54:ea:96:4b:ef:c4:c4:63: 79:f7:df:1e:d0:54:d2:0f:d8:f4:6a:e0:40:7d:e5: ad:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F7:BA:A1:A8:46:1A:5D:E6:E7:D0:34:5E:BA:A1:95:B4:F3:8A:6D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b100::/40 Signature Algorithm: sha256WithRSAEncryption 92:e6:da:de:4d:67:37:87:74:f9:3a:70:93:17:98:e2:70:ab: 87:80:00:bf:64:d3:71:81:63:f2:8e:ea:ac:11:86:7d:1a:93: f8:49:2c:9c:0a:4e:57:6a:fb:8a:ab:7d:ba:d9:7d:10:2e:12: 9f:87:e2:91:49:8c:66:80:29:32:50:6d:35:c7:96:5b:75:c1: 67:b7:bf:5b:e3:03:aa:bd:e7:a5:8e:7b:04:83:51:c0:6c:12: 87:64:42:dc:76:a9:dd:0c:69:ac:68:96:0a:0a:46:27:38:14: b2:29:88:18:4a:88:36:7e:d2:be:6f:a5:28:5b:85:92:f3:d5: 60:4a:6c:f6:c9:da:5e:96:83:f2:28:0e:9c:1c:06:a3:2b:ac: 2f:5f:05:99:45:e3:dd:2d:7d:60:1e:e1:f1:f7:09:c0:3e:62: d8:1a:62:11:4e:14:21:09:fc:36:5c:85:d1:21:fa:9e:bb:2c: 9a:8d:65:85:28:6c:57:aa:9c:37:b9:bd:90:2e:fb:d3:ff:fd: 92:12:87:1e:ff:af:22:e3:6b:07:dd:eb:3d:ba:e2:db:6a:28: 0e:67:45:85:70:01:c3:88:9e:25:da:b5:8b:8f:1c:68:d8:5e: ce:2b:a8:ac:af:eb:25:04:1d:7f:8d:e1:0c:6a:34:4d:e0:29: f6:1c:e8:4b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURgy/MyM8i3GJetxLWUJ+Ut0fuREwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAxNThaFw0yNDExMDMwNDA2NThaMDMxMTAvBgNV BAMTKDM1RjdCQUExQTg0NjFBNURFNkU3RDAzNDVFQkFBMTk1QjRGMzhBNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHaKH8x9drfNHpPZ2UoSljPaH7 6Fr8GHTHF8CVPq4E3YgaJ4w8VBRPGctImTosRi3Sfm7J600c+tA3hNLSGYaRSbh8 S7iBeDZ3sUUpaZEbBtK9h4jviYxs7MIKQnDDgg0q0X+UHnVOkny2ULnBgMBroC6D cAGnWZg1b2BeURmYP2kW+p3Cs9xRrafzbM8OWSLuew4wluvBF42nt1F0SggC9+bJ n/YryV6mPpVnk52JGhiXqHnLfYnb8xLJxe5I3CkGsuY2I8M2Knz4rAgEwWysi9lq qpt5LMtCICQ+YfFKABBEvew1txJU6pZL78TEY3n33x7QVNIP2PRq4EB95a1ZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUNfe6oahGGl3m59A0XrqhlbTzim0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLEwDQYJKoZIhvcNAQELBQADggEBAJLm 2t5NZzeHdPk6cJMXmOJwq4eAAL9k03GBY/KO6qwRhn0ak/hJLJwKTldq+4qrfbrZ fRAuEp+H4pFJjGaAKTJQbTXHllt1wWe3v1vjA6q956WOewSDUcBsEodkQtx2qd0M aaxolgoKRic4FLIpiBhKiDZ+0r5vpShbhZLz1WBKbPbJ2l6Wg/IoDpwcBqMrrC9f BZlF490tfWAe4fH3CcA+YtgaYhFOFCEJ/DZchdEh+p67LJqNZYUobFeqnDe5vZAu +9P//ZIShx7/ryLjawfd6z264ttqKA5nRYVwAcOIniXatYuPHGjYXs4rqKyv6yUE HX+N4QxqNE3gKfYc6Es= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org