$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200730.roa File: AS200730.roa (raw, json) Hash identifier: MaSmwjyqw29RHwSWdcrdySW4p0j1QAuUGfRnWDBR9LU= Subject key identifier: 52:07:88:60:FD:7C:65:47:86:CE:B3:E4:77:D3:04:25:4D:CF:5C:1F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 548409FAB1AE0627B6F3A873711260A9259DE6CB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200730.roa Signing time: Sun 05 Nov 2023 04:07:08 +0000 ROA not before: Sun 05 Nov 2023 04:02:08 +0000 ROA not after: Sun 03 Nov 2024 04:07:08 +0000 asID: 200730 IP address blocks: 2a0a:6040:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:84:09:fa:b1:ae:06:27:b6:f3:a8:73:71:12:60:a9:25:9d:e6:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:08 2023 GMT Not After : Nov 3 04:07:08 2024 GMT Subject: CN=52078860FD7C654786CEB3E477D304254DCF5C1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:75:6f:5a:58:e7:68:20:81:b6:0e:fb:bc:0d: c8:03:6f:5c:dc:31:20:43:ce:f1:24:79:7b:c3:c8: d0:c8:99:f4:8b:af:a8:de:8a:48:b9:86:78:03:6f: bf:05:75:ac:0f:e9:6c:ee:11:bb:4f:d7:01:c9:62: a7:5d:e3:fa:07:0e:72:59:eb:fe:8f:2b:fe:dc:6c: 21:5f:36:0b:93:d2:6e:96:e9:28:fe:04:0e:8e:39: b6:48:1f:ea:55:ad:59:ea:49:7a:95:c0:c0:c6:15: 1f:a3:c7:12:d2:08:86:8e:77:f3:7a:f5:15:e7:b8: 11:93:b4:4b:26:29:5d:26:89:4d:5a:20:f4:6d:e8: 12:71:e2:3e:51:81:6b:7a:78:9d:8c:d7:f2:21:4d: fd:53:b8:20:16:ae:78:ee:de:d0:d1:6f:bb:52:60: b5:16:c6:64:4f:75:dd:3d:32:60:09:3c:71:3e:f3: c4:d2:00:ff:9e:09:f5:7a:2b:bc:29:a7:2f:f8:2e: 11:43:05:30:17:ab:02:83:7c:c3:d6:6e:0b:d6:dc: 1d:d5:45:ee:c8:1c:a3:93:23:03:11:a6:66:36:f0: c4:1a:c6:bc:71:53:a6:0c:67:87:43:82:85:d8:d9: ca:6f:dd:52:8a:cb:23:d3:af:d9:42:49:88:89:71: 61:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:07:88:60:FD:7C:65:47:86:CE:B3:E4:77:D3:04:25:4D:CF:5C:1F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c900::/40 Signature Algorithm: sha256WithRSAEncryption 69:9c:2f:5c:d3:55:01:a5:3f:e3:3e:19:24:04:91:a1:06:5a: f1:49:4e:76:73:ce:b4:82:49:03:f5:9e:b0:0c:46:2a:9e:6d: 8b:38:24:70:e4:23:c2:23:d9:26:1d:21:5f:4d:94:ec:e5:e5: 59:d3:d3:fa:bf:0e:c7:02:60:22:97:74:50:50:18:9f:25:cb: 4a:2f:6c:f2:c0:3c:3d:7a:ac:35:b1:b1:98:ce:9e:19:45:5b: 62:ff:41:7d:52:6f:45:a1:50:6a:c2:20:e8:4d:b5:ec:0b:c6: b8:3b:c3:de:b4:d7:c8:f1:62:8b:7e:bb:1d:6d:43:f7:8b:61: c1:f0:a0:a8:9c:df:6c:cc:db:dd:53:01:e7:4a:c4:9a:4a:07: 19:87:83:09:cd:c5:d9:b7:6c:cf:69:23:33:5d:ef:04:0d:db: e3:0a:c0:c9:33:e1:a2:da:60:a9:15:2f:e0:44:b5:b8:49:64: 62:76:ea:a2:2c:31:6a:3c:9b:a6:c1:55:2f:cc:d1:4b:17:33: 15:5e:04:02:e9:82:fb:13:13:ed:2b:e1:16:52:5c:0b:04:b1: 30:51:c7:ed:0d:d4:38:0a:59:50:8a:f9:7c:f3:e8:53:c6:c3: 2f:5f:78:bd:0b:c7:08:ab:69:82:e4:8a:e8:95:25:d5:ac:6c: fe:91:b2:44 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVIQJ+rGuBie286hzcRJgqSWd5sswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDhaFw0yNDExMDMwNDA3MDhaMDMxMTAvBgNV BAMTKDUyMDc4ODYwRkQ3QzY1NDc4NkNFQjNFNDc3RDMwNDI1NERDRjVDMUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPdW9aWOdoIIG2Dvu8DcgDb1zc MSBDzvEkeXvDyNDImfSLr6jeiki5hngDb78FdawP6WzuEbtP1wHJYqdd4/oHDnJZ 6/6PK/7cbCFfNguT0m6W6Sj+BA6OObZIH+pVrVnqSXqVwMDGFR+jxxLSCIaOd/N6 9RXnuBGTtEsmKV0miU1aIPRt6BJx4j5RgWt6eJ2M1/IhTf1TuCAWrnju3tDRb7tS YLUWxmRPdd09MmAJPHE+88TSAP+eCfV6K7wppy/4LhFDBTAXqwKDfMPWbgvW3B3V Re7IHKOTIwMRpmY28MQaxrxxU6YMZ4dDgoXY2cpv3VKKyyPTr9lCSYiJcWGBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUgeIYP18ZUeGzrPkd9MEJU3PXB8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMkwDQYJKoZIhvcNAQELBQADggEBAGmc L1zTVQGlP+M+GSQEkaEGWvFJTnZzzrSCSQP1nrAMRiqebYs4JHDkI8Ij2SYdIV9N lOzl5VnT0/q/DscCYCKXdFBQGJ8ly0ovbPLAPD16rDWxsZjOnhlFW2L/QX1Sb0Wh UGrCIOhNtewLxrg7w96018jxYot+ux1tQ/eLYcHwoKic32zM291TAedKxJpKBxmH gwnNxdm3bM9pIzNd7wQN2+MKwMkz4aLaYKkVL+BEtbhJZGJ26qIsMWo8m6bBVS/M 0UsXMxVeBALpgvsTE+0r4RZSXAsEsTBRx+0N1DgKWVCK+Xzz6FPGwy9feL0Lxwir aYLkiuiVJdWsbP6RskQ= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org