$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200731.roa File: AS200731.roa (raw, json) Hash identifier: lvOuvV54H9ao8G4Uiu94iTSL/M8noNjy1r8adOlpf08= Subject key identifier: 77:89:7C:BD:FB:1F:3D:2C:5A:3A:7F:95:58:98:54:E2:45:4E:18:88 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 795567F1088E6DBD20E263847E5402C477B8F3F6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200731.roa Signing time: Sun 05 Nov 2023 04:07:13 +0000 ROA not before: Sun 05 Nov 2023 04:02:13 +0000 ROA not after: Sun 03 Nov 2024 04:07:13 +0000 asID: 200731 IP address blocks: 2a0a:6040:b800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:55:67:f1:08:8e:6d:bd:20:e2:63:84:7e:54:02:c4:77:b8:f3:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:13 2023 GMT Not After : Nov 3 04:07:13 2024 GMT Subject: CN=77897CBDFB1F3D2C5A3A7F95589854E2454E1888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:9d:76:27:72:11:17:cf:c0:85:40:8b:6f: 3d:04:e9:de:28:e8:27:38:93:2c:5f:f7:bc:ca:15: a5:f7:3f:57:1d:a7:71:7d:b5:d8:53:7e:25:4a:5d: 25:3c:17:cc:ad:ca:b0:8d:10:af:3c:a3:b3:5a:2d: f9:c4:b4:9a:88:b8:f2:79:29:20:7c:e5:16:5f:5b: a5:bf:d2:3d:8c:ba:d0:22:1f:a8:de:fd:41:76:44: 3a:59:13:15:1d:43:e9:aa:ce:67:ae:ef:9a:4f:39: e6:c4:f1:31:72:2a:00:67:ca:a2:55:33:4e:80:cc: 56:46:ed:25:2c:cb:34:9f:01:f6:c0:7d:b3:0e:dd: e2:5b:14:72:4f:40:cc:c8:84:24:50:32:90:54:b8: 4c:1f:e8:a1:b5:c1:6e:f9:77:dd:d3:a0:42:95:26: e3:04:6a:84:a3:38:00:76:56:67:a6:f4:b8:4e:05: 35:78:40:c8:66:c7:ed:5b:db:3f:46:6a:74:2f:92: 08:fb:23:93:bc:2f:c1:a0:01:6d:8d:2e:a1:58:98: eb:2a:28:f0:22:e2:a8:99:f1:9f:a7:ee:c8:90:59: d3:e9:7f:3a:4b:b5:15:32:fc:5e:21:56:f3:4e:77: bc:ac:e8:17:00:6e:8d:5d:02:dd:fa:d9:79:3f:e2: 31:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:89:7C:BD:FB:1F:3D:2C:5A:3A:7F:95:58:98:54:E2:45:4E:18:88 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b800::/40 Signature Algorithm: sha256WithRSAEncryption 62:39:4f:4a:57:b6:0e:8d:68:50:e6:96:db:8c:a2:12:1b:3d: 57:83:92:17:45:54:c8:f7:0c:b6:e6:45:41:12:af:4f:95:00: 31:de:fe:58:3d:04:ef:6a:d9:fa:c3:0c:62:93:08:9d:91:87: 7d:2f:10:28:82:bd:b0:6a:70:6f:28:2c:06:70:fc:54:47:38: ac:42:df:a7:b2:d7:0c:49:c8:32:95:2c:d3:2d:8f:e5:67:2d: 92:86:ed:fe:6f:39:60:aa:eb:2f:eb:00:24:8e:f6:b6:3e:22: 97:c7:b6:0c:56:72:03:b5:ac:96:d9:1d:9c:22:e4:11:a4:37: e6:ac:5f:8a:9b:fa:bc:a3:44:2b:1c:9c:37:07:83:94:6c:af: 2b:cf:c2:00:22:55:24:67:f1:c2:92:31:be:f9:f2:37:1a:cd: 4f:18:fc:74:a4:4a:8a:a1:ef:2b:aa:f0:3b:4f:46:4d:26:65: 37:fc:3b:09:8b:ec:b7:86:4d:c1:8e:c0:ad:83:c7:d4:52:58: 2b:ec:44:c0:05:15:3b:5f:b5:ae:33:f8:bf:c6:d3:87:9e:0a: 8f:7e:38:02:6a:23:91:91:6f:49:82:5a:0b:f1:ca:f6:44:f9: 99:34:16:43:5f:74:d7:83:05:90:5f:de:c9:6e:a1:35:a3:ad: 89:cd:52:67 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUeVVn8QiObb0g4mOEflQCxHe48/YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTNaFw0yNDExMDMwNDA3MTNaMDMxMTAvBgNV BAMTKDc3ODk3Q0JERkIxRjNEMkM1QTNBN0Y5NTU4OTg1NEUyNDU0RTE4ODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnC512J3IRF8/AhUCLbz0E6d4o 6Cc4kyxf97zKFaX3P1cdp3F9tdhTfiVKXSU8F8ytyrCNEK88o7NaLfnEtJqIuPJ5 KSB85RZfW6W/0j2MutAiH6je/UF2RDpZExUdQ+mqzmeu75pPOebE8TFyKgBnyqJV M06AzFZG7SUsyzSfAfbAfbMO3eJbFHJPQMzIhCRQMpBUuEwf6KG1wW75d93ToEKV JuMEaoSjOAB2Vmem9LhOBTV4QMhmx+1b2z9GanQvkgj7I5O8L8GgAW2NLqFYmOsq KPAi4qiZ8Z+n7siQWdPpfzpLtRUy/F4hVvNOd7ys6BcAbo1dAt362Xk/4jGjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUd4l8vfsfPSxaOn+VWJhU4kVOGIgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLgwDQYJKoZIhvcNAQELBQADggEBAGI5 T0pXtg6NaFDmltuMohIbPVeDkhdFVMj3DLbmRUESr0+VADHe/lg9BO9q2frDDGKT CJ2Rh30vECiCvbBqcG8oLAZw/FRHOKxC36ey1wxJyDKVLNMtj+VnLZKG7f5vOWCq 6y/rACSO9rY+IpfHtgxWcgO1rJbZHZwi5BGkN+asX4qb+ryjRCscnDcHg5RsryvP wgAiVSRn8cKSMb758jcazU8Y/HSkSoqh7yuq8DtPRk0mZTf8OwmL7LeGTcGOwK2D x9RSWCvsRMAFFTtfta4z+L/G04eeCo9+OAJqI5GRb0mCWgvxyvZE+Zk0FkNfdNeD BZBf3sluoTWjrYnNUmc= -----END CERTIFICATE-----Generated at Fri May 17 06:17:21 2024 by rpki-client on console-fra.rpki-client.org