$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200732.roa File: AS200732.roa (raw, json) Hash identifier: 0kqz2lWc0TtTgblQHnFvyvbEZl1Z90A4xlRtxogJgpg= Subject key identifier: ED:3F:64:4D:31:B0:B1:EC:79:3D:B1:6E:DB:9B:6F:00:D1:23:3F:93 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 79D681B09CAAD5668518CC5DEBF9B12AD1551AB8 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200732.roa Signing time: Sun 05 Nov 2023 04:07:20 +0000 ROA not before: Sun 05 Nov 2023 04:02:20 +0000 ROA not after: Sun 03 Nov 2024 04:07:20 +0000 asID: 200732 IP address blocks: 2a0a:6040:b600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:d6:81:b0:9c:aa:d5:66:85:18:cc:5d:eb:f9:b1:2a:d1:55:1a:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:20 2023 GMT Not After : Nov 3 04:07:20 2024 GMT Subject: CN=ED3F644D31B0B1EC793DB16EDB9B6F00D1233F93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:88:50:6f:d4:e1:67:b4:44:a6:c7:14:ca: 96:09:1a:30:9b:b0:37:fb:4c:51:03:c2:f9:a5:84: e1:f1:70:86:87:02:02:da:d5:f3:f7:98:e8:6c:b1: 44:7a:39:e0:cb:2d:d4:10:f8:79:62:ea:a9:9c:cc: 1b:c6:f9:2c:9f:43:f2:a5:4e:56:aa:24:3e:d7:93: 6f:bb:2d:c4:88:2a:4b:15:43:bd:06:16:12:04:a8: 08:4a:17:92:01:7f:2e:ad:aa:a1:a3:ff:86:c9:ab: 57:e0:9d:ef:51:41:e0:2b:e4:58:40:dd:d2:78:3a: e3:cd:8d:c5:03:17:b6:87:09:21:b5:70:a2:03:f6: 43:bf:32:e1:41:73:d5:5c:14:2c:6b:b3:e9:2d:68: 1e:df:fa:81:22:3e:10:59:12:b8:b5:67:aa:52:9c: 9b:10:59:46:0d:6d:19:bf:72:e1:3f:68:5e:fb:d7: 74:c4:f0:16:94:ca:be:5e:e0:e2:f4:97:bf:d4:44: b1:6a:8d:fc:2f:16:bb:0b:91:60:4a:df:79:92:0f: d5:ee:b3:cc:eb:bb:5c:f2:30:84:43:2e:e0:2f:d2: d6:7d:24:56:7a:69:64:b3:0a:07:9b:d0:f1:c3:b1: 8b:ca:80:87:8c:af:68:f4:a9:00:e6:4f:98:d2:fb: 2b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3F:64:4D:31:B0:B1:EC:79:3D:B1:6E:DB:9B:6F:00:D1:23:3F:93 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b600::/40 Signature Algorithm: sha256WithRSAEncryption 5f:e8:8e:74:ad:4c:3e:e7:d3:0c:87:2d:6d:e9:1f:2d:7d:7f: a5:0b:d9:1f:97:75:09:10:2f:b0:6e:9e:83:55:bc:cb:ee:a0: 06:59:c4:60:0f:d4:5d:33:0b:25:d5:54:b6:5a:c4:0f:81:66: 75:98:f0:df:90:72:5e:47:4e:c4:30:87:2b:4d:27:bf:17:5b: 6f:13:6d:14:14:58:d2:3d:b2:6e:e3:f7:95:80:41:92:5b:c4: 73:eb:17:1b:d6:40:a2:f6:ea:0d:12:e8:63:d9:47:c8:46:f0: ca:fc:23:10:76:55:74:54:27:ac:38:5e:83:32:f3:f7:5b:6f: b7:86:89:df:80:14:ec:dc:6e:bb:28:06:9c:21:28:e1:04:a2: b2:5b:9c:97:80:df:42:39:d0:59:d4:f4:ae:47:f4:c0:43:a5: 85:00:80:47:88:77:03:28:9e:72:8a:44:85:52:37:81:12:a2: b2:b4:ad:62:c0:ac:89:08:28:41:f1:7b:08:67:4c:6f:41:08: 91:70:20:04:d8:76:b8:ff:7f:f2:03:fa:31:a6:08:3f:e0:6c: 4f:40:68:90:8f:49:59:b1:80:f5:86:5a:92:1f:66:1a:55:b0: c5:af:fc:c4:f3:18:50:30:2c:a5:59:a3:fc:86:f1:f9:e0:12: c1:78:87:7c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUedaBsJyq1WaFGMxd6/mxKtFVGrgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjBaFw0yNDExMDMwNDA3MjBaMDMxMTAvBgNV BAMTKEVEM0Y2NDREMzFCMEIxRUM3OTNEQjE2RURCOUI2RjAwRDEyMzNGOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/5YhQb9ThZ7REpscUypYJGjCb sDf7TFEDwvmlhOHxcIaHAgLa1fP3mOhssUR6OeDLLdQQ+Hli6qmczBvG+SyfQ/Kl TlaqJD7Xk2+7LcSIKksVQ70GFhIEqAhKF5IBfy6tqqGj/4bJq1fgne9RQeAr5FhA 3dJ4OuPNjcUDF7aHCSG1cKID9kO/MuFBc9VcFCxrs+ktaB7f+oEiPhBZEri1Z6pS nJsQWUYNbRm/cuE/aF7713TE8BaUyr5e4OL0l7/URLFqjfwvFrsLkWBK33mSD9Xu s8zru1zyMIRDLuAv0tZ9JFZ6aWSzCgeb0PHDsYvKgIeMr2j0qQDmT5jS+yunAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7T9kTTGwsex5PbFu25tvANEjP5MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLYwDQYJKoZIhvcNAQELBQADggEBAF/o jnStTD7n0wyHLW3pHy19f6UL2R+XdQkQL7BunoNVvMvuoAZZxGAP1F0zCyXVVLZa xA+BZnWY8N+Qcl5HTsQwhytNJ78XW28TbRQUWNI9sm7j95WAQZJbxHPrFxvWQKL2 6g0S6GPZR8hG8Mr8IxB2VXRUJ6w4XoMy8/dbb7eGid+AFOzcbrsoBpwhKOEEorJb nJeA30I50FnU9K5H9MBDpYUAgEeIdwMonnKKRIVSN4ESorK0rWLArIkIKEHxewhn TG9BCJFwIATYdrj/f/ID+jGmCD/gbE9AaJCPSVmxgPWGWpIfZhpVsMWv/MTzGFAw LKVZo/yG8fngEsF4h3w= -----END CERTIFICATE-----Generated at Mon May 20 12:06:23 2024 by rpki-client on console-ams.rpki-client.org