$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200754.roa File: AS200754.roa (raw, json) Hash identifier: cC3ieR3SHG1Uk7Be6KZTseCGs9dWYN3v0tYZpxOJYeg= Subject key identifier: 96:A8:0D:D5:8B:3D:6B:FF:F3:41:F2:45:51:9C:57:F7:AE:B9:98:D5 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2B40CFF1A8ED0E2331742B5ECFFA18CD36C5A9A4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200754.roa Signing time: Sun 05 Nov 2023 04:07:16 +0000 ROA not before: Sun 05 Nov 2023 04:02:16 +0000 ROA not after: Sun 03 Nov 2024 04:07:16 +0000 asID: 200754 IP address blocks: 2a0a:6040:c300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:40:cf:f1:a8:ed:0e:23:31:74:2b:5e:cf:fa:18:cd:36:c5:a9:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:16 2023 GMT Not After : Nov 3 04:07:16 2024 GMT Subject: CN=96A80DD58B3D6BFFF341F245519C57F7AEB998D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:11:3d:de:34:ca:60:9c:9e:f9:77:56:b6:63: 1f:8e:31:09:77:0c:7e:a8:c2:a0:9d:a0:4e:5b:6e: 44:6d:12:cc:08:19:d9:f6:2b:33:6a:e0:87:a5:79: 48:bb:db:59:bc:10:a1:10:8d:23:55:9f:2d:6f:d5: cc:f4:f7:85:7d:42:ed:8d:37:d0:c5:ff:91:b8:bd: 68:6e:63:b3:8e:90:66:f4:c9:e9:55:92:43:b0:1d: dc:9e:a9:19:72:d2:7a:74:bc:ed:f1:06:c9:75:ed: a5:82:ba:72:08:3a:4f:c7:1b:77:4f:40:dd:89:e7: 4b:d1:2d:70:96:f4:e7:16:4c:86:83:f7:f8:1e:1a: 6a:ea:86:08:94:b4:e3:10:05:f6:dd:89:20:e4:95: 51:81:d1:01:b4:97:66:f2:0a:4b:20:b7:bd:ab:4a: fb:c5:8b:42:ad:32:5d:17:07:33:38:4c:8c:a4:b5: d3:72:5c:cc:e7:1c:9d:f3:4a:e8:50:78:cb:c6:7a: 84:f5:31:e1:11:bb:5a:7c:fc:44:0f:05:cc:32:8d: 41:38:1c:81:74:48:d8:52:01:84:bf:e2:55:e5:d3: 07:85:8e:a2:23:7a:01:db:66:0d:23:5d:df:b4:f1: 07:1e:11:04:d8:9a:11:05:3e:2a:88:2e:cd:fc:cb: e6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A8:0D:D5:8B:3D:6B:FF:F3:41:F2:45:51:9C:57:F7:AE:B9:98:D5 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200754.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c300::/40 Signature Algorithm: sha256WithRSAEncryption b1:c9:b4:36:b0:86:85:2a:e5:4b:09:09:fd:7d:31:81:e8:d1: 83:65:ad:5c:86:58:2a:72:72:4f:64:b5:33:f4:d7:14:fd:75: 35:33:df:d6:f8:f9:ae:c6:b2:d5:37:9f:74:86:06:4c:56:0f: 32:26:d5:08:e0:b4:6a:b3:76:03:95:c2:ad:de:78:a5:6e:61: f2:61:d1:20:ac:0c:87:da:46:f7:78:a6:7b:71:41:37:a3:e1: 6e:c9:02:f7:05:51:bc:b1:40:ef:fb:51:ad:42:cc:c2:34:08: 7f:ef:5e:66:d5:c7:29:8f:5b:7c:91:dd:f3:86:01:7e:7d:01: cc:e9:1a:50:5a:5c:3e:37:34:d9:02:bc:ef:35:5b:1d:aa:f7: 1f:28:a4:33:10:0d:24:85:bb:c4:5b:23:43:d1:09:97:02:22: 4a:35:c7:28:59:73:2d:5d:75:de:a7:82:e3:64:3e:82:b3:09: 1a:89:a8:f9:cb:6d:99:c7:18:8d:b5:8c:f5:5f:71:81:1e:65: fd:50:fa:27:ae:5e:bd:4b:40:1f:6b:97:41:3c:03:61:d0:19: 4a:be:c3:90:d7:a2:77:71:17:bd:c3:64:14:d1:58:ad:cd:ba: 20:ce:78:e9:52:81:42:38:47:ef:88:1d:93:8b:06:f5:7a:48: 66:05:0b:68 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUK0DP8ajtDiMxdCtez/oYzTbFqaQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTZaFw0yNDExMDMwNDA3MTZaMDMxMTAvBgNV BAMTKDk2QTgwREQ1OEIzRDZCRkZGMzQxRjI0NTUxOUM1N0Y3QUVCOTk4RDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQET3eNMpgnJ75d1a2Yx+OMQl3 DH6owqCdoE5bbkRtEswIGdn2KzNq4IeleUi721m8EKEQjSNVny1v1cz094V9Qu2N N9DF/5G4vWhuY7OOkGb0yelVkkOwHdyeqRly0np0vO3xBsl17aWCunIIOk/HG3dP QN2J50vRLXCW9OcWTIaD9/geGmrqhgiUtOMQBfbdiSDklVGB0QG0l2byCksgt72r SvvFi0KtMl0XBzM4TIyktdNyXMznHJ3zSuhQeMvGeoT1MeERu1p8/EQPBcwyjUE4 HIF0SNhSAYS/4lXl0weFjqIjegHbZg0jXd+08QceEQTYmhEFPiqILs38y+a7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlqgN1Ys9a//zQfJFUZxX9665mNUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMMwDQYJKoZIhvcNAQELBQADggEBALHJ tDawhoUq5UsJCf19MYHo0YNlrVyGWCpyck9ktTP01xT9dTUz39b4+a7GstU3n3SG BkxWDzIm1QjgtGqzdgOVwq3eeKVuYfJh0SCsDIfaRvd4pntxQTej4W7JAvcFUbyx QO/7Ua1CzMI0CH/vXmbVxymPW3yR3fOGAX59AczpGlBaXD43NNkCvO81Wx2q9x8o pDMQDSSFu8RbI0PRCZcCIko1xyhZcy1ddd6nguNkPoKzCRqJqPnLbZnHGI21jPVf cYEeZf1Q+ieuXr1LQB9rl0E8A2HQGUq+w5DXondxF73DZBTRWK3NuiDOeOlSgUI4 R++IHZOLBvV6SGYFC2g= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org