$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200766.roa File: AS200766.roa (raw, json) Hash identifier: u2j4MAnwGcMU95T77sLxQca90L8mWIBTE3bcMPm+dHw= Subject key identifier: AE:97:DD:85:CE:B0:70:2B:90:2F:91:B5:D3:03:8E:1B:69:4E:75:FB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4D460ABA501C4494B05B4EA545B5609B5A6174D6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200766.roa Signing time: Sun 05 Nov 2023 04:07:18 +0000 ROA not before: Sun 05 Nov 2023 04:02:18 +0000 ROA not after: Sun 03 Nov 2024 04:07:18 +0000 asID: 200766 IP address blocks: 2a0a:6040:c100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:46:0a:ba:50:1c:44:94:b0:5b:4e:a5:45:b5:60:9b:5a:61:74:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:18 2023 GMT Not After : Nov 3 04:07:18 2024 GMT Subject: CN=AE97DD85CEB0702B902F91B5D3038E1B694E75FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5f:62:a1:1f:0f:9b:50:b4:ad:96:d4:54:70: 4b:f7:45:2a:ae:1f:91:de:24:6f:56:90:4e:77:de: bf:ce:40:0c:90:59:20:97:8f:bd:f4:99:27:57:08: d4:a1:8d:be:57:9d:c6:3c:d5:e3:f4:61:54:53:e9: de:6d:03:7d:24:2c:f6:fb:a5:29:e7:33:8b:f3:37: e7:ce:5c:20:fd:e6:2f:2b:1b:ae:eb:69:c2:97:b2: e7:0c:c3:9e:6d:c5:92:f1:af:77:02:07:5a:ee:70: f5:32:b7:ca:30:95:fa:c2:57:f5:52:10:14:69:a5: be:97:10:58:67:46:98:03:eb:a1:e5:37:25:ed:3c: 3a:4b:f0:3d:a8:1d:dc:ff:78:5b:df:10:71:b0:6f: 69:0e:5b:33:3f:8c:2a:b5:26:c6:17:39:fe:d9:43: 3e:74:6d:aa:8a:77:ab:fb:2e:80:61:bb:0e:1e:0c: 60:d8:e9:18:e6:01:e4:aa:d5:65:0f:ed:80:b0:c6: 12:b0:fd:ed:c4:b2:9f:79:a3:40:ae:aa:39:37:17: d9:38:75:8f:e7:01:27:08:d6:ee:9c:aa:7e:a8:f8: 76:2a:a4:96:d6:bc:2e:6b:47:d0:a1:d9:71:2b:bd: 51:ef:8d:39:6b:66:9f:9f:a0:13:a0:36:b5:a3:17: b8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:97:DD:85:CE:B0:70:2B:90:2F:91:B5:D3:03:8E:1B:69:4E:75:FB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c100::/40 Signature Algorithm: sha256WithRSAEncryption a9:0e:08:66:25:27:96:c6:88:0d:fa:5a:ff:c6:ab:be:3f:ca: 38:28:f9:12:f4:53:7b:d8:6c:e1:94:15:be:3b:6d:61:cc:93: 96:24:b3:c3:25:e9:da:d5:7c:cb:cb:e9:95:b6:fe:4c:b8:d9: 7f:2f:bd:6f:55:5b:59:7b:89:90:33:fd:2c:7f:da:00:4f:e3: 7d:68:f3:b2:9d:c8:31:88:3e:10:5c:1a:24:af:07:63:51:23: 40:61:53:d3:bd:51:d3:30:4b:a2:31:10:01:51:32:1f:62:1a: c6:58:7d:1d:24:48:fb:31:7a:dc:f2:c2:dd:96:c9:50:45:88: f8:a9:1a:51:6b:77:89:b3:a6:42:d5:5f:62:ba:78:69:bc:b1: ae:50:ef:92:33:14:ea:68:70:7c:ba:d8:44:fb:5f:b6:b3:a1: b0:63:70:89:2f:5e:76:d6:47:62:6d:73:d3:e1:ad:0a:b7:d5: d6:56:e7:69:ce:46:ff:bf:03:27:92:dd:86:9d:d9:59:44:53: ee:b8:41:dc:19:0f:7c:e4:31:5d:03:bc:e6:74:92:e5:4d:a4: d9:ed:88:95:7a:c4:0c:b4:f7:c2:df:7b:03:34:a4:4e:23:de: e8:52:ba:aa:8b:68:79:5c:73:7c:c7:c3:4e:bb:67:10:93:25: 95:57:af:d3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTUYKulAcRJSwW06lRbVgm1phdNYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMThaFw0yNDExMDMwNDA3MThaMDMxMTAvBgNV BAMTKEFFOTdERDg1Q0VCMDcwMkI5MDJGOTFCNUQzMDM4RTFCNjk0RTc1RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJX2KhHw+bULStltRUcEv3RSqu H5HeJG9WkE533r/OQAyQWSCXj730mSdXCNShjb5XncY81eP0YVRT6d5tA30kLPb7 pSnnM4vzN+fOXCD95i8rG67racKXsucMw55txZLxr3cCB1rucPUyt8owlfrCV/VS EBRppb6XEFhnRpgD66HlNyXtPDpL8D2oHdz/eFvfEHGwb2kOWzM/jCq1JsYXOf7Z Qz50baqKd6v7LoBhuw4eDGDY6RjmAeSq1WUP7YCwxhKw/e3Esp95o0Cuqjk3F9k4 dY/nAScI1u6cqn6o+HYqpJbWvC5rR9Ch2XErvVHvjTlrZp+foBOgNrWjF7gHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrpfdhc6wcCuQL5G10wOOG2lOdfswHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMEwDQYJKoZIhvcNAQELBQADggEBAKkO CGYlJ5bGiA36Wv/Gq74/yjgo+RL0U3vYbOGUFb47bWHMk5Yks8Ml6drVfMvL6ZW2 /ky42X8vvW9VW1l7iZAz/Sx/2gBP431o87KdyDGIPhBcGiSvB2NRI0BhU9O9UdMw S6IxEAFRMh9iGsZYfR0kSPsxetzywt2WyVBFiPipGlFrd4mzpkLVX2K6eGm8sa5Q 75IzFOpocHy62ET7X7azobBjcIkvXnbWR2Jtc9PhrQq31dZW52nORv+/AyeS3Yad 2VlEU+64QdwZD3zkMV0DvOZ0kuVNpNntiJV6xAy098LfewM0pE4j3uhSuqqLaHlc c3zHw067ZxCTJZVXr9M= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org