$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200775.roa File: AS200775.roa (raw, json) Hash identifier: +PVrWT3FmWRlNIBMSAAN8f7sYsh4UikGxjJXFgUTTTQ= Subject key identifier: 09:2B:A6:3B:6E:1D:03:B4:01:79:26:74:D5:AE:DC:43:B9:52:5F:C0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0FDDAB6E0423951728DAC4F7DAC4DE94874418CE Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200775.roa Signing time: Sun 05 Nov 2023 04:07:12 +0000 ROA not before: Sun 05 Nov 2023 04:02:12 +0000 ROA not after: Sun 03 Nov 2024 04:07:12 +0000 asID: 200775 IP address blocks: 2a0a:6040:c200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:dd:ab:6e:04:23:95:17:28:da:c4:f7:da:c4:de:94:87:44:18:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:12 2023 GMT Not After : Nov 3 04:07:12 2024 GMT Subject: CN=092BA63B6E1D03B401792674D5AEDC43B9525FC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:0f:b7:f8:f4:be:17:70:e9:5f:6e:87:80: 9a:2d:dd:05:d9:6e:e4:45:86:6e:4c:bd:cd:e9:84: de:fe:d1:13:a2:ef:be:b8:d9:8f:8e:7c:81:60:aa: 37:c8:75:e3:57:d7:8c:44:b4:79:c9:90:2d:c0:7e: ee:29:ec:d9:37:2d:c3:84:a1:7f:54:df:de:d8:30: d7:e4:e1:31:12:48:98:a8:1b:ac:a7:3f:11:8e:3b: e4:8c:bf:63:e6:3d:52:a6:bf:90:31:e5:5d:ef:f4: 08:fd:a7:4e:bf:3a:02:08:52:e7:b8:1d:63:40:ae: 4f:d1:1b:e7:8b:08:b7:64:f1:11:e3:e0:74:9e:2d: ed:c7:21:d0:62:62:8b:36:5b:42:08:7b:b6:f6:79: cf:c3:6e:09:66:09:dc:76:41:bf:7e:48:85:73:80: 64:a6:29:32:1a:29:d7:4b:a6:b0:ff:09:e2:e6:d3: 25:60:e4:a6:3b:0a:46:e6:ba:22:34:7e:2b:57:f8: 41:db:7c:0b:2b:7c:8f:f5:e2:b2:9b:4a:4e:59:f6: 92:7b:c8:d1:a7:18:c2:81:3c:6d:e4:28:f9:ef:7a: 25:ad:2a:9f:ac:4c:a3:57:bc:b2:52:f7:f2:85:88: 1f:72:3e:cf:d3:4d:ee:61:e3:f6:ae:f0:1c:d5:ed: be:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:2B:A6:3B:6E:1D:03:B4:01:79:26:74:D5:AE:DC:43:B9:52:5F:C0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200775.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c200::/40 Signature Algorithm: sha256WithRSAEncryption 83:70:07:96:1a:32:17:3e:1b:0e:b9:2a:b5:2e:20:78:3e:84: e8:fc:84:16:24:66:09:e6:0a:e0:db:de:04:63:de:06:4f:e1: b5:44:6d:4e:5d:80:5c:62:f2:6f:6d:92:89:43:88:b2:87:88: 95:e6:db:2b:2a:a5:b3:dc:7b:16:00:f4:18:a7:37:3d:26:1a: 4d:64:de:64:fb:31:a5:36:c4:82:7b:db:db:bc:03:48:ec:2f: af:97:19:15:1d:16:f3:29:91:bd:c5:07:70:e8:9d:37:0d:0c: ef:29:c8:dc:07:6a:c5:81:7d:ce:41:09:a5:08:dc:f4:df:ca: 79:8e:c8:ac:ac:f7:9c:0d:fc:71:35:48:ac:2d:8e:d0:7a:0d: 01:02:34:e8:5a:3d:e5:e1:86:9b:f6:4e:84:e8:9d:d4:56:86: 15:cb:90:cc:f9:6a:38:56:f7:65:e1:a0:f8:56:f9:0f:5f:83: e8:a7:a5:48:bf:d0:00:49:97:a2:26:95:0f:40:36:ba:ca:7b: 22:e7:d5:c7:af:61:9f:b8:ca:1c:21:d0:aa:8b:fe:8b:5b:1c: 28:76:4a:57:b5:7c:0a:57:dc:2c:52:7e:9e:1b:b7:18:1d:87: cc:21:7f:50:8f:8d:8a:87:30:59:c4:9e:d0:45:c0:c7:64:b4: c9:35:10:c2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUD92rbgQjlRco2sT32sTelIdEGM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTJaFw0yNDExMDMwNDA3MTJaMDMxMTAvBgNV BAMTKDA5MkJBNjNCNkUxRDAzQjQwMTc5MjY3NEQ1QUVEQzQzQjk1MjVGQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTqA+3+PS+F3DpX26HgJot3QXZ buRFhm5Mvc3phN7+0ROi77642Y+OfIFgqjfIdeNX14xEtHnJkC3Afu4p7Nk3LcOE oX9U397YMNfk4TESSJioG6ynPxGOO+SMv2PmPVKmv5Ax5V3v9Aj9p06/OgIIUue4 HWNArk/RG+eLCLdk8RHj4HSeLe3HIdBiYos2W0IIe7b2ec/DbglmCdx2Qb9+SIVz gGSmKTIaKddLprD/CeLm0yVg5KY7CkbmuiI0fitX+EHbfAsrfI/14rKbSk5Z9pJ7 yNGnGMKBPG3kKPnveiWtKp+sTKNXvLJS9/KFiB9yPs/TTe5h4/au8BzV7b4tAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCSumO24dA7QBeSZ01a7cQ7lSX8AwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMIwDQYJKoZIhvcNAQELBQADggEBAINw B5YaMhc+Gw65KrUuIHg+hOj8hBYkZgnmCuDb3gRj3gZP4bVEbU5dgFxi8m9tkolD iLKHiJXm2ysqpbPcexYA9BinNz0mGk1k3mT7MaU2xIJ729u8A0jsL6+XGRUdFvMp kb3FB3DonTcNDO8pyNwHasWBfc5BCaUI3PTfynmOyKys95wN/HE1SKwtjtB6DQEC NOhaPeXhhpv2ToTondRWhhXLkMz5ajhW92XhoPhW+Q9fg+inpUi/0ABJl6ImlQ9A NrrKeyLn1cevYZ+4yhwh0KqL/otbHCh2Sle1fApX3CxSfp4btxgdh8whf1CPjYqH MFnEntBFwMdktMk1EMI= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org