$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200795.roa File: AS200795.roa (raw, json) Hash identifier: TylJNx0KAt+emNvbljOoOt3bgl6YDa5l+cAEGQ8WxH8= Subject key identifier: 9D:ED:BC:5C:D1:3F:53:3C:94:AA:17:D1:29:DB:FA:02:43:D1:F8:74 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 10A35877F756228CF059BCA6905080A4C16A6C06 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200795.roa Signing time: Sun 05 Nov 2023 04:07:21 +0000 ROA not before: Sun 05 Nov 2023 04:02:21 +0000 ROA not after: Sun 03 Nov 2024 04:07:21 +0000 asID: 200795 IP address blocks: 2a0a:6040:be00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a3:58:77:f7:56:22:8c:f0:59:bc:a6:90:50:80:a4:c1:6a:6c:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:21 2023 GMT Not After : Nov 3 04:07:21 2024 GMT Subject: CN=9DEDBC5CD13F533C94AA17D129DBFA0243D1F874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:55:6b:51:59:9c:14:47:b9:c8:57:e3:3d:31: bc:2d:c9:4e:74:1b:5d:53:7e:79:e5:37:0f:d5:41: ab:a6:69:98:b4:36:3b:bf:17:56:e1:f6:53:f7:95: 6b:2d:26:45:e0:36:ae:64:35:d5:6e:9a:25:49:7f: 89:fc:1f:2c:ea:2c:cf:e1:d4:61:50:0b:7f:79:68: a6:6b:36:74:ed:98:7a:84:41:a5:62:f5:0f:f3:85: 2b:48:65:da:34:1e:77:9c:96:b9:f7:88:b1:d0:b2: 8d:13:dc:c5:46:4c:d8:68:02:0d:30:f7:d0:01:51: e2:71:25:e2:f0:e4:39:6c:fc:33:48:f1:6d:cf:0e: 89:78:9a:8d:93:d2:bc:71:94:73:3c:11:3b:94:2d: 19:c1:e8:be:ad:b5:2d:3a:f5:3c:97:7a:ec:10:38: af:f2:a1:f8:ed:f5:29:04:8f:cf:df:12:79:73:36: a2:d1:e4:ce:64:97:89:3c:b6:86:fb:56:34:f4:ae: fd:4b:59:58:ab:82:0a:d6:2a:6e:62:4f:02:41:a6: 65:08:2f:78:fb:a8:ce:64:62:27:7f:3e:e7:80:2b: e2:9a:94:09:75:d2:c6:b8:e1:32:39:6d:ad:82:e9: 19:b6:7f:90:45:ca:c7:79:47:c8:9f:fd:22:b7:69: 50:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:ED:BC:5C:D1:3F:53:3C:94:AA:17:D1:29:DB:FA:02:43:D1:F8:74 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200795.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:be00::/40 Signature Algorithm: sha256WithRSAEncryption 11:72:16:ee:44:54:5c:a1:06:f5:62:1f:87:4f:99:0b:49:99: 8a:d9:0b:a9:7e:3c:c2:1b:f3:77:bf:50:8a:e1:37:d5:3b:d1: 97:17:45:8f:0c:e5:09:32:ae:aa:ca:c7:70:d0:fa:af:70:fa: ac:d5:d0:4c:40:c8:7c:bb:a2:86:5e:bb:fc:16:9a:7a:3b:16: 24:8c:1f:f5:ac:a2:06:2c:88:b9:40:df:d3:47:a7:32:35:db: 76:7c:95:5d:0b:49:70:1b:cc:2a:38:63:15:41:a5:21:8b:29: e7:45:70:99:fc:d1:3d:2a:56:be:bf:10:db:b8:c8:de:24:85: 01:36:7c:98:57:7b:d6:8f:f7:71:b6:24:39:15:eb:6b:58:e2: bf:15:3b:1b:4d:85:4f:e8:82:22:d9:a3:73:58:76:97:8a:38: f5:0a:2c:a5:3b:0c:bb:92:71:66:5f:40:bb:86:79:ea:f9:6e: e3:40:98:84:c0:f6:aa:10:ed:cf:f8:69:e0:5c:6c:4a:96:4a: d9:a2:20:a5:fc:85:f1:3a:6e:77:9e:d2:28:0c:4b:69:55:79: c1:78:c2:f1:73:36:3a:77:31:0f:0f:35:3d:7a:4c:e0:a3:e9: 5e:41:7b:7b:b0:9f:51:f6:00:c4:c6:76:f7:99:a5:ca:93:cf: 4d:25:d9:57 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEKNYd/dWIozwWbymkFCApMFqbAYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjFaFw0yNDExMDMwNDA3MjFaMDMxMTAvBgNV BAMTKDlERURCQzVDRDEzRjUzM0M5NEFBMTdEMTI5REJGQTAyNDNEMUY4NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8VWtRWZwUR7nIV+M9MbwtyU50 G11TfnnlNw/VQaumaZi0Nju/F1bh9lP3lWstJkXgNq5kNdVumiVJf4n8HyzqLM/h 1GFQC395aKZrNnTtmHqEQaVi9Q/zhStIZdo0Hneclrn3iLHQso0T3MVGTNhoAg0w 99ABUeJxJeLw5Dls/DNI8W3PDol4mo2T0rxxlHM8ETuULRnB6L6ttS069TyXeuwQ OK/yofjt9SkEj8/fEnlzNqLR5M5kl4k8tob7VjT0rv1LWVirggrWKm5iTwJBpmUI L3j7qM5kYid/PueAK+KalAl10sa44TI5ba2C6Rm2f5BFysd5R8if/SK3aVCFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUne28XNE/UzyUqhfRKdv6AkPR+HQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwNzk1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL4wDQYJKoZIhvcNAQELBQADggEBABFy Fu5EVFyhBvViH4dPmQtJmYrZC6l+PMIb83e/UIrhN9U70ZcXRY8M5QkyrqrKx3DQ +q9w+qzV0ExAyHy7ooZeu/wWmno7FiSMH/WsogYsiLlA39NHpzI123Z8lV0LSXAb zCo4YxVBpSGLKedFcJn80T0qVr6/ENu4yN4khQE2fJhXe9aP93G2JDkV62tY4r8V OxtNhU/ogiLZo3NYdpeKOPUKLKU7DLuScWZfQLuGeer5buNAmITA9qoQ7c/4aeBc bEqWStmiIKX8hfE6bnee0igMS2lVecF4wvFzNjp3MQ8PNT16TOCj6V5Be3uwn1H2 AMTGdveZpcqTz00l2Vc= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org