$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200840.roa File: AS200840.roa (raw, json) Hash identifier: /Bsa9EJvhgswAfBApWiDNCFvlO+1pdkJXx0xDt3MECg= Subject key identifier: 73:70:46:31:81:B9:96:B8:B1:E3:AD:BD:E0:06:3D:A1:47:CE:F8:11 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4499E534579CC2565AC41553FA44318EB41859E4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200840.roa Signing time: Sun 05 Nov 2023 04:07:22 +0000 ROA not before: Sun 05 Nov 2023 04:02:22 +0000 ROA not after: Sun 03 Nov 2024 04:07:22 +0000 asID: 200840 IP address blocks: 2a0a:6040:c400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:99:e5:34:57:9c:c2:56:5a:c4:15:53:fa:44:31:8e:b4:18:59:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:22 2023 GMT Not After : Nov 3 04:07:22 2024 GMT Subject: CN=7370463181B996B8B1E3ADBDE0063DA147CEF811 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:99:d0:aa:7b:29:3b:07:19:d4:34:77:4a:f5: b5:23:e1:81:82:ac:7b:e4:16:7d:5e:b6:8d:76:90: a4:d3:c3:cd:cf:44:ae:d6:01:55:ba:b0:42:44:4e: 7f:e7:38:f1:91:c3:a0:dc:ce:e9:9d:4d:72:cc:32: 74:d1:bf:f1:14:94:cc:fb:50:14:f3:ff:b5:39:77: 52:18:61:a5:5f:6f:45:01:46:70:19:c4:18:05:ae: 8e:24:5d:8f:8a:4c:96:aa:7f:2b:2f:a8:f6:29:9a: 33:89:37:42:0d:5e:1d:31:bd:88:d9:45:9f:8d:c4: 69:3f:ed:32:e2:32:78:00:63:de:c1:f3:33:df:7a: db:50:ad:93:8f:07:8a:cf:55:e8:2c:2e:b6:12:a5: 73:3f:19:5d:0e:9f:25:32:01:e0:14:d8:8c:86:f6: d4:44:49:54:65:1f:4a:21:a7:ad:6c:4a:f2:64:71: f4:4c:18:81:bd:ea:b2:3a:87:4a:f5:55:2a:55:f3: 3d:1a:b3:04:e3:62:e2:f1:7f:4a:74:44:ea:37:c0: 9c:66:c8:e1:b3:ce:9b:6d:79:05:e8:69:9a:91:8d: 8b:31:0c:6a:85:2e:1f:5a:c8:ba:5c:eb:09:44:10: af:af:db:9f:38:af:d3:22:75:fb:19:37:08:67:61: da:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:70:46:31:81:B9:96:B8:B1:E3:AD:BD:E0:06:3D:A1:47:CE:F8:11 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c400::/40 Signature Algorithm: sha256WithRSAEncryption c4:bb:15:fd:60:ad:8b:c7:c0:88:5a:fd:38:96:8e:4f:76:59: 7b:95:82:54:01:ac:a5:db:4e:0c:33:3a:eb:6f:96:40:d1:a7: d8:cf:85:13:66:12:f7:de:6b:69:ab:05:c4:88:56:e9:dc:c7: 19:a2:b4:ff:50:e6:e8:0d:4a:8d:d7:18:26:bb:df:de:30:85: eb:9d:fd:5d:ec:06:c0:4a:34:71:b0:7a:74:7a:0e:6c:0d:4b: b6:9a:29:53:a1:8a:5b:75:1c:6d:d1:55:4d:8f:28:5b:ed:a3: ca:21:29:d1:c4:16:a9:0d:d5:1b:21:33:17:f5:4c:fd:ce:63: 26:95:72:3b:b2:7a:9d:ff:35:91:a0:b6:3a:07:57:7e:84:b4: 86:d5:30:b2:b9:6d:92:01:2d:cf:6a:03:14:33:66:29:bf:44: e1:f1:63:1a:ac:84:22:41:2a:f8:8d:bf:e7:58:e8:ce:60:33: c7:31:4c:df:cf:fb:c7:f9:f7:df:f3:36:2c:c0:1f:46:ec:0a: eb:e6:a3:a8:88:26:ee:2e:2d:cb:0c:a4:c7:7f:4e:3e:2f:3e: b4:21:5e:dd:d5:96:64:20:26:5a:68:70:9c:2a:88:42:56:4f: 82:12:96:89:42:5c:34:38:5f:73:f6:3e:8a:a8:31:40:68:55: 4a:58:a3:47 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURJnlNFecwlZaxBVT+kQxjrQYWeQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjJaFw0yNDExMDMwNDA3MjJaMDMxMTAvBgNV BAMTKDczNzA0NjMxODFCOTk2QjhCMUUzQURCREUwMDYzREExNDdDRUY4MTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUmdCqeyk7BxnUNHdK9bUj4YGC rHvkFn1eto12kKTTw83PRK7WAVW6sEJETn/nOPGRw6DczumdTXLMMnTRv/EUlMz7 UBTz/7U5d1IYYaVfb0UBRnAZxBgFro4kXY+KTJaqfysvqPYpmjOJN0INXh0xvYjZ RZ+NxGk/7TLiMngAY97B8zPfettQrZOPB4rPVegsLrYSpXM/GV0OnyUyAeAU2IyG 9tRESVRlH0ohp61sSvJkcfRMGIG96rI6h0r1VSpV8z0aswTjYuLxf0p0ROo3wJxm yOGzzptteQXoaZqRjYsxDGqFLh9ayLpc6wlEEK+v2584r9MidfsZNwhnYdq5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUc3BGMYG5lrix46294AY9oUfO+BEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMQwDQYJKoZIhvcNAQELBQADggEBAMS7 Ff1grYvHwIha/TiWjk92WXuVglQBrKXbTgwzOutvlkDRp9jPhRNmEvfea2mrBcSI VuncxxmitP9Q5ugNSo3XGCa7394wheud/V3sBsBKNHGwenR6DmwNS7aaKVOhilt1 HG3RVU2PKFvto8ohKdHEFqkN1RshMxf1TP3OYyaVcjuyep3/NZGgtjoHV36EtIbV MLK5bZIBLc9qAxQzZim/ROHxYxqshCJBKviNv+dY6M5gM8cxTN/P+8f599/zNizA H0bsCuvmo6iIJu4uLcsMpMd/Tj4vPrQhXt3VlmQgJlpocJwqiEJWT4ISlolCXDQ4 X3P2PoqoMUBoVUpYo0c= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org