$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200850.roa File: AS200850.roa (raw, json) Hash identifier: A5hr7OIsFyS49QX/tm8unBM3saAN+mJB5oJRrfW4VHo= Subject key identifier: 11:0E:62:46:C0:8A:67:68:E3:B4:10:CC:99:6B:FF:36:62:D2:B9:47 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 65D7C29AE0E0967444838D3519B71A8FB3763ACD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200850.roa Signing time: Sun 05 Nov 2023 04:07:05 +0000 ROA not before: Sun 05 Nov 2023 04:02:05 +0000 ROA not after: Sun 03 Nov 2024 04:07:05 +0000 asID: 200850 IP address blocks: 2a0a:6040:800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d7:c2:9a:e0:e0:96:74:44:83:8d:35:19:b7:1a:8f:b3:76:3a:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:05 2023 GMT Not After : Nov 3 04:07:05 2024 GMT Subject: CN=110E6246C08A6768E3B410CC996BFF3662D2B947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:09:1f:4c:ca:58:ef:ae:f0:2b:c8:b9:d2:8e: 22:9a:09:ac:05:7f:4d:a9:f6:aa:ab:4d:f1:bd:6e: fa:6e:ab:f8:68:6b:65:6a:51:1b:40:75:d2:d7:42: 12:2f:c7:2e:b5:c0:6c:b9:ea:52:a2:9f:98:17:33: 0c:a6:d0:5d:5d:e8:73:fb:b0:8c:48:61:de:1e:06: 5e:f1:19:ca:12:cb:00:4d:4e:69:49:fe:04:77:09: 55:d9:d2:a3:25:f5:99:46:22:32:25:2b:d9:3f:d6: ed:58:5a:9f:5c:c6:f2:31:67:09:11:29:b6:7c:e8: 4c:68:e9:30:94:e4:10:64:18:dc:34:bc:49:56:c8: fe:92:7c:54:59:e5:02:84:19:6b:e6:2e:58:5e:39: 62:a3:cd:55:a3:7b:16:47:6b:c7:c9:ed:d6:1c:e3: a9:35:93:0b:05:2b:c5:25:ee:ef:93:29:ac:59:c7: d3:ea:48:18:15:cf:0c:ec:fa:de:d1:ee:46:51:c7: 47:a9:81:23:3d:bc:0b:86:8b:3f:9d:c7:18:fe:e6: 5d:2c:3d:43:0e:55:8a:e2:a2:a4:7b:d8:9d:50:e9: cf:f4:bc:24:91:a1:98:98:14:f1:fd:5d:ad:b9:bb: 61:77:62:e5:ef:97:31:c2:36:40:bb:87:bc:3d:a1: f7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0E:62:46:C0:8A:67:68:E3:B4:10:CC:99:6B:FF:36:62:D2:B9:47 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200850.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:800::/40 Signature Algorithm: sha256WithRSAEncryption 0f:6c:5a:62:95:89:a4:ed:40:c0:1f:d8:93:9c:de:d0:1b:3b: f0:cd:dd:28:78:db:3d:92:ca:51:a5:28:e2:9b:95:4f:25:c3: 8c:55:b0:21:ee:f3:77:20:d8:eb:2e:96:e4:57:58:c2:db:58: 8e:2b:e7:e0:0e:32:28:61:4f:d1:5d:f6:90:da:49:f6:00:39: 43:50:7c:9a:ad:5b:b1:00:38:4a:d8:5a:ec:d6:ee:cd:83:7d: 7b:c9:7a:3e:e9:86:35:f2:1b:20:3d:92:01:a3:e5:8f:7e:ae: 5a:54:71:1c:a7:76:60:64:60:b7:05:84:96:2a:46:d2:8a:0a: c9:0b:15:42:3a:ff:2e:b7:e2:6b:cc:6e:24:a8:87:0d:06:35: e4:eb:5f:00:d9:cf:4a:0b:36:8a:06:70:2a:07:c3:ab:85:0b: a4:91:77:6f:17:12:9b:b2:be:8b:95:44:d8:51:3d:69:ef:91: 07:17:c2:78:56:c1:a8:fe:d2:c1:7f:69:87:5a:5b:e2:c5:04: f7:d6:11:d3:79:48:6a:7f:c8:7a:5a:d8:fe:ab:cd:97:7b:bd: 3c:0d:c5:c0:7b:b4:8c:21:ee:2a:e5:39:1b:26:af:2e:d2:9b: 1a:fa:bd:93:69:f4:ea:da:74:90:c7:fd:a1:ff:5e:88:80:74: bf:32:06:f7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZdfCmuDglnREg401Gbcaj7N2Os0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDVaFw0yNDExMDMwNDA3MDVaMDMxMTAvBgNV BAMTKDExMEU2MjQ2QzA4QTY3NjhFM0I0MTBDQzk5NkJGRjM2NjJEMkI5NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDACR9MyljvrvAryLnSjiKaCawF f02p9qqrTfG9bvpuq/hoa2VqURtAddLXQhIvxy61wGy56lKin5gXMwym0F1d6HP7 sIxIYd4eBl7xGcoSywBNTmlJ/gR3CVXZ0qMl9ZlGIjIlK9k/1u1YWp9cxvIxZwkR KbZ86Exo6TCU5BBkGNw0vElWyP6SfFRZ5QKEGWvmLlheOWKjzVWjexZHa8fJ7dYc 46k1kwsFK8Ul7u+TKaxZx9PqSBgVzwzs+t7R7kZRx0epgSM9vAuGiz+dxxj+5l0s PUMOVYrioqR72J1Q6c/0vCSRoZiYFPH9Xa25u2F3YuXvlzHCNkC7h7w9ofe1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEQ5iRsCKZ2jjtBDMmWv/NmLSuUcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAgwDQYJKoZIhvcNAQELBQADggEBAA9s WmKViaTtQMAf2JOc3tAbO/DN3Sh42z2SylGlKOKblU8lw4xVsCHu83cg2OsuluRX WMLbWI4r5+AOMihhT9Fd9pDaSfYAOUNQfJqtW7EAOErYWuzW7s2DfXvJej7phjXy GyA9kgGj5Y9+rlpUcRyndmBkYLcFhJYqRtKKCskLFUI6/y634mvMbiSohw0GNeTr XwDZz0oLNooGcCoHw6uFC6SRd28XEpuyvouVRNhRPWnvkQcXwnhWwaj+0sF/aYda W+LFBPfWEdN5SGp/yHpa2P6rzZd7vTwNxcB7tIwh7irlORsmry7Smxr6vZNp9Ora dJDH/aH/XoiAdL8yBvc= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org