$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200879.roa File: AS200879.roa (raw, json) Hash identifier: +O+pLkt9KFA/DzDSCRGSYddfFWW/gDRuy/y0futGziE= Subject key identifier: 71:8F:BD:63:EB:71:AC:B2:02:CA:FA:BE:7A:C6:26:8F:6C:9A:E0:29 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1B76E1C1070E8BCF2DBB5266217999439561B34A Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200879.roa Signing time: Sun 05 Nov 2023 04:07:14 +0000 ROA not before: Sun 05 Nov 2023 04:02:14 +0000 ROA not after: Sun 03 Nov 2024 04:07:14 +0000 asID: 200879 IP address blocks: 2a0a:6040:f200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Apr 2024 04:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:76:e1:c1:07:0e:8b:cf:2d:bb:52:66:21:79:99:43:95:61:b3:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:14 2023 GMT Not After : Nov 3 04:07:14 2024 GMT Subject: CN=718FBD63EB71ACB202CAFABE7AC6268F6C9AE029 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1c:10:ba:07:84:a3:50:1f:bd:40:f0:38:fc: a7:d6:7f:71:24:5d:97:d5:20:a5:2f:c8:9e:d2:d2: 2a:66:f6:f3:f7:af:b5:18:d2:45:5f:ef:1b:5a:af: 06:b5:22:74:aa:4a:f6:a5:c1:93:d8:c3:1e:d9:4a: 51:b8:7e:8b:92:39:6d:01:07:4b:0a:a7:4c:ed:67: d7:0c:ec:62:37:df:c2:b2:fb:cd:b4:e0:d2:4b:4f: 2a:88:26:cf:ae:14:23:18:0e:07:65:03:62:59:58: 1e:5c:12:8a:5b:de:1a:37:92:f7:42:92:b5:22:8d: cb:b0:47:b5:6d:b9:2d:2e:dd:89:a6:13:c7:a6:1b: ee:a2:14:57:c6:9a:87:aa:78:29:6d:49:0e:78:0e: af:ff:e2:2d:6b:58:fb:3a:b1:26:a7:0b:27:3f:20: e5:c1:ff:0a:d4:3c:5e:db:c4:c3:e8:98:95:77:64: 29:b6:39:bd:aa:e4:7a:0b:5a:20:d7:d1:4a:f0:a8: 5a:d6:46:88:81:af:cd:57:93:5e:5a:37:36:77:e8: 4e:a5:cf:12:22:ad:1d:36:15:74:03:20:49:62:69: c8:77:c0:37:4f:64:3d:cb:0d:f3:a7:61:9c:2e:48: d2:54:a5:79:2a:ec:61:df:37:0f:b2:70:9a:48:5f: a3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8F:BD:63:EB:71:AC:B2:02:CA:FA:BE:7A:C6:26:8F:6C:9A:E0:29 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200879.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f200::/40 Signature Algorithm: sha256WithRSAEncryption b7:1f:d0:df:67:02:d7:53:4f:ac:ab:d1:24:7b:ed:a5:80:1d: 7e:55:44:b1:73:cf:04:bd:0a:e9:6d:2c:be:46:d8:2f:74:5a: 36:68:31:27:84:9e:93:7d:73:4b:8c:d9:6d:14:63:20:a8:65: 83:81:f7:79:ac:d6:1c:ed:3e:9c:9a:e6:8b:b1:de:7f:48:fc: 35:d9:50:85:39:1c:dc:06:90:bd:b3:5a:82:eb:89:36:a2:c5: 36:96:93:9f:a6:11:7f:2f:1e:1f:c1:3c:5c:5c:35:cc:03:94: b2:ad:a7:5e:9d:fe:91:c5:a4:d4:4d:da:26:e0:fa:b5:ca:69: 95:7c:dd:37:45:a0:da:08:c2:87:15:9b:6d:d7:9c:3a:72:dc: de:b3:07:80:f1:77:28:e4:f4:79:7e:c5:cd:dc:c4:1c:b2:a5: fd:cc:37:ca:e2:18:4d:7e:a2:7d:a5:33:96:2d:b0:a1:12:e4: ea:da:8a:28:07:c9:44:2b:fb:79:a7:f6:3f:a4:71:cb:3e:a4: d9:12:d2:57:b6:d4:1e:a8:46:5d:fa:e5:70:11:35:92:eb:3a: 0e:3b:d6:f1:aa:9c:73:39:3c:d8:0a:9e:7d:db:68:64:43:ca: c9:24:95:aa:c2:28:1f:7c:b9:fc:a4:af:d0:6f:32:f0:cf:e8: 37:a5:48:be -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUG3bhwQcOi88tu1JmIXmZQ5Vhs0owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTRaFw0yNDExMDMwNDA3MTRaMDMxMTAvBgNV BAMTKDcxOEZCRDYzRUI3MUFDQjIwMkNBRkFCRTdBQzYyNjhGNkM5QUUwMjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFHBC6B4SjUB+9QPA4/KfWf3Ek XZfVIKUvyJ7S0ipm9vP3r7UY0kVf7xtarwa1InSqSvalwZPYwx7ZSlG4fouSOW0B B0sKp0ztZ9cM7GI338Ky+8204NJLTyqIJs+uFCMYDgdlA2JZWB5cEopb3ho3kvdC krUijcuwR7VtuS0u3YmmE8emG+6iFFfGmoeqeCltSQ54Dq//4i1rWPs6sSanCyc/ IOXB/wrUPF7bxMPomJV3ZCm2Ob2q5HoLWiDX0UrwqFrWRoiBr81Xk15aNzZ36E6l zxIirR02FXQDIEliach3wDdPZD3LDfOnYZwuSNJUpXkq7GHfNw+ycJpIX6OJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcY+9Y+txrLICyvq+esYmj2ya4CkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPIwDQYJKoZIhvcNAQELBQADggEBALcf 0N9nAtdTT6yr0SR77aWAHX5VRLFzzwS9CultLL5G2C90WjZoMSeEnpN9c0uM2W0U YyCoZYOB93ms1hztPpya5oux3n9I/DXZUIU5HNwGkL2zWoLriTaixTaWk5+mEX8v Hh/BPFxcNcwDlLKtp16d/pHFpNRN2ibg+rXKaZV83TdFoNoIwocVm23XnDpy3N6z B4Dxdyjk9Hl+xc3cxByypf3MN8riGE1+on2lM5YtsKES5OraiigHyUQr+3mn9j+k ccs+pNkS0le21B6oRl365XARNZLrOg471vGqnHM5PNgKnn3baGRDyskklarCKB98 ufykr9BvMvDP6DelSL4= -----END CERTIFICATE-----Generated at Thu Apr 25 10:22:57 2024 by rpki-client on console-fra.rpki-client.org