$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200885.roa File: AS200885.roa (raw, json) Hash identifier: sRfABcK1oMIxNnJ+WkOC431+p29gwbsBVSIJ+1+cKaQ= Subject key identifier: A4:22:4C:50:3D:A7:39:21:BA:68:C6:5E:27:0C:DD:C3:C8:E9:EE:28 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4AF9BCF2F1154DE70A0C18BACBB075ED82F35525 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200885.roa Signing time: Sun 05 Nov 2023 04:07:00 +0000 ROA not before: Sun 05 Nov 2023 04:02:00 +0000 ROA not after: Sun 03 Nov 2024 04:07:00 +0000 asID: 200885 IP address blocks: 2a0a:6040:ea00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f9:bc:f2:f1:15:4d:e7:0a:0c:18:ba:cb:b0:75:ed:82:f3:55:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:00 2023 GMT Not After : Nov 3 04:07:00 2024 GMT Subject: CN=A4224C503DA73921BA68C65E270CDDC3C8E9EE28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b7:21:6d:48:be:7a:6c:f3:38:37:75:3a:f6: c3:c6:ee:83:be:e6:2a:49:7c:95:b7:64:8b:62:bb: 8a:06:e4:28:15:50:1e:e0:4f:b1:ff:08:6f:84:8f: 7a:6a:c2:f4:5d:5d:64:4d:ec:75:e3:c8:a6:57:f0: 2c:50:db:3a:49:04:f2:c8:e4:79:4e:64:94:63:19: d1:11:50:16:f9:0c:6d:38:7b:2d:3c:44:2e:a7:50: 43:13:6a:33:88:be:f1:a7:96:c3:68:97:34:e2:f6: e2:7a:e5:3b:d9:0e:4d:ed:f1:8d:c3:08:8a:9c:9d: ee:46:c5:6a:97:d9:83:ab:41:42:e4:a6:e2:3a:03: ba:b7:66:23:47:84:29:8f:8e:2d:1e:49:1f:38:97: 84:09:f9:a9:d1:c8:7e:f3:f4:8f:76:2e:d9:3d:be: 4d:0e:3d:58:7b:56:6f:97:ef:53:91:4b:8c:ed:d6: bf:bb:40:41:82:2a:58:43:56:72:61:92:91:1e:18: 50:c5:8e:87:15:0f:92:dd:97:70:af:83:e9:cb:21: 53:bb:15:38:41:2b:a4:94:36:e7:37:1c:8e:a3:fd: 4f:9d:05:98:c5:09:92:bf:3f:e9:2a:8d:73:30:9e: 90:cb:33:bf:5b:04:1e:9e:cf:6a:4c:82:fe:61:5a: 82:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:22:4C:50:3D:A7:39:21:BA:68:C6:5E:27:0C:DD:C3:C8:E9:EE:28 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200885.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 20:cf:10:47:25:8d:a0:58:e4:d1:49:0d:ed:c7:7f:d6:93:ab: 9d:d1:10:29:59:7b:54:e7:94:75:5c:6d:72:e4:31:02:2d:30: 94:d7:0d:03:d5:61:95:74:b8:6b:96:58:ad:55:08:96:a4:92: 6c:80:75:09:72:2a:45:7a:a3:36:cf:dc:10:87:bf:f6:c4:fd: de:8d:46:38:d2:99:28:f5:61:46:6b:d2:e9:60:57:f7:fd:c2: bd:a4:88:da:f2:82:c8:fc:fc:5a:38:47:e8:98:1b:96:bd:a1: 49:88:c5:de:89:ce:ab:03:ae:19:ca:35:93:51:a5:b8:60:5c: eb:2b:f7:d9:51:e5:93:7a:dd:6b:ef:78:c0:6a:e3:a4:68:15: 3b:d5:1c:44:59:c9:3a:59:82:12:bf:57:ca:1a:0c:cf:b8:98: 9f:9c:f6:47:68:40:e5:db:12:e5:e3:e0:6f:7d:36:f4:ee:46: 9a:c0:be:0f:f0:ea:d5:e1:ea:b6:ff:6d:99:c5:16:dd:2d:59: fd:72:02:91:a8:17:ce:ce:dc:72:f3:d7:df:49:98:cb:10:36: e1:85:ba:e0:7c:de:82:aa:bc:aa:fa:29:f8:85:a7:8f:5b:f2: 42:4b:40:99:73:f8:fd:98:16:c2:14:18:33:a3:be:7f:f0:31: d5:48:bb:b4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSvm88vEVTecKDBi6y7B17YLzVSUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDBaFw0yNDExMDMwNDA3MDBaMDMxMTAvBgNV BAMTKEE0MjI0QzUwM0RBNzM5MjFCQTY4QzY1RTI3MENEREMzQzhFOUVFMjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKtyFtSL56bPM4N3U69sPG7oO+ 5ipJfJW3ZItiu4oG5CgVUB7gT7H/CG+Ej3pqwvRdXWRN7HXjyKZX8CxQ2zpJBPLI 5HlOZJRjGdERUBb5DG04ey08RC6nUEMTajOIvvGnlsNolzTi9uJ65TvZDk3t8Y3D CIqcne5GxWqX2YOrQULkpuI6A7q3ZiNHhCmPji0eSR84l4QJ+anRyH7z9I92Ltk9 vk0OPVh7Vm+X71ORS4zt1r+7QEGCKlhDVnJhkpEeGFDFjocVD5Ldl3Cvg+nLIVO7 FThBK6SUNuc3HI6j/U+dBZjFCZK/P+kqjXMwnpDLM79bBB6ez2pMgv5hWoKJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUpCJMUD2nOSG6aMZeJwzdw8jp7igwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOowDQYJKoZIhvcNAQELBQADggEBACDP EEcljaBY5NFJDe3Hf9aTq53REClZe1TnlHVcbXLkMQItMJTXDQPVYZV0uGuWWK1V CJakkmyAdQlyKkV6ozbP3BCHv/bE/d6NRjjSmSj1YUZr0ulgV/f9wr2kiNrygsj8 /Fo4R+iYG5a9oUmIxd6JzqsDrhnKNZNRpbhgXOsr99lR5ZN63WvveMBq46RoFTvV HERZyTpZghK/V8oaDM+4mJ+c9kdoQOXbEuXj4G99NvTuRprAvg/w6tXh6rb/bZnF Ft0tWf1yApGoF87O3HLz199JmMsQNuGFuuB83oKqvKr6KfiFp49b8kJLQJlz+P2Y FsIUGDOjvn/wMdVIu7Q= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org