$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200890.roa File: AS200890.roa (raw, json) Hash identifier: Pl3MuVFItJj9ysEciKAvHAheSlEwlRsp7ejuGb9fgV4= Subject key identifier: 2C:F2:B7:33:0B:2A:D3:1A:1B:E9:B8:87:AE:5B:66:D2:6E:84:F0:CF Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 347564D66D39AE21DC71F621AA47497292E5606D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200890.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 200890 IP address blocks: 2a0a:6040:d400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:75:64:d6:6d:39:ae:21:dc:71:f6:21:aa:47:49:72:92:e5:60:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=2CF2B7330B2AD31A1BE9B887AE5B66D26E84F0CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:44:b3:aa:89:07:cb:0e:6e:21:e6:66:fd:a0: 67:05:b7:42:f1:93:2d:39:b8:43:41:87:83:3d:ca: 5b:1e:f9:5c:a0:9a:74:0a:99:e0:26:25:5c:89:36: 74:a7:9e:cd:4f:f8:67:e8:7a:c3:c0:a9:fb:39:da: a8:30:7a:1c:5e:4c:98:23:c4:b8:48:86:3c:7e:7b: 40:37:a5:03:f9:1e:38:1f:da:12:75:85:5d:54:96: 10:e1:e4:ce:70:92:9a:eb:43:91:8f:e0:96:80:8f: 77:9e:e4:4d:9a:f0:11:f8:ac:04:4b:06:90:71:31: 8b:b3:96:92:05:f6:61:18:8c:2e:6b:64:19:9e:32: a7:2f:d9:66:00:04:27:79:72:ec:e0:55:71:12:6f: 5b:08:4f:0e:44:c2:b3:c9:12:f5:4c:4f:d9:16:c0: 79:e9:b0:d8:ee:cd:d7:d0:de:d5:b7:ec:38:9f:65: d7:83:ca:5c:12:ea:e3:2e:21:ae:3d:81:17:72:64: 10:d8:59:57:c1:de:16:02:72:70:4c:bb:e0:51:0d: 73:a2:0d:95:ec:60:fb:97:69:c0:5e:35:63:56:8c: ce:49:09:bb:8f:8e:a5:5c:1c:3c:9d:9c:20:f7:1c: 5c:6f:ba:f4:24:71:3f:cc:cf:e4:f9:3c:0c:dd:f9: 44:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F2:B7:33:0B:2A:D3:1A:1B:E9:B8:87:AE:5B:66:D2:6E:84:F0:CF X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d400::/40 Signature Algorithm: sha256WithRSAEncryption 9f:4d:0e:e3:cf:34:9c:5a:d6:b0:b3:df:ae:24:12:09:5b:81: 3f:80:a9:39:96:94:8d:7d:18:2e:32:b1:bc:56:b3:5e:51:aa: 06:e6:5c:9c:18:22:3f:ee:9e:6b:e0:05:b7:05:b6:10:e2:85: d3:5c:c9:2a:33:b7:f9:8e:8a:ea:3d:e9:26:3c:2d:fe:7d:4a: 96:97:d3:a2:6a:ef:49:92:4d:f1:9e:ff:aa:1a:f3:a5:20:a7: 92:9d:07:15:cc:8a:dd:10:4d:05:6d:d1:90:7d:dd:84:b6:94: 02:c8:82:36:12:c6:7d:ed:54:07:59:03:a0:69:1f:e1:92:d2: af:7a:b0:61:fa:45:89:1a:41:81:73:15:1a:79:33:d2:5e:99: ee:51:e8:11:9f:b1:27:47:e0:e6:4b:fe:bb:de:0d:b9:b6:0b: 32:9f:61:f4:be:98:41:31:8c:98:b0:f3:ef:f3:df:29:11:a6: c5:e3:1f:b9:74:ce:2c:a5:07:bf:6b:b0:7d:f0:48:ba:56:b9: 26:9c:19:43:ee:c8:cd:e9:98:c5:5a:65:51:b0:aa:c7:40:62: 6c:af:23:52:26:0a:11:c0:26:81:15:5d:e6:ad:23:9d:d9:ab: 01:a9:d8:48:24:5e:4b:d1:d9:99:ef:39:41:43:7b:a5:e9:20: 66:79:1c:da -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNHVk1m05riHccfYhqkdJcpLlYG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDJDRjJCNzMzMEIyQUQzMUExQkU5Qjg4N0FFNUI2NkQyNkU4NEYwQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTRLOqiQfLDm4h5mb9oGcFt0Lx ky05uENBh4M9ylse+VygmnQKmeAmJVyJNnSnns1P+GfoesPAqfs52qgwehxeTJgj xLhIhjx+e0A3pQP5Hjgf2hJ1hV1UlhDh5M5wkprrQ5GP4JaAj3ee5E2a8BH4rARL BpBxMYuzlpIF9mEYjC5rZBmeMqcv2WYABCd5cuzgVXESb1sITw5EwrPJEvVMT9kW wHnpsNjuzdfQ3tW37DifZdeDylwS6uMuIa49gRdyZBDYWVfB3hYCcnBMu+BRDXOi DZXsYPuXacBeNWNWjM5JCbuPjqVcHDydnCD3HFxvuvQkcT/Mz+T5PAzd+UTpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULPK3Mwsq0xob6biHrltm0m6E8M8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODkwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNQwDQYJKoZIhvcNAQELBQADggEBAJ9N DuPPNJxa1rCz364kEglbgT+AqTmWlI19GC4ysbxWs15RqgbmXJwYIj/unmvgBbcF thDihdNcySozt/mOiuo96SY8Lf59SpaX06Jq70mSTfGe/6oa86Ugp5KdBxXMit0Q TQVt0ZB93YS2lALIgjYSxn3tVAdZA6BpH+GS0q96sGH6RYkaQYFzFRp5M9Jeme5R 6BGfsSdH4OZL/rveDbm2CzKfYfS+mEExjJiw8+/z3ykRpsXjH7l0ziylB79rsH3w SLpWuSacGUPuyM3pmMVaZVGwqsdAYmyvI1ImChHAJoEVXeatI53ZqwGp2EgkXkvR 2ZnvOUFDe6XpIGZ5HNo= -----END CERTIFICATE-----Generated at Fri May 17 14:07:00 2024 by rpki-client on console-fra.rpki-client.org