$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200895.roa File: AS200895.roa (raw, json) Hash identifier: +cQWV7aIqlY/lw0Hg4ZWh0yNlc5cVstotaXAP1sb0j4= Subject key identifier: 45:57:9F:54:58:5C:1E:33:4B:BC:5B:5F:6D:B2:A1:93:49:47:B7:42 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 769FF9396C7B09589ECA66BD3D89306314A875C2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200895.roa Signing time: Sun 05 Nov 2023 04:07:21 +0000 ROA not before: Sun 05 Nov 2023 04:02:21 +0000 ROA not after: Sun 03 Nov 2024 04:07:21 +0000 asID: 200895 IP address blocks: 2a0a:6040:d700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:9f:f9:39:6c:7b:09:58:9e:ca:66:bd:3d:89:30:63:14:a8:75:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:21 2023 GMT Not After : Nov 3 04:07:21 2024 GMT Subject: CN=45579F54585C1E334BBC5B5F6DB2A1934947B742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:7b:11:1d:87:f1:8d:c1:bd:84:fc:e5:5c: 42:c0:f9:86:9e:c3:b7:ea:6d:de:1c:73:3d:a6:91: 8b:09:0a:1c:a6:29:9d:3c:4c:fc:cf:e5:cb:d6:87: d6:da:5c:79:50:13:24:8f:6e:13:4f:f9:11:f7:93: 0c:ef:56:d0:21:46:88:d3:d2:ba:c9:d9:87:ed:d3: 7e:fa:50:09:8f:61:29:47:50:75:93:dd:64:97:24: 52:2d:14:f4:a0:23:0e:8a:01:78:08:2a:26:f7:8a: 3e:a7:22:95:32:b8:3e:5a:04:48:9c:2a:10:ee:66: a8:9c:c0:8b:fd:07:1a:1e:c2:f2:5d:6e:0b:e6:0a: 8f:cc:b6:7b:38:1d:9b:79:ce:bd:8b:4d:a5:99:d6: f9:66:cb:14:c3:a9:f2:8c:06:ac:44:92:e7:3b:90: df:a6:71:b4:41:e0:ba:db:a2:ae:ab:f4:33:8d:4e: ed:1d:ff:0f:6c:11:6d:92:c8:4c:c5:0e:9a:a5:02: b8:31:ec:f0:29:0e:b7:01:13:4e:f2:07:f1:1d:15: 0c:5f:d8:8a:61:4e:9d:13:f2:83:43:5d:3f:b5:a8: 4e:d8:c1:8c:1b:43:a8:1b:81:cb:a2:18:a4:7f:56: c1:f8:2c:9d:90:50:97:b3:8b:d2:71:43:8b:4e:e8: 9c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:57:9F:54:58:5C:1E:33:4B:BC:5B:5F:6D:B2:A1:93:49:47:B7:42 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200895.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d700::/40 Signature Algorithm: sha256WithRSAEncryption aa:14:02:8c:ea:b1:a3:52:00:e5:d0:03:37:81:fa:01:77:7b: 5b:fe:e4:63:b2:f0:db:25:d9:92:7b:ed:17:6e:e3:43:cb:63: 59:51:f8:db:ef:99:b8:25:c5:10:a1:4c:61:8f:38:a7:17:be: 84:de:d4:f8:0a:2d:8f:bc:c7:42:5f:8b:6e:fd:77:ef:f1:ab: 02:55:7d:83:f9:f5:cb:63:b7:00:58:ce:da:54:25:83:93:c0: 65:7c:c0:59:e7:f2:ae:cf:05:10:5c:e7:4b:53:f4:b7:3b:eb: 92:3b:06:31:3f:3c:3c:0c:f1:f5:83:00:d5:ed:9e:7f:50:63: f1:6d:e8:81:1b:50:a3:4c:3c:1d:6e:d3:04:7d:69:8e:b3:06: ef:2d:49:54:d7:51:14:c3:eb:dc:b7:27:41:58:14:cc:46:1a: 83:8c:52:62:10:1b:fa:88:2d:b1:a6:95:d4:3f:fb:52:21:ea: e7:23:02:2e:a6:47:29:99:48:d5:dd:64:4d:2b:12:99:22:c3: 9b:48:d0:38:bb:a3:dd:fb:5e:5f:ba:b4:b1:80:51:64:9e:5f: 92:4e:bb:ba:c8:d8:5b:56:8a:fd:e3:4e:d3:d1:d6:53:6e:8e: 2d:0c:a6:5b:b0:d6:78:21:8c:28:3f:57:fc:47:fe:db:88:f1: 44:fb:54:12 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdp/5OWx7CVieyma9PYkwYxSodcIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjFaFw0yNDExMDMwNDA3MjFaMDMxMTAvBgNV BAMTKDQ1NTc5RjU0NTg1QzFFMzM0QkJDNUI1RjZEQjJBMTkzNDk0N0I3NDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8KHsRHYfxjcG9hPzlXELA+Yae w7fqbd4ccz2mkYsJChymKZ08TPzP5cvWh9baXHlQEySPbhNP+RH3kwzvVtAhRojT 0rrJ2Yft0376UAmPYSlHUHWT3WSXJFItFPSgIw6KAXgIKib3ij6nIpUyuD5aBEic KhDuZqicwIv9BxoewvJdbgvmCo/Mtns4HZt5zr2LTaWZ1vlmyxTDqfKMBqxEkuc7 kN+mcbRB4Lrboq6r9DONTu0d/w9sEW2SyEzFDpqlArgx7PApDrcBE07yB/EdFQxf 2IphTp0T8oNDXT+1qE7YwYwbQ6gbgcuiGKR/VsH4LJ2QUJezi9JxQ4tO6JzNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURVefVFhcHjNLvFtfbbKhk0lHt0IwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwODk1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNcwDQYJKoZIhvcNAQELBQADggEBAKoU AozqsaNSAOXQAzeB+gF3e1v+5GOy8Nsl2ZJ77Rdu40PLY1lR+NvvmbglxRChTGGP OKcXvoTe1PgKLY+8x0Jfi279d+/xqwJVfYP59ctjtwBYztpUJYOTwGV8wFnn8q7P BRBc50tT9Lc765I7BjE/PDwM8fWDANXtnn9QY/Ft6IEbUKNMPB1u0wR9aY6zBu8t SVTXURTD69y3J0FYFMxGGoOMUmIQG/qILbGmldQ/+1Ih6ucjAi6mRymZSNXdZE0r Epkiw5tI0Di7o937Xl+6tLGAUWSeX5JOu7rI2FtWiv3jTtPR1lNuji0Mpluw1ngh jCg/V/xH/tuI8UT7VBI= -----END CERTIFICATE-----Generated at Thu May 16 11:56:10 2024 by rpki-client on console-fra.rpki-client.org