$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200907.roa File: AS200907.roa (raw, json) Hash identifier: LVrrioZXNgoJnITutAOYLQlVSXdKPV1//fnnyPQTJeU= Subject key identifier: 31:22:CE:BD:34:AD:DB:3B:64:AA:34:01:38:CC:A7:B0:14:3D:2E:69 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 45CE3BB1120D675C62A40C052594D17F0F61199E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200907.roa Signing time: Sun 05 Nov 2023 04:07:17 +0000 ROA not before: Sun 05 Nov 2023 04:02:17 +0000 ROA not after: Sun 03 Nov 2024 04:07:17 +0000 asID: 200907 IP address blocks: 2a0a:6040:e100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ce:3b:b1:12:0d:67:5c:62:a4:0c:05:25:94:d1:7f:0f:61:19:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:17 2023 GMT Not After : Nov 3 04:07:17 2024 GMT Subject: CN=3122CEBD34ADDB3B64AA340138CCA7B0143D2E69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:76:b6:6b:b4:74:51:58:2e:94:28:96:a2:fe: c1:cc:30:e5:17:36:b7:21:3a:96:63:aa:6f:d7:de: db:ba:4a:ea:09:22:76:e1:5d:1e:39:42:17:3f:88: b5:cf:be:a1:ce:a8:77:66:59:31:32:2d:48:ab:1d: 9e:00:90:91:4c:13:1e:ae:7f:4f:cf:9b:17:43:d4: 01:bd:23:ef:fa:22:6c:ed:c9:35:b5:6c:db:33:ba: eb:e3:ff:39:2c:73:59:20:a6:b5:b6:8b:90:17:36: 42:5b:59:29:a3:05:a7:8d:fa:ba:7d:50:21:d9:bd: 59:43:47:03:73:3f:52:89:d2:85:ea:5d:58:58:44: 85:ce:20:09:14:8f:95:34:42:1a:64:88:e5:34:fb: 5b:5d:d2:f3:78:8c:c8:65:e2:92:2a:0d:fe:71:1b: 99:d6:ea:3a:7c:80:9f:d9:2b:41:b3:d9:f9:b3:d9: 3b:e3:e9:40:5e:b9:12:89:8e:d9:05:19:3e:b4:3d: 64:da:45:93:2c:c1:15:7e:8f:dc:1a:b6:c2:ea:36: af:86:ce:99:e2:d0:f6:9b:67:bd:94:12:dd:a8:8e: 69:ee:1b:0a:ea:a9:b5:74:34:b4:8c:61:92:df:17: 75:f8:40:f9:35:2a:ff:46:76:fc:1d:5a:63:44:64: 3c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:22:CE:BD:34:AD:DB:3B:64:AA:34:01:38:CC:A7:B0:14:3D:2E:69 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200907.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e100::/40 Signature Algorithm: sha256WithRSAEncryption 95:10:ea:69:30:36:94:4a:98:94:0f:df:f5:2b:71:d0:9b:5d: 7a:d2:44:21:e4:74:d8:1b:fe:11:ee:7f:e8:d0:97:7f:4b:7c: 0a:db:8d:26:89:a6:9f:33:97:c9:7c:45:87:f6:4c:f5:45:25: ca:f2:a6:b4:e3:9b:0c:d2:f8:6a:24:86:6f:64:09:ac:79:96: 6d:fd:86:92:5c:a9:18:99:2a:cd:5b:af:c7:ee:ae:c0:02:aa: c5:47:7d:bd:7a:7c:82:4c:52:88:1e:c2:5f:ea:1e:30:35:f5: 95:4c:50:d0:f9:81:5a:43:18:6e:97:74:17:5e:b1:bc:ea:b2: 3b:6a:d6:62:b1:f2:87:ba:a4:b0:6b:e8:fb:9d:ce:1f:0f:bc: b4:24:31:f3:07:3c:c5:55:26:0e:79:e4:e8:4a:32:6f:7a:a1: 51:70:45:05:85:94:7d:5f:67:95:00:de:df:93:51:e6:22:67: c2:c3:a8:4b:2c:2b:13:be:20:ef:ef:78:83:2e:04:1a:2d:a8: df:4d:84:c0:b3:23:ce:9c:fd:26:f1:9b:54:81:de:56:73:34: d0:56:70:95:14:88:14:10:a6:42:ad:fa:d2:25:15:f2:a3:81: 43:40:c3:d5:7a:c5:37:55:0c:83:d9:98:7f:55:11:c9:ff:68: 99:49:36:c3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURc47sRINZ1xipAwFJZTRfw9hGZ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTdaFw0yNDExMDMwNDA3MTdaMDMxMTAvBgNV BAMTKDMxMjJDRUJEMzRBRERCM0I2NEFBMzQwMTM4Q0NBN0IwMTQzRDJFNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSdrZrtHRRWC6UKJai/sHMMOUX NrchOpZjqm/X3tu6SuoJInbhXR45Qhc/iLXPvqHOqHdmWTEyLUirHZ4AkJFMEx6u f0/PmxdD1AG9I+/6ImztyTW1bNszuuvj/zksc1kgprW2i5AXNkJbWSmjBaeN+rp9 UCHZvVlDRwNzP1KJ0oXqXVhYRIXOIAkUj5U0QhpkiOU0+1td0vN4jMhl4pIqDf5x G5nW6jp8gJ/ZK0Gz2fmz2Tvj6UBeuRKJjtkFGT60PWTaRZMswRV+j9watsLqNq+G zpni0PabZ72UEt2ojmnuGwrqqbV0NLSMYZLfF3X4QPk1Kv9GdvwdWmNEZDzZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMSLOvTSt2ztkqjQBOMynsBQ9LmkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOEwDQYJKoZIhvcNAQELBQADggEBAJUQ 6mkwNpRKmJQP3/UrcdCbXXrSRCHkdNgb/hHuf+jQl39LfArbjSaJpp8zl8l8RYf2 TPVFJcryprTjmwzS+Gokhm9kCax5lm39hpJcqRiZKs1br8fursACqsVHfb16fIJM Uogewl/qHjA19ZVMUND5gVpDGG6XdBdesbzqsjtq1mKx8oe6pLBr6Pudzh8PvLQk MfMHPMVVJg555OhKMm96oVFwRQWFlH1fZ5UA3t+TUeYiZ8LDqEssKxO+IO/veIMu BBotqN9NhMCzI86c/Sbxm1SB3lZzNNBWcJUUiBQQpkKt+tIlFfKjgUNAw9V6xTdV DIPZmH9VEcn/aJlJNsM= -----END CERTIFICATE-----Generated at Tue May 21 04:45:06 2024 by rpki-client on console-fra.rpki-client.org