$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200912.roa File: AS200912.roa (raw, json) Hash identifier: V+XB1Rar8yBPNo34YpGOOGz3CCwMDc6xurOpqkAN9lQ= Subject key identifier: 51:32:5C:1C:CD:F1:08:6F:35:DE:FE:E4:9E:3E:8A:68:F0:8C:60:87 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1799D0FD656149A77CDB9BF8EEAD973C6CCAFAA2 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200912.roa Signing time: Sun 05 Nov 2023 04:07:12 +0000 ROA not before: Sun 05 Nov 2023 04:02:12 +0000 ROA not after: Sun 03 Nov 2024 04:07:12 +0000 asID: 200912 IP address blocks: 2a0a:6040:e400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:99:d0:fd:65:61:49:a7:7c:db:9b:f8:ee:ad:97:3c:6c:ca:fa:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:12 2023 GMT Not After : Nov 3 04:07:12 2024 GMT Subject: CN=51325C1CCDF1086F35DEFEE49E3E8A68F08C6087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c5:1a:cd:ff:28:a0:7d:f2:72:a9:7c:79:23: 08:35:47:45:ec:f9:98:47:0e:47:a7:0f:f7:b8:32: 75:ef:85:6a:fa:92:c7:c9:e3:b1:27:b8:ed:f7:01: d5:34:72:e6:3a:f1:80:be:09:9d:09:f3:42:59:7b: 72:cb:d0:ab:0d:bf:f9:30:39:37:3d:93:91:a2:2c: 10:07:a3:30:3b:19:93:5c:f9:19:b5:6e:08:da:23: 21:c2:a2:b5:d7:d7:2f:2e:74:af:cd:a2:15:89:25: e7:f7:d2:73:35:6c:f2:35:b9:55:78:28:06:2c:df: 6c:e1:10:81:b3:4e:16:e9:73:4d:ce:04:f7:16:d7: 2f:38:d9:38:14:34:1f:2a:5c:bf:60:82:a9:08:2c: dd:74:9a:4d:4d:74:dd:0a:ca:bb:23:95:9b:64:a4: a8:76:a2:bc:de:08:2b:40:fe:82:a2:86:84:c3:6b: 43:6b:c6:aa:7a:5e:69:30:dc:e0:30:aa:7b:98:fa: 65:9d:54:f7:ed:3f:0b:42:fc:f7:e2:3b:2b:19:9c: 9e:37:82:ef:c2:1a:ae:a3:f7:d8:f2:9d:ca:2e:f1: 2b:1b:c9:69:22:88:c0:93:8f:de:88:38:f6:61:d4: d0:ea:f8:48:5b:b7:e3:ca:ed:30:2f:54:9c:27:5e: c5:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:32:5C:1C:CD:F1:08:6F:35:DE:FE:E4:9E:3E:8A:68:F0:8C:60:87 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200912.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e400::/40 Signature Algorithm: sha256WithRSAEncryption 13:4d:67:87:b3:b8:16:cd:91:8c:af:04:d9:83:46:63:84:ed: 71:68:e8:3b:64:5f:5b:25:67:ca:6e:2d:da:27:ac:e3:a4:b4: 73:71:5a:ca:5e:4b:44:cc:bd:64:c4:fc:b3:3b:19:ce:17:9b: 19:c2:72:01:af:05:81:78:9c:67:f5:c0:b9:8a:f2:cc:14:ce: 96:b2:2a:36:db:68:de:85:60:83:10:f5:05:ce:3e:b6:31:c5: 10:41:06:5b:60:35:e1:ea:9e:45:85:2f:ed:bf:b3:f9:e8:66: 61:69:5d:1a:45:f1:7f:73:b8:59:6b:c4:54:94:68:8d:cb:f2: 42:39:06:d8:5c:75:32:e8:ce:8f:73:46:a6:a7:93:e8:6e:e5: 18:a8:99:f2:6d:79:8f:74:14:39:89:22:d8:4e:dc:21:b4:c1: 65:87:9c:66:04:cd:fa:14:bc:ac:88:6c:5b:71:b2:14:ce:c6: 7e:e5:11:68:14:e2:82:75:3f:b2:92:6d:c2:dd:ef:48:a7:21: ec:7d:bb:3b:2e:8f:19:79:9b:2d:68:87:4c:4e:1a:2f:b5:55: 91:b1:37:b9:e9:0b:f5:b6:59:6a:37:21:bf:0e:b0:6c:da:a9: 30:8e:06:47:ec:7f:8c:d1:39:c3:66:d1:51:58:2e:a3:37:14: 38:79:a6:28 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUF5nQ/WVhSad825v47q2XPGzK+qIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTJaFw0yNDExMDMwNDA3MTJaMDMxMTAvBgNV BAMTKDUxMzI1QzFDQ0RGMTA4NkYzNURFRkVFNDlFM0U4QTY4RjA4QzYwODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnxRrN/yigffJyqXx5Iwg1R0Xs +ZhHDkenD/e4MnXvhWr6ksfJ47EnuO33AdU0cuY68YC+CZ0J80JZe3LL0KsNv/kw OTc9k5GiLBAHozA7GZNc+Rm1bgjaIyHCorXX1y8udK/NohWJJef30nM1bPI1uVV4 KAYs32zhEIGzThbpc03OBPcW1y842TgUNB8qXL9ggqkILN10mk1NdN0KyrsjlZtk pKh2orzeCCtA/oKihoTDa0Nrxqp6Xmkw3OAwqnuY+mWdVPftPwtC/PfiOysZnJ43 gu/CGq6j99jyncou8SsbyWkiiMCTj96IOPZh1NDq+Ehbt+PK7TAvVJwnXsWtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUTJcHM3xCG813v7knj6KaPCMYIcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOQwDQYJKoZIhvcNAQELBQADggEBABNN Z4ezuBbNkYyvBNmDRmOE7XFo6DtkX1slZ8puLdonrOOktHNxWspeS0TMvWTE/LM7 Gc4XmxnCcgGvBYF4nGf1wLmK8swUzpayKjbbaN6FYIMQ9QXOPrYxxRBBBltgNeHq nkWFL+2/s/noZmFpXRpF8X9zuFlrxFSUaI3L8kI5BthcdTLozo9zRqank+hu5Rio mfJteY90FDmJIthO3CG0wWWHnGYEzfoUvKyIbFtxshTOxn7lEWgU4oJ1P7KSbcLd 70inIex9uzsujxl5my1oh0xOGi+1VZGxN7npC/W2WWo3Ib8OsGzaqTCOBkfsf4zR OcNm0VFYLqM3FDh5pig= -----END CERTIFICATE-----Generated at Thu May 16 11:56:10 2024 by rpki-client on console-fra.rpki-client.org