$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200936.roa File: AS200936.roa (raw, json) Hash identifier: /f91pQ55XNUhy/cQsrsgGhmezTadJSy84BxvKUkEoH8= Subject key identifier: B6:CF:03:3B:C0:1E:14:88:F3:F3:96:EB:34:15:F9:15:07:31:CF:7F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4870323A97BD901270E64B607A634CDE64678DCD Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200936.roa Signing time: Sun 05 Nov 2023 04:07:21 +0000 ROA not before: Sun 05 Nov 2023 04:02:21 +0000 ROA not after: Sun 03 Nov 2024 04:07:21 +0000 asID: 200936 IP address blocks: 2a0a:6040:d600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 22:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:70:32:3a:97:bd:90:12:70:e6:4b:60:7a:63:4c:de:64:67:8d:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:21 2023 GMT Not After : Nov 3 04:07:21 2024 GMT Subject: CN=B6CF033BC01E1488F3F396EB3415F9150731CF7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:56:66:94:01:df:c1:f6:b5:00:62:a8:35:ef: b6:4e:9b:65:98:66:4b:f9:b4:16:56:2d:99:48:ff: 97:d9:a0:3f:23:f4:d1:b7:a7:52:01:f0:fb:c7:7e: 27:b8:d1:2f:d6:f7:7f:b4:19:34:3a:24:2e:25:5f: d7:90:1c:c7:a9:bd:d8:c8:03:5d:f3:fd:78:09:69: a1:4a:e4:49:1d:f1:a9:02:83:c3:af:ad:53:45:66: 86:3e:11:f8:1c:e2:f4:fc:36:70:1e:c1:16:61:16: e8:3a:88:85:ea:d7:41:ec:d6:c2:2b:09:ec:c6:72: e3:6d:50:d9:6b:54:e6:3a:78:c5:15:00:bb:79:3b: 17:51:36:a8:cc:46:28:6f:59:1c:5a:3d:5d:6e:2e: b6:8b:e6:b2:ad:9a:3c:6a:a1:42:f3:3a:35:81:d4: 8f:0b:75:30:11:e3:a4:1a:5b:c9:02:5d:de:8b:63: f6:c6:ab:a1:9c:b8:1a:d1:2f:41:d2:1b:ea:9f:f3: 77:81:22:3b:1a:27:8d:f8:10:e7:62:45:69:82:55: 77:ba:f1:e3:ec:dd:df:ba:54:42:1d:1b:70:51:35: 7f:30:a5:b5:27:a9:de:c6:00:19:b9:4b:29:b8:92: 93:d4:1d:94:81:5c:ff:00:dc:f4:c2:09:6a:eb:68: d0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:CF:03:3B:C0:1E:14:88:F3:F3:96:EB:34:15:F9:15:07:31:CF:7F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d600::/40 Signature Algorithm: sha256WithRSAEncryption 1c:b2:52:5b:db:3a:78:ec:63:33:99:ca:ea:01:c3:a3:00:e9: 9d:10:d9:93:47:db:65:c1:06:62:3b:dd:85:cf:94:26:71:ae: e4:da:d6:57:a2:17:5f:6b:84:3c:68:c9:5c:6f:5d:9e:26:f7: 4d:e7:8e:92:71:f4:2b:4e:60:fe:9a:58:49:74:bd:ba:6a:d7: 70:4d:05:98:cf:45:a1:45:9c:97:90:87:24:08:7b:b6:72:fd: 67:43:bb:33:db:a5:a4:c9:30:e0:a3:4e:92:17:b8:bd:d3:40: 46:38:35:b6:f7:66:92:34:e3:19:de:4a:00:61:a8:d9:28:61: f6:16:f2:e7:67:51:91:4d:a8:32:e8:73:f3:82:fb:f5:59:e4: 13:ac:41:f0:1b:09:17:7d:a4:0b:e8:6e:ba:01:b9:c5:3b:6f: 19:b0:f1:a0:4d:86:e0:86:e7:47:ed:2f:6e:95:f9:51:b9:2d: 0a:5f:f9:d2:dc:17:1a:aa:cd:2b:d6:b2:ba:63:ae:da:7e:70: 7a:9a:b6:b9:1c:ef:16:14:02:07:dc:0b:81:c1:b0:22:a3:69: 4b:24:78:36:0e:15:6d:a2:ed:b4:5d:ac:e7:c9:cf:b5:55:96: 32:5a:99:c3:fa:aa:77:89:14:0d:b1:ed:6a:bd:97:2d:4c:3f: 88:d9:8e:9e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSHAyOpe9kBJw5ktgemNM3mRnjc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjFaFw0yNDExMDMwNDA3MjFaMDMxMTAvBgNV BAMTKEI2Q0YwMzNCQzAxRTE0ODhGM0YzOTZFQjM0MTVGOTE1MDczMUNGN0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClVmaUAd/B9rUAYqg177ZOm2WY Zkv5tBZWLZlI/5fZoD8j9NG3p1IB8PvHfie40S/W93+0GTQ6JC4lX9eQHMepvdjI A13z/XgJaaFK5Ekd8akCg8OvrVNFZoY+Efgc4vT8NnAewRZhFug6iIXq10Hs1sIr CezGcuNtUNlrVOY6eMUVALt5OxdRNqjMRihvWRxaPV1uLraL5rKtmjxqoULzOjWB 1I8LdTAR46QaW8kCXd6LY/bGq6GcuBrRL0HSG+qf83eBIjsaJ434EOdiRWmCVXe6 8ePs3d+6VEIdG3BRNX8wpbUnqd7GABm5Sym4kpPUHZSBXP8A3PTCCWrraNCzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUts8DO8AeFIjz85brNBX5FQcxz38wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNYwDQYJKoZIhvcNAQELBQADggEBAByy UlvbOnjsYzOZyuoBw6MA6Z0Q2ZNH22XBBmI73YXPlCZxruTa1leiF19rhDxoyVxv XZ4m903njpJx9CtOYP6aWEl0vbpq13BNBZjPRaFFnJeQhyQIe7Zy/WdDuzPbpaTJ MOCjTpIXuL3TQEY4Nbb3ZpI04xneSgBhqNkoYfYW8udnUZFNqDLoc/OC+/VZ5BOs QfAbCRd9pAvobroBucU7bxmw8aBNhuCG50ftL26V+VG5LQpf+dLcFxqqzSvWsrpj rtp+cHqatrkc7xYUAgfcC4HBsCKjaUskeDYOFW2i7bRdrOfJz7VVljJamcP6qneJ FA2x7Wq9ly1MP4jZjp4= -----END CERTIFICATE-----Generated at Tue May 21 05:34:02 2024 by rpki-client on console-ams.rpki-client.org