$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200949.roa File: AS200949.roa (raw, json) Hash identifier: HrUj7SkxOHCoYzrEAc1P1w58AR+F72vg8KxSIkUTFSE= Subject key identifier: 5A:55:13:9A:87:69:E7:87:F2:E9:DB:CE:19:9F:97:7B:FE:C1:5D:A2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 58F0053E2D488575334EB677EB128C0C34F50D1E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200949.roa Signing time: Sun 05 Nov 2023 04:07:03 +0000 ROA not before: Sun 05 Nov 2023 04:02:03 +0000 ROA not after: Sun 03 Nov 2024 04:07:03 +0000 asID: 200949 IP address blocks: 2a0a:6040:d800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f0:05:3e:2d:48:85:75:33:4e:b6:77:eb:12:8c:0c:34:f5:0d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:03 2023 GMT Not After : Nov 3 04:07:03 2024 GMT Subject: CN=5A55139A8769E787F2E9DBCE199F977BFEC15DA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ba:28:b8:fe:40:d9:f9:fc:74:ef:70:cb:4e: ba:95:03:16:74:2f:29:a9:fd:d7:f4:d1:e2:a6:dd: 86:59:fc:0a:f9:68:e0:c3:12:06:a0:be:39:b7:58: eb:a9:5c:ee:b0:fc:28:b0:80:9e:01:63:04:74:4a: 88:11:08:1e:53:cf:4d:d6:90:df:bd:e8:1e:6f:4d: b2:5b:3e:67:d2:85:79:1c:83:10:bd:c2:5e:0a:d2: d0:60:9c:d0:c6:4f:9a:5c:ae:88:a8:91:0c:3f:bd: 0b:a8:76:15:57:5f:3b:59:16:56:72:eb:3c:8c:3a: 0a:ea:24:f5:b1:fb:16:1c:92:e5:a5:b5:9b:b7:a7: 66:f1:34:d2:d4:d8:fa:60:7f:d4:9f:a7:49:fa:ec: df:a4:34:f8:b7:d5:f8:71:fd:c6:f1:ed:5c:41:84: e2:f2:f1:24:8f:9c:f0:d2:65:30:97:eb:8e:ad:22: 0f:15:f7:52:ca:2b:b9:96:83:97:b3:f3:02:3e:ed: e3:21:72:9a:ef:b0:54:85:03:9d:a7:de:4b:9c:91: ca:0f:21:51:7b:6d:e7:18:e1:68:ed:06:da:72:f4: c8:c2:1e:7e:09:64:27:f0:b0:bd:5c:d1:be:d3:9b: 90:55:75:fa:96:6a:23:86:30:87:b2:b9:b4:ce:fa: c5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:55:13:9A:87:69:E7:87:F2:E9:DB:CE:19:9F:97:7B:FE:C1:5D:A2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200949.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d800::/40 Signature Algorithm: sha256WithRSAEncryption 31:6a:ca:8d:e3:6d:c0:9c:91:f8:0c:c7:f5:6e:49:d6:0e:b3: 7e:29:e4:2f:84:e0:5e:38:9f:b7:6f:47:6a:b3:95:95:e2:80: 3e:1d:16:2e:10:7e:97:05:df:e1:48:0e:a6:56:85:0f:0a:11: f6:e3:26:ab:ee:1a:61:80:40:c4:fe:51:43:e3:7d:e6:4d:44: 85:f5:f8:ac:81:89:49:8c:87:e6:8f:65:c1:ad:c5:c5:0a:24: 54:92:d1:5f:04:b5:0a:a2:c7:b4:cf:8a:81:8c:e4:18:d7:09: 44:c7:8c:29:87:bc:13:2f:5b:59:c9:a7:5d:0e:5d:84:20:a4: ff:fd:62:79:bd:6d:51:1b:01:85:e2:60:42:63:eb:00:b5:b9: 66:c0:fa:8f:11:4f:2f:79:1d:77:bb:24:f7:39:82:1d:d3:09: 04:ad:3e:01:95:b5:7b:a2:f1:d0:2e:e8:3d:9b:9c:57:b0:b7: 61:02:4c:8a:16:98:da:69:14:76:5a:af:98:69:91:ec:76:e4: fb:a3:bd:bb:9f:8b:54:97:f6:5e:89:a1:83:2e:e0:a8:80:50: 98:38:f1:0b:83:7d:24:f6:4e:e0:c4:7b:57:6f:45:1c:7c:84: 75:7c:f5:9b:0a:58:0d:9a:ea:74:3a:89:e3:78:68:21:cb:64: 1e:41:29:83 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWPAFPi1IhXUzTrZ36xKMDDT1DR4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDNaFw0yNDExMDMwNDA3MDNaMDMxMTAvBgNV BAMTKDVBNTUxMzlBODc2OUU3ODdGMkU5REJDRTE5OUY5NzdCRkVDMTVEQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzuii4/kDZ+fx073DLTrqVAxZ0 Lymp/df00eKm3YZZ/Ar5aODDEgagvjm3WOupXO6w/CiwgJ4BYwR0SogRCB5Tz03W kN+96B5vTbJbPmfShXkcgxC9wl4K0tBgnNDGT5pcroiokQw/vQuodhVXXztZFlZy 6zyMOgrqJPWx+xYckuWltZu3p2bxNNLU2Ppgf9Sfp0n67N+kNPi31fhx/cbx7VxB hOLy8SSPnPDSZTCX646tIg8V91LKK7mWg5ez8wI+7eMhcprvsFSFA52n3kuckcoP IVF7becY4WjtBtpy9MjCHn4JZCfwsL1c0b7Tm5BVdfqWaiOGMIeyubTO+sX3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWlUTmodp54fy6dvOGZ+Xe/7BXaIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNgwDQYJKoZIhvcNAQELBQADggEBADFq yo3jbcCckfgMx/VuSdYOs34p5C+E4F44n7dvR2qzlZXigD4dFi4QfpcF3+FIDqZW hQ8KEfbjJqvuGmGAQMT+UUPjfeZNRIX1+KyBiUmMh+aPZcGtxcUKJFSS0V8EtQqi x7TPioGM5BjXCUTHjCmHvBMvW1nJp10OXYQgpP/9Ynm9bVEbAYXiYEJj6wC1uWbA +o8RTy95HXe7JPc5gh3TCQStPgGVtXui8dAu6D2bnFewt2ECTIoWmNppFHZar5hp kex25Pujvbufi1SX9l6JoYMu4KiAUJg48QuDfST2TuDEe1dvRRx8hHV89ZsKWA2a 6nQ6ieN4aCHLZB5BKYM= -----END CERTIFICATE-----Generated at Mon May 20 13:08:21 2024 by rpki-client on console-fra.rpki-client.org