$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200959.roa File: AS200959.roa (raw, json) Hash identifier: 0PR4zDMcQpCo7Mz436mVEk7SLt3qnFUam5HmnD1+i24= Subject key identifier: C5:70:20:74:30:5F:CA:56:FE:80:96:D5:44:6A:D3:AE:81:48:DC:2F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 03FB0923B4D32255329B1A005B369D72E5B84856 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200959.roa Signing time: Sun 05 Nov 2023 04:07:23 +0000 ROA not before: Sun 05 Nov 2023 04:02:23 +0000 ROA not after: Sun 03 Nov 2024 04:07:23 +0000 asID: 200959 IP address blocks: 2a0a:6040:6c00::/40 maxlen: 48 2a0a:6040:e500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:fb:09:23:b4:d3:22:55:32:9b:1a:00:5b:36:9d:72:e5:b8:48:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:23 2023 GMT Not After : Nov 3 04:07:23 2024 GMT Subject: CN=C5702074305FCA56FE8096D5446AD3AE8148DC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:49:0d:3d:ca:9b:02:79:34:48:9d:cd:07:1d: c1:c8:5d:c1:e8:b2:fb:18:b7:a7:45:1e:22:01:5d: cf:82:43:0c:b6:dd:b1:c2:26:46:4a:03:06:07:ec: ae:2b:35:a6:e4:e5:b3:72:80:e1:56:af:84:08:db: 64:85:cf:ee:c5:2c:07:d5:67:cd:3d:75:69:1a:1f: 00:02:9e:f3:f2:fe:7f:1a:22:36:70:34:a3:48:ec: 0c:02:4c:ea:a3:0b:5b:9b:3a:8e:fe:c3:5d:12:eb: 10:77:0e:b0:06:5b:6a:f7:77:c4:dd:5b:73:f6:8e: a5:35:f9:0c:e9:b0:99:11:80:3d:6f:c4:bf:39:35: ed:1e:6f:9b:cf:aa:91:45:f9:8b:d7:62:44:1c:72: fd:18:ff:7f:19:6e:2b:4e:35:98:6a:3c:f1:e1:45: d4:1a:89:e0:e8:1b:47:ed:e6:7f:fd:f3:a3:d6:52: f4:f6:7e:12:3b:fc:c0:86:49:a9:ce:49:47:bf:90: 78:23:3b:08:ba:5b:b6:d3:e0:64:5d:3d:65:6a:ec: 50:83:1e:b5:9d:ee:40:e7:f9:89:d3:f0:55:e3:b1: f1:29:08:e5:3a:11:b6:b4:5b:08:e2:f5:f9:9d:74: 1a:77:4a:3c:fa:4c:56:14:b7:99:b0:de:6d:c6:db: ff:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:70:20:74:30:5F:CA:56:FE:80:96:D5:44:6A:D3:AE:81:48:DC:2F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200959.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6c00::/40 2a0a:6040:e500::/40 Signature Algorithm: sha256WithRSAEncryption 19:1f:6b:28:22:e5:bc:2a:0d:84:f1:3c:a8:b8:32:0e:6c:3e: 7e:f5:38:e4:b1:73:93:3c:8a:68:f2:87:61:3c:a1:b6:b8:85: 17:23:bd:7e:82:20:c6:0a:85:c7:ee:85:af:0a:b0:d5:85:43: ea:3f:06:f0:e8:8d:a3:27:7e:60:53:22:ce:29:70:a1:7c:cc: 70:e2:3b:1c:91:da:e6:21:3f:d1:32:5c:91:88:2a:de:8e:ee: 17:ed:96:23:cf:7a:1c:d2:70:32:24:09:54:88:d6:a3:c6:a6: 84:a9:12:33:1b:9a:2e:8a:84:1f:ed:52:e3:f2:82:e4:cd:2e: e4:ad:57:28:5e:5e:08:c4:76:e2:9f:e3:fe:84:a8:3f:33:8f: a5:56:e1:11:0b:c3:7f:a7:67:bc:42:32:39:b6:30:37:9d:13: 16:87:28:ec:a3:41:46:e0:8e:e9:c9:83:71:63:7a:63:1a:3a: 9e:c0:65:fb:e5:7d:ea:bf:58:ba:41:71:60:cc:c6:31:39:e2: ff:74:52:33:d6:15:81:d5:12:5c:32:8c:9c:ef:88:80:e5:1d: 8d:52:b5:94:8e:4a:fc:80:ba:ae:da:be:5d:2d:cd:fa:cf:4e: 2a:70:ab:04:a7:fd:ff:3f:63:cf:a3:aa:a9:6c:8d:40:d9:a3: a1:2d:48:34 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUA/sJI7TTIlUymxoAWzadcuW4SFYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjNaFw0yNDExMDMwNDA3MjNaMDMxMTAvBgNV BAMTKEM1NzAyMDc0MzA1RkNBNTZGRTgwOTZENTQ0NkFEM0FFODE0OERDMkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrSQ09ypsCeTRInc0HHcHIXcHo svsYt6dFHiIBXc+CQwy23bHCJkZKAwYH7K4rNabk5bNygOFWr4QI22SFz+7FLAfV Z809dWkaHwACnvPy/n8aIjZwNKNI7AwCTOqjC1ubOo7+w10S6xB3DrAGW2r3d8Td W3P2jqU1+QzpsJkRgD1vxL85Ne0eb5vPqpFF+YvXYkQccv0Y/38ZbitONZhqPPHh RdQaieDoG0ft5n/986PWUvT2fhI7/MCGSanOSUe/kHgjOwi6W7bT4GRdPWVq7FCD HrWd7kDn+YnT8FXjsfEpCOU6Eba0Wwji9fmddBp3Sjz6TFYUt5mw3m3G2//vAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUxXAgdDBfylb+gJbVRGrTroFI3C8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQGwDBgAqCmBA5TANBgkqhkiG9w0BAQsF AAOCAQEAGR9rKCLlvCoNhPE8qLgyDmw+fvU45LFzkzyKaPKHYTyhtriFFyO9foIg xgqFx+6Frwqw1YVD6j8G8OiNoyd+YFMizilwoXzMcOI7HJHa5iE/0TJckYgq3o7u F+2WI896HNJwMiQJVIjWo8amhKkSMxuaLoqEH+1S4/KC5M0u5K1XKF5eCMR24p/j /oSoPzOPpVbhEQvDf6dnvEIyObYwN50TFoco7KNBRuCO6cmDcWN6Yxo6nsBl++V9 6r9YukFxYMzGMTni/3RSM9YVgdUSXDKMnO+IgOUdjVK1lI5K/IC6rtq+XS3N+s9O KnCrBKf9/z9jz6OqqWyNQNmjoS1INA== -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org