$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200968.roa File: AS200968.roa (raw, json) Hash identifier: 2N9He2f3yIMJtaIWVlic/tadsRTrLk6D5p/G4gJleqQ= Subject key identifier: 97:0D:01:E4:9B:74:63:65:4C:99:FD:F2:CD:B3:B6:81:48:3F:E7:8A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 46DB3664337608FDE038F7F1AD1A192F5E5B13B5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200968.roa Signing time: Sun 05 Nov 2023 04:07:04 +0000 ROA not before: Sun 05 Nov 2023 04:02:04 +0000 ROA not after: Sun 03 Nov 2024 04:07:04 +0000 asID: 200968 IP address blocks: 2a0a:6040:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:db:36:64:33:76:08:fd:e0:38:f7:f1:ad:1a:19:2f:5e:5b:13:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:04 2023 GMT Not After : Nov 3 04:07:04 2024 GMT Subject: CN=970D01E49B7463654C99FDF2CDB3B681483FE78A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:85:ad:b7:9a:1e:ea:22:f7:eb:87:68:2c:e6: 45:5d:4e:8a:95:29:8c:24:8e:6f:9c:8e:40:92:7a: 88:5b:23:3f:65:32:30:d0:21:59:4b:40:a7:bb:2e: a4:22:bc:cb:d9:55:78:c3:05:4a:ea:0f:02:8e:15: 17:1e:09:50:83:e7:28:37:46:e2:22:fa:16:3f:40: 3b:16:8f:c3:ee:57:0b:0a:a1:b3:6c:e1:79:c4:eb: b4:4f:6c:f0:d4:93:b4:75:1d:db:3a:9f:53:ee:2d: 7c:69:69:84:30:df:f1:5c:29:fe:9b:8b:e1:2c:88: ce:8d:2a:0f:67:77:3a:6e:0d:ee:5e:e1:ce:5a:6c: ec:d5:ff:1f:76:17:ae:b0:c9:f9:2a:ab:d5:8e:5c: bf:b5:05:9f:eb:19:d3:2d:ea:aa:85:1e:15:92:51: 7e:b9:34:70:1b:fc:7b:d1:4b:73:cf:53:00:53:dc: 09:50:99:ca:0d:2d:d3:31:b0:77:02:fe:b7:c1:19: c0:ab:13:6c:15:a0:78:41:1b:7f:6f:52:64:96:be: 5d:50:01:0c:6a:04:05:36:81:6a:22:9b:49:96:80: 76:db:a5:52:36:44:82:a7:a4:e1:85:aa:10:38:69: bd:5f:0d:44:a1:9e:99:03:b4:f2:c2:ec:ac:b9:a9: bb:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0D:01:E4:9B:74:63:65:4C:99:FD:F2:CD:B3:B6:81:48:3F:E7:8A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f100::/40 Signature Algorithm: sha256WithRSAEncryption 86:ba:c8:82:f8:38:b7:d5:87:79:6c:35:4f:53:8c:69:ad:68: 13:4e:45:15:92:35:ee:8a:fe:d0:d7:76:ff:f8:46:1e:b1:25: e2:6e:03:dd:f4:6d:4a:e6:61:0f:a7:e7:0a:77:cf:18:07:e5: a7:a1:84:ee:e4:66:c7:38:31:11:87:ce:e8:31:c0:fb:12:1b: de:0a:dd:1c:33:f3:c0:d3:ba:e6:e8:95:ad:1e:22:2a:01:34: 4e:8c:0a:37:8f:7e:eb:f9:e5:39:09:42:35:be:01:60:9a:4c: 7c:04:d7:9b:00:45:02:2f:2d:b3:17:95:aa:d5:c0:30:be:ac: b2:99:2b:ed:f3:9b:77:fe:28:56:5b:c1:9e:0f:7e:fa:bc:bf: 7e:e8:05:b8:02:c5:a7:ab:16:fe:0a:fb:3e:17:0d:27:b4:9d: ac:2b:aa:f4:5a:0d:67:3d:9c:7c:b9:92:70:5f:df:b7:03:d4: d4:12:70:a5:de:8d:e9:4d:7e:9a:63:b4:e0:25:04:74:03:ec: 31:52:6b:9b:85:9b:2a:c2:9f:c3:df:45:2c:21:1f:60:f5:7c: d9:4c:54:78:cd:b4:91:18:e6:4e:90:70:a2:ec:4e:44:91:64: e0:cf:3c:d0:63:3c:03:79:5b:20:7c:39:c8:3b:0d:06:6c:59: 77:a0:53:db -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURts2ZDN2CP3gOPfxrRoZL15bE7UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDRaFw0yNDExMDMwNDA3MDRaMDMxMTAvBgNV BAMTKDk3MEQwMUU0OUI3NDYzNjU0Qzk5RkRGMkNEQjNCNjgxNDgzRkU3OEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCha23mh7qIvfrh2gs5kVdToqV KYwkjm+cjkCSeohbIz9lMjDQIVlLQKe7LqQivMvZVXjDBUrqDwKOFRceCVCD5yg3 RuIi+hY/QDsWj8PuVwsKobNs4XnE67RPbPDUk7R1Hds6n1PuLXxpaYQw3/FcKf6b i+EsiM6NKg9ndzpuDe5e4c5abOzV/x92F66wyfkqq9WOXL+1BZ/rGdMt6qqFHhWS UX65NHAb/HvRS3PPUwBT3AlQmcoNLdMxsHcC/rfBGcCrE2wVoHhBG39vUmSWvl1Q AQxqBAU2gWoim0mWgHbbpVI2RIKnpOGFqhA4ab1fDUShnpkDtPLC7Ky5qbtLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlw0B5Jt0Y2VMmf3yzbO2gUg/54owHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPEwDQYJKoZIhvcNAQELBQADggEBAIa6 yIL4OLfVh3lsNU9TjGmtaBNORRWSNe6K/tDXdv/4Rh6xJeJuA930bUrmYQ+n5wp3 zxgH5aehhO7kZsc4MRGHzugxwPsSG94K3Rwz88DTuubola0eIioBNE6MCjePfuv5 5TkJQjW+AWCaTHwE15sARQIvLbMXlarVwDC+rLKZK+3zm3f+KFZbwZ4Pfvq8v37o BbgCxaerFv4K+z4XDSe0nawrqvRaDWc9nHy5knBf37cD1NQScKXejelNfppjtOAl BHQD7DFSa5uFmyrCn8PfRSwhH2D1fNlMVHjNtJEY5k6QcKLsTkSRZODPPNBjPAN5 WyB8Ocg7DQZsWXegU9s= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org