$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200969.roa File: AS200969.roa (raw, json) Hash identifier: zXjL8TDawmX4ZobQjb8gQWCohJshVRfSyMhnhDPnFe4= Subject key identifier: A2:52:86:1E:7F:5B:F2:01:8F:2B:57:65:2C:17:4D:DC:B3:B0:E6:0F Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 38E2DEB7FD18F93841A4958454A87603F8E380E6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200969.roa Signing time: Sun 05 Nov 2023 04:07:04 +0000 ROA not before: Sun 05 Nov 2023 04:02:04 +0000 ROA not after: Sun 03 Nov 2024 04:07:04 +0000 asID: 200969 IP address blocks: 2a0a:6040:f400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 18 May 2024 03:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:e2:de:b7:fd:18:f9:38:41:a4:95:84:54:a8:76:03:f8:e3:80:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:04 2023 GMT Not After : Nov 3 04:07:04 2024 GMT Subject: CN=A252861E7F5BF2018F2B57652C174DDCB3B0E60F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:29:5a:b7:20:f3:ce:8b:37:06:89:34:8d:bd: 84:19:2a:44:b0:ea:a3:59:9c:a5:d5:f8:a0:74:45: cb:45:a9:e1:aa:ad:8c:a2:b3:57:a2:ff:cd:36:0e: 83:f6:39:1a:d8:23:11:0e:6b:31:c1:8d:cc:5a:1f: c1:6b:0d:e0:0e:ef:62:af:cf:f2:28:8b:1e:a8:41: 5d:2e:05:73:e9:3b:5b:28:e0:2a:0f:e7:a8:c8:64: 1b:c0:bf:28:a3:1b:ff:36:45:ca:0f:0b:c3:e1:d9: 30:80:b8:e6:64:04:27:ff:fa:b9:4d:dc:48:44:3e: 05:e5:49:85:8c:80:e0:c8:74:0e:3a:5c:b2:ff:fc: 6e:1e:ee:b2:93:91:aa:f9:c3:b1:a3:e6:ec:84:1f: ea:9f:ad:ec:83:49:f1:4a:bd:4e:e7:03:9f:e7:e7: 3a:1c:80:ea:f9:78:53:57:b2:19:69:2c:95:51:02: 8b:78:5f:78:68:57:ce:e1:34:8d:5e:20:cd:d8:9a: 00:db:59:22:99:ce:75:bf:7d:b7:2a:77:92:dc:34: c0:eb:be:1b:6c:2b:2d:fd:99:d4:54:18:a2:69:08: fa:2a:c9:3c:b3:7d:b9:ce:52:12:9b:75:c5:b6:d7: f2:3a:de:41:5d:15:d9:18:fc:6f:6e:1c:ba:5f:4d: bd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:52:86:1E:7F:5B:F2:01:8F:2B:57:65:2C:17:4D:DC:B3:B0:E6:0F X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200969.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f400::/40 Signature Algorithm: sha256WithRSAEncryption 06:e0:70:0f:a6:8e:3a:18:d1:37:5f:95:45:ea:73:4c:8d:95: 8f:c0:f4:26:94:34:5e:26:9f:af:d9:e7:59:ec:7d:01:3b:36: fa:1a:3f:ce:86:0a:33:8c:ec:65:6a:1e:0a:b5:b8:79:46:ec: f0:15:6d:bc:d8:69:c3:25:99:fb:6f:95:25:68:e1:a3:27:c7: 12:b1:44:c5:25:00:08:4a:b7:2b:56:be:6e:8a:02:37:7e:59: 3d:dc:58:6b:e9:d5:f6:e8:3e:01:29:6e:c9:42:1d:9a:4c:06: af:9b:e8:bf:a3:45:3c:ac:43:aa:78:e5:1f:61:a0:38:75:0e: 7f:2d:59:8a:72:21:b1:6b:b1:70:78:e3:83:8c:41:35:bd:03: ec:d6:6c:42:86:89:1b:14:16:18:c8:29:94:5b:cb:fb:25:79: be:29:02:91:57:d4:32:32:f5:6b:fe:5a:c2:7b:9f:58:66:86: 34:37:35:ca:2f:79:6d:66:4e:4e:5a:06:5a:9f:e9:03:3c:e7: 7a:92:7d:f9:5c:7a:22:1e:c1:fd:a8:4e:51:6d:4d:be:45:2f: f3:1b:95:b4:8b:20:22:84:0b:0e:05:d5:97:d5:55:f1:51:cf: 3b:cf:20:ff:52:bd:4e:90:7f:f8:07:1a:e2:2b:52:dd:09:b4: c5:0a:0f:77 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOOLet/0Y+ThBpJWEVKh2A/jjgOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMDRaFw0yNDExMDMwNDA3MDRaMDMxMTAvBgNV BAMTKEEyNTI4NjFFN0Y1QkYyMDE4RjJCNTc2NTJDMTc0RERDQjNCMEU2MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOKVq3IPPOizcGiTSNvYQZKkSw 6qNZnKXV+KB0RctFqeGqrYyis1ei/802DoP2ORrYIxEOazHBjcxaH8FrDeAO72Kv z/Ioix6oQV0uBXPpO1so4CoP56jIZBvAvyijG/82RcoPC8Ph2TCAuOZkBCf/+rlN 3EhEPgXlSYWMgODIdA46XLL//G4e7rKTkar5w7Gj5uyEH+qfreyDSfFKvU7nA5/n 5zocgOr5eFNXshlpLJVRAot4X3hoV87hNI1eIM3YmgDbWSKZznW/fbcqd5LcNMDr vhtsKy39mdRUGKJpCPoqyTyzfbnOUhKbdcW21/I63kFdFdkY/G9uHLpfTb3VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUolKGHn9b8gGPK1dlLBdN3LOw5g8wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPQwDQYJKoZIhvcNAQELBQADggEBAAbg cA+mjjoY0TdflUXqc0yNlY/A9CaUNF4mn6/Z51nsfQE7NvoaP86GCjOM7GVqHgq1 uHlG7PAVbbzYacMlmftvlSVo4aMnxxKxRMUlAAhKtytWvm6KAjd+WT3cWGvp1fbo PgEpbslCHZpMBq+b6L+jRTysQ6p45R9hoDh1Dn8tWYpyIbFrsXB444OMQTW9A+zW bEKGiRsUFhjIKZRby/sleb4pApFX1DIy9Wv+WsJ7n1hmhjQ3NcoveW1mTk5aBlqf 6QM853qSfflceiIewf2oTlFtTb5FL/MblbSLICKECw4F1ZfVVfFRzzvPIP9SvU6Q f/gHGuIrUt0JtMUKD3c= -----END CERTIFICATE-----Generated at Fri May 17 13:11:27 2024 by rpki-client on console-ams.rpki-client.org