$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200992.roa File: AS200992.roa (raw, json) Hash identifier: lbQ5Z90KMZs0FeSiLCE004/w4024P2U/MtR+HtrkHXg= Subject key identifier: 6A:88:7C:E9:91:EC:F4:6F:E9:5E:BA:BB:EE:4E:E3:C1:72:14:62:97 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3A4B4C55B87723D1F61101C16D4670B3B7C367A5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200992.roa Signing time: Sun 05 Nov 2023 04:07:11 +0000 ROA not before: Sun 05 Nov 2023 04:02:11 +0000 ROA not after: Sun 03 Nov 2024 04:07:11 +0000 asID: 200992 IP address blocks: 2a0a:6040:f600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 21 May 2024 07:22:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:4b:4c:55:b8:77:23:d1:f6:11:01:c1:6d:46:70:b3:b7:c3:67:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:11 2023 GMT Not After : Nov 3 04:07:11 2024 GMT Subject: CN=6A887CE991ECF46FE95EBABBEE4EE3C172146297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d7:ae:2e:0a:d6:bb:10:b3:16:b0:84:75:28: 8d:ec:c8:63:94:a9:44:1a:18:27:c1:af:96:99:26: 0e:24:eb:6e:b8:35:3b:2d:08:d2:c8:dc:23:e6:b8: 7e:a9:59:40:01:12:7a:31:97:8f:c6:83:35:0b:96: 3b:1d:f0:17:20:3e:46:9f:69:76:68:81:dd:7a:cc: 56:a9:47:f3:d2:fa:a6:9b:77:69:ce:c7:a8:5c:39: 7a:36:86:1a:73:d2:59:9b:18:f4:07:94:9e:ba:1a: b4:e5:f6:e2:e9:15:a4:3a:fc:9c:2c:61:dd:8a:89: c6:c0:00:1c:00:88:78:84:58:2d:c2:d9:c5:72:96: d1:30:91:a1:2b:a2:88:a8:f3:55:30:a5:cb:98:0a: 2d:ba:5c:e4:c0:ce:93:ca:e8:16:35:5d:10:a7:2f: 54:b6:a5:ea:01:de:e9:26:0e:25:28:ab:f7:78:e9: 1b:8a:03:23:f1:f7:50:bc:d6:b9:ea:71:4d:e2:7a: c3:a8:5a:4d:3d:67:62:76:a9:a9:35:68:1f:a3:a8: 66:51:3e:4c:ed:78:42:9c:de:73:9e:55:4a:72:8d: 41:d1:84:09:41:12:23:56:c8:4c:73:02:8f:e8:8a: f1:6e:65:57:7a:47:7d:2d:a8:ed:11:cf:74:7b:94: f0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:88:7C:E9:91:EC:F4:6F:E9:5E:BA:BB:EE:4E:E3:C1:72:14:62:97 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS200992.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f600::/40 Signature Algorithm: sha256WithRSAEncryption 95:06:0d:e4:0e:6d:cb:dc:e3:26:52:23:94:27:51:f2:01:65: c7:d8:5d:f1:01:c6:73:9a:e5:c1:30:be:ad:b0:31:7e:3b:cd: 16:3f:10:15:78:34:bb:9e:7b:81:53:ab:b3:47:e1:6b:54:76: 21:b3:f3:7c:2e:d5:61:32:d7:e0:05:d4:f0:ec:e2:1a:61:20: 5f:01:97:31:da:8e:dd:ee:bb:ad:96:d7:2f:6e:05:82:c5:e7: bc:8a:7e:43:33:47:1e:d9:39:ad:85:49:29:f1:f9:ab:ea:71: cd:54:65:bb:3f:88:f1:c1:ed:6b:51:97:85:9b:bb:f0:e7:22: 1c:eb:10:8e:64:78:59:30:99:f4:1e:83:09:00:b9:6f:8f:fa: dd:64:70:e5:0c:a9:fc:20:e4:04:7f:cc:a8:60:eb:84:bb:68: 33:c7:25:85:03:61:bd:15:0a:54:b9:e8:fc:2c:43:94:aa:a5: ae:82:a0:96:a6:03:2f:ac:9f:6b:70:11:b6:bc:f2:29:b3:bb: d7:a1:fa:a1:04:ed:63:55:31:08:6b:4a:77:45:c1:32:3e:c4: 4d:97:06:42:6f:d6:d7:62:94:a5:f7:b8:09:77:04:a2:a4:96: 97:bf:50:df:22:d9:d7:c8:1d:73:23:fc:59:30:f8:04:c3:c9: 6e:cf:2e:5f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOktMVbh3I9H2EQHBbUZws7fDZ6UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMTFaFw0yNDExMDMwNDA3MTFaMDMxMTAvBgNV BAMTKDZBODg3Q0U5OTFFQ0Y0NkZFOTVFQkFCQkVFNEVFM0MxNzIxNDYyOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDh164uCta7ELMWsIR1KI3syGOU qUQaGCfBr5aZJg4k6264NTstCNLI3CPmuH6pWUABEnoxl4/GgzULljsd8BcgPkaf aXZogd16zFapR/PS+qabd2nOx6hcOXo2hhpz0lmbGPQHlJ66GrTl9uLpFaQ6/Jws Yd2KicbAABwAiHiEWC3C2cVyltEwkaErooio81UwpcuYCi26XOTAzpPK6BY1XRCn L1S2peoB3ukmDiUoq/d46RuKAyPx91C81rnqcU3iesOoWk09Z2J2qak1aB+jqGZR PkzteEKc3nOeVUpyjUHRhAlBEiNWyExzAo/oivFuZVd6R30tqO0Rz3R7lPBhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUaoh86ZHs9G/pXrq77k7jwXIUYpcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAwOTkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPYwDQYJKoZIhvcNAQELBQADggEBAJUG DeQObcvc4yZSI5QnUfIBZcfYXfEBxnOa5cEwvq2wMX47zRY/EBV4NLuee4FTq7NH 4WtUdiGz83wu1WEy1+AF1PDs4hphIF8BlzHajt3uu62W1y9uBYLF57yKfkMzRx7Z Oa2FSSnx+avqcc1UZbs/iPHB7WtRl4Wbu/DnIhzrEI5keFkwmfQegwkAuW+P+t1k cOUMqfwg5AR/zKhg64S7aDPHJYUDYb0VClS56PwsQ5Sqpa6CoJamAy+sn2twEba8 8imzu9eh+qEE7WNVMQhrSndFwTI+xE2XBkJv1tdilKX3uAl3BKKklpe/UN8i2dfI HXMj/Fkw+ATDyW7PLl8= -----END CERTIFICATE-----Generated at Mon May 20 12:06:24 2024 by rpki-client on console-ams.rpki-client.org