$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201097.roa File: AS201097.roa (raw, json) Hash identifier: 646KpNHM1SzLx9M/Z6H7QLW0IaviWtG2+bbQ5x5BEXA= Subject key identifier: 80:54:97:E9:2D:D5:F5:11:8A:5F:02:13:2D:28:FC:8D:20:C1:82:38 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2FD941AC5251ADA2812ED40BB6D1CD69F1C18A9D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201097.roa Signing time: Sun 05 Nov 2023 04:07:20 +0000 ROA not before: Sun 05 Nov 2023 04:02:20 +0000 ROA not after: Sun 03 Nov 2024 04:07:20 +0000 asID: 201097 IP address blocks: 2a0a:6040:2a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 08:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d9:41:ac:52:51:ad:a2:81:2e:d4:0b:b6:d1:cd:69:f1:c1:8a:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Nov 5 04:02:20 2023 GMT Not After : Nov 3 04:07:20 2024 GMT Subject: CN=805497E92DD5F5118A5F02132D28FC8D20C18238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:53:24:cd:f3:76:36:36:cd:15:3a:4f:11:76: fb:df:ea:ee:a1:e5:de:cb:f2:32:98:8d:a2:08:40: 60:c7:36:fa:d1:5a:10:4b:f6:be:3e:86:54:75:86: 3d:a5:ab:4a:3b:b9:00:ff:03:22:ca:b4:b9:e7:9d: f6:e8:c7:23:d7:a9:a1:56:cc:5b:f8:0d:4e:bb:78: 9e:91:13:8c:73:c2:0d:08:00:b6:14:84:3f:39:59: 87:35:3f:62:b4:e1:bb:93:d1:95:e8:5d:12:b0:9c: 3f:b2:39:84:41:4f:1c:ca:31:8f:12:e7:7d:05:2f: c4:9f:e9:a0:2c:56:e6:d8:49:bb:45:de:ad:7c:74: 8d:c9:4f:0d:a3:78:1a:aa:bc:91:2a:d3:f3:a6:29: 39:0a:36:24:f4:91:86:3c:89:dc:56:6a:2e:5e:dc: 30:a3:49:9e:c2:02:f4:60:13:c3:08:d1:48:3b:6c: 93:d1:90:07:1a:e4:ab:bf:c3:06:a0:63:17:51:8b: 18:a9:2f:cf:ab:26:79:34:da:f7:3a:c9:3d:18:f5: 10:83:60:b2:31:0c:19:79:76:21:33:aa:d8:ab:94: e4:21:fd:ed:1f:fa:6e:ff:a7:26:27:c7:da:2c:fd: 52:16:4a:6a:bf:a0:15:c2:3a:20:4b:e2:6c:f9:ac: 6f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:54:97:E9:2D:D5:F5:11:8A:5F:02:13:2D:28:FC:8D:20:C1:82:38 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS201097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2a00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:88:2f:81:f1:c8:19:31:1b:0e:51:74:d5:8b:73:0c:76:75: d5:68:01:95:a9:93:d2:4f:16:68:d8:2e:54:87:1c:ad:69:16: 23:8c:0e:ae:fe:5b:35:97:c9:61:99:ba:36:96:74:e3:5a:da: 91:11:fd:a9:52:c8:1f:6d:2b:31:3b:17:d7:e6:3f:80:8c:8a: a1:54:c3:28:a1:9b:c4:7c:c2:34:80:13:37:ce:c9:5e:1a:d8: 0c:ab:5c:51:68:e6:66:a7:5b:20:0e:4f:90:05:e9:26:d1:5a: a6:a1:2f:fa:42:c1:db:50:bc:56:40:44:cd:06:9d:1c:ba:8d: 1d:53:86:c9:82:fa:70:85:47:57:12:7b:d3:43:a6:db:ab:e5: 26:cc:e2:77:24:18:dd:7c:5a:90:aa:ff:58:61:31:90:e1:5c: 69:78:12:9e:4a:34:51:4b:cb:a1:51:fe:83:92:6a:99:3e:31: 7a:1e:ad:e9:4e:97:7a:6d:d2:b0:b7:9e:bf:63:98:d6:fe:be: 9d:9f:48:f1:7c:e0:0d:e0:7d:82:69:08:e3:1e:5a:7a:f2:ce: 78:72:2c:82:fb:e8:80:8a:f9:88:be:5e:1e:b7:fe:e8:65:a9: 6c:8f:e9:f2:6f:82:67:6c:ef:f6:ae:8f:f2:ca:01:02:34:82: d2:2a:3e:13 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUL9lBrFJRraKBLtQLttHNafHBip0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzExMDUwNDAyMjBaFw0yNDExMDMwNDA3MjBaMDMxMTAvBgNV BAMTKDgwNTQ5N0U5MkRENUY1MTE4QTVGMDIxMzJEMjhGQzhEMjBDMTgyMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJUyTN83Y2Ns0VOk8Rdvvf6u6h 5d7L8jKYjaIIQGDHNvrRWhBL9r4+hlR1hj2lq0o7uQD/AyLKtLnnnfboxyPXqaFW zFv4DU67eJ6RE4xzwg0IALYUhD85WYc1P2K04buT0ZXoXRKwnD+yOYRBTxzKMY8S 530FL8Sf6aAsVubYSbtF3q18dI3JTw2jeBqqvJEq0/OmKTkKNiT0kYY8idxWai5e 3DCjSZ7CAvRgE8MI0Ug7bJPRkAca5Ku/wwagYxdRixipL8+rJnk02vc6yT0Y9RCD YLIxDBl5diEzqtirlOQh/e0f+m7/pyYnx9os/VIWSmq/oBXCOiBL4mz5rG9lAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgFSX6S3V9RGKXwITLSj8jSDBgjgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAxMDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCowDQYJKoZIhvcNAQELBQADggEBAJ6I L4HxyBkxGw5RdNWLcwx2ddVoAZWpk9JPFmjYLlSHHK1pFiOMDq7+WzWXyWGZujaW dONa2pER/alSyB9tKzE7F9fmP4CMiqFUwyihm8R8wjSAEzfOyV4a2AyrXFFo5man WyAOT5AF6SbRWqahL/pCwdtQvFZARM0GnRy6jR1ThsmC+nCFR1cSe9NDptur5SbM 4nckGN18WpCq/1hhMZDhXGl4Ep5KNFFLy6FR/oOSapk+MXoerelOl3pt0rC3nr9j mNb+vp2fSPF84A3gfYJpCOMeWnryznhyLIL76ICK+Yi+Xh63/uhlqWyP6fJvgmds 7/auj/LKAQI0gtIqPhM= -----END CERTIFICATE-----Generated at Thu May 16 13:03:38 2024 by rpki-client on console-ams.rpki-client.org