$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200007.roa File: AS200007.roa (raw, json) Hash identifier: TUgNBHw3He0jTqC9+kyHkKN+sS1n5ql8bY2FjH4yfp4= Subject key identifier: F4:D6:25:5C:F3:FE:BD:D4:66:FB:75:72:76:C1:FA:EA:09:5E:4A:E9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 057307A85B5517294B58ACAB69BC36BFCFDC497D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200007.roa Signing time: Fri 04 Jul 2025 06:53:09 +0000 ROA not before: Fri 04 Jul 2025 06:48:09 +0000 ROA not after: Fri 03 Jul 2026 06:53:09 +0000 asID: 200007 IP address blocks: 2a0a:6040:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:73:07:a8:5b:55:17:29:4b:58:ac:ab:69:bc:36:bf:cf:dc:49:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:09 2025 GMT Not After : Jul 3 06:53:09 2026 GMT Subject: CN=F4D6255CF3FEBDD466FB757276C1FAEA095E4AE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:eb:cf:7b:0a:60:5c:ec:a0:c3:2f:be:54:09: 79:be:c5:1e:a4:0f:ea:8b:97:b7:95:2d:bf:b5:5d: 8e:c6:f5:70:b5:e4:93:86:e1:58:c7:db:18:37:2e: 13:a5:da:a6:cb:ba:d0:88:51:a6:08:02:0d:9d:d5: 1e:f0:9c:87:40:cc:72:c1:ab:80:74:25:2c:ea:31: 6d:07:c0:11:d5:9b:b2:3e:98:f3:0c:29:c1:e6:e1: f2:f0:c4:86:38:b2:1b:6d:9f:39:25:3c:fe:75:18: 75:56:bb:61:11:95:78:e4:5f:04:8c:20:b5:70:1d: 9d:d0:c4:fe:23:73:bb:fb:43:9a:54:1a:0a:a0:bc: c5:96:a0:12:4d:ed:64:85:c5:04:18:22:9b:d0:a2: b8:6f:85:a7:94:94:31:ba:29:6d:cf:e6:ce:f1:97: 0a:9b:c9:f6:00:26:bc:50:a4:00:72:0d:24:73:40: 15:eb:59:3a:d0:20:bc:e9:9e:c3:fb:77:67:ff:11: 03:ec:49:f5:c6:0b:16:ec:73:73:ef:cb:93:b8:4a: c5:56:66:87:04:16:42:22:7a:25:11:65:06:e4:f7: 5e:8b:2e:02:63:f5:b5:49:e5:60:73:da:3a:c8:57: 9d:b5:f2:f1:b0:3a:cd:5f:fe:c2:de:f5:cf:e1:e7: 14:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D6:25:5C:F3:FE:BD:D4:66:FB:75:72:76:C1:FA:EA:09:5E:4A:E9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200007.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5900::/40 Signature Algorithm: sha256WithRSAEncryption a3:fc:07:64:6d:fb:2a:17:14:ec:da:ee:12:74:16:6f:48:f3: de:bd:95:da:77:fc:88:76:61:a1:35:72:4e:90:df:03:c6:d0: f7:d2:75:d2:b5:65:04:18:d1:d5:c0:5c:e7:1e:c0:b6:48:29: 26:57:56:ee:d5:1a:01:0b:81:b3:5b:4a:3a:b8:9e:5c:a2:c5: 81:4f:8d:c7:e9:b4:96:e0:97:4a:f8:d6:a2:aa:d5:f0:20:22: 2f:3e:c9:fe:7a:4d:0c:d4:3b:c4:3c:be:9b:e1:03:0a:0a:27: ec:85:b9:db:d7:a1:19:79:a0:3d:44:ab:58:26:05:11:74:ec: 86:3a:72:3d:83:9d:bc:1e:76:60:f3:bb:69:a5:bf:e4:d1:d2: b2:60:4a:0a:52:b6:8f:b4:59:20:f5:4d:e3:6d:d8:2f:8b:08: e0:cc:b7:3d:c9:e9:22:ec:4b:b8:39:61:ec:19:77:f1:76:ee: 5b:bf:17:95:0f:61:cb:02:0a:8c:9a:80:69:70:79:95:ec:46: e4:9e:a6:21:85:42:fd:de:51:12:98:1f:82:96:09:a0:79:f6: d2:f0:98:29:1d:4f:0c:c7:15:ba:3b:23:17:0d:9e:ba:89:12: ec:10:39:86:00:fc:21:6c:79:5e:ec:69:a9:6f:52:27:15:4f: 59:6e:91:8f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBXMHqFtVFylLWKyrabw2v8/cSX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDlaFw0yNjA3MDMwNjUzMDlaMDMxMTAvBgNV BAMTKEY0RDYyNTVDRjNGRUJERDQ2NkZCNzU3Mjc2QzFGQUVBMDk1RTRBRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA6897CmBc7KDDL75UCXm+xR6k D+qLl7eVLb+1XY7G9XC15JOG4VjH2xg3LhOl2qbLutCIUaYIAg2d1R7wnIdAzHLB q4B0JSzqMW0HwBHVm7I+mPMMKcHm4fLwxIY4shttnzklPP51GHVWu2ERlXjkXwSM ILVwHZ3QxP4jc7v7Q5pUGgqgvMWWoBJN7WSFxQQYIpvQorhvhaeUlDG6KW3P5s7x lwqbyfYAJrxQpAByDSRzQBXrWTrQILzpnsP7d2f/EQPsSfXGCxbsc3Pvy5O4SsVW ZocEFkIieiURZQbk916LLgJj9bVJ5WBz2jrIV5218vGwOs1f/sLe9c/h5xR5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU9NYlXPP+vdRm+3VydsH66gleSukwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFkwDQYJKoZIhvcNAQELBQADggEBAKP8 B2Rt+yoXFOza7hJ0Fm9I8969ldp3/Ih2YaE1ck6Q3wPG0PfSddK1ZQQY0dXAXOce wLZIKSZXVu7VGgELgbNbSjq4nlyixYFPjcfptJbgl0r41qKq1fAgIi8+yf56TQzU O8Q8vpvhAwoKJ+yFudvXoRl5oD1Eq1gmBRF07IY6cj2DnbwedmDzu2mlv+TR0rJg SgpSto+0WSD1TeNt2C+LCODMtz3J6SLsS7g5YewZd/F27lu/F5UPYcsCCoyagGlw eZXsRuSepiGFQv3eURKYH4KWCaB59tLwmCkdTwzHFbo7IxcNnrqJEuwQOYYA/CFs eV7saalvUicVT1lukY8= -----END CERTIFICATE-----Generated at Sat Jul 5 03:43:14 2025 by rpki-client