$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200103.roa File: AS200103.roa (raw, json) Hash identifier: BaVloe5ekNE947NoDiz7vJrKIv3eASF7/+ql/HIkgog= Subject key identifier: 78:56:EE:77:59:00:88:A8:08:BF:74:E5:01:95:BB:42:12:28:C3:E3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1EE75E4DB465561103EDA692577CC9A542EFF35A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200103.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 200103 IP address blocks: 2a0a:6040:5500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:e7:5e:4d:b4:65:56:11:03:ed:a6:92:57:7c:c9:a5:42:ef:f3:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=7856EE77590088A808BF74E50195BB421228C3E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9a:89:af:81:7e:a8:75:dd:69:d2:95:7b:e1: 65:24:b7:f4:03:c6:93:19:79:3d:7c:60:37:2a:fc: ee:f5:29:89:33:82:4c:7b:88:d9:22:9a:f3:71:69: ac:15:4a:b8:7e:83:37:e6:ea:42:25:2b:2d:da:b2: 11:9e:36:40:f3:14:ed:d4:fd:71:7a:73:d2:f7:66: 7f:e6:9b:f6:66:41:cb:4f:98:0e:19:05:ed:6a:76: f2:7e:d6:b5:66:11:40:60:bd:f6:8f:55:66:f6:af: aa:13:79:76:14:89:93:e8:a4:c7:33:8c:5b:dc:32: e0:8c:f3:5c:b0:ad:83:97:57:9d:8d:3a:95:c4:11: a3:12:06:82:62:38:d6:40:c9:c1:5d:41:21:a7:2e: 99:8c:cb:89:5f:b3:21:d3:ff:fa:7a:77:a4:04:8b: ad:c7:05:f6:b0:94:44:8c:7a:39:a2:fe:9f:8f:8b: 4f:b1:e4:a1:61:b8:ef:c5:a8:d1:22:0d:a6:3a:2f: 15:99:d3:f2:f3:b7:3f:cc:bc:94:28:62:64:ec:a7: f9:39:3b:e2:9c:a7:cb:c8:17:c3:c7:17:b6:85:a2: 0d:9a:de:11:46:f7:c9:9d:07:3c:58:94:6c:60:46: 4b:75:2f:65:f2:d2:d9:b7:e7:9e:9b:a2:15:91:69: c6:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:56:EE:77:59:00:88:A8:08:BF:74:E5:01:95:BB:42:12:28:C3:E3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200103.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5500::/40 Signature Algorithm: sha256WithRSAEncryption 6f:29:8b:cc:f9:74:ed:79:58:ff:ca:b7:7e:1c:60:7a:fb:50: d9:32:17:3b:42:03:ba:d3:c0:35:00:c3:36:01:db:4c:12:bd: 92:5e:c0:10:9b:3a:5e:ae:85:cc:0d:5b:1b:6e:c4:c6:af:cd: eb:8e:a7:83:dc:e5:dd:60:16:af:13:3a:86:52:53:77:f2:d5: 0f:f6:fe:6d:59:63:2c:b7:98:4c:fd:41:c8:c7:e4:2c:61:98: dc:7a:e8:a6:30:0d:d6:95:57:aa:ad:bb:e0:2a:91:8b:07:bc: 3e:10:84:db:8b:48:4a:ac:72:53:31:be:3d:86:59:ad:57:a4: bd:43:d3:68:06:ad:18:82:df:46:41:7f:26:5c:3a:93:92:17: d3:fe:a5:77:1d:e3:b7:e0:ea:5b:37:17:8a:5e:53:cc:0c:84: 72:94:f8:ef:c9:26:09:1e:e8:36:ec:8a:92:2a:46:9f:36:97: 64:53:c6:04:30:29:6b:99:27:e9:04:7d:3c:cf:5e:28:0e:35: 0c:8a:25:d2:0b:4f:eb:aa:8c:c9:d0:5f:3a:c6:98:97:8c:7a: 21:85:26:9d:c6:fc:c1:ef:33:2a:55:c7:a4:89:52:91:a3:4c: a6:46:93:4c:98:ed:0a:43:ed:ca:87:f8:7a:57:3f:88:29:05: 3b:37:bd:d5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHudeTbRlVhED7aaSV3zJpULv81owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKDc4NTZFRTc3NTkwMDg4QTgwOEJGNzRFNTAxOTVCQjQyMTIyOEMzRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrmomvgX6odd1p0pV74WUkt/QD xpMZeT18YDcq/O71KYkzgkx7iNkimvNxaawVSrh+gzfm6kIlKy3ashGeNkDzFO3U /XF6c9L3Zn/mm/ZmQctPmA4ZBe1qdvJ+1rVmEUBgvfaPVWb2r6oTeXYUiZPopMcz jFvcMuCM81ywrYOXV52NOpXEEaMSBoJiONZAycFdQSGnLpmMy4lfsyHT//p6d6QE i63HBfawlESMejmi/p+Pi0+x5KFhuO/FqNEiDaY6LxWZ0/Lztz/MvJQoYmTsp/k5 O+Kcp8vIF8PHF7aFog2a3hFG98mdBzxYlGxgRkt1L2Xy0tm3556bohWRacYjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUeFbud1kAiKgIv3TlAZW7QhIow+MwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMTAzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFUwDQYJKoZIhvcNAQELBQADggEBAG8p i8z5dO15WP/Kt34cYHr7UNkyFztCA7rTwDUAwzYB20wSvZJewBCbOl6uhcwNWxtu xMavzeuOp4Pc5d1gFq8TOoZSU3fy1Q/2/m1ZYyy3mEz9QcjH5CxhmNx66KYwDdaV V6qtu+AqkYsHvD4QhNuLSEqsclMxvj2GWa1XpL1D02gGrRiC30ZBfyZcOpOSF9P+ pXcd47fg6ls3F4peU8wMhHKU+O/JJgke6DbsipIqRp82l2RTxgQwKWuZJ+kEfTzP XigONQyKJdILT+uqjMnQXzrGmJeMeiGFJp3G/MHvMypVx6SJUpGjTKZGk0yY7QpD 7cqH+HpXP4gpBTs3vdU= -----END CERTIFICATE-----Generated at Sat Jul 5 04:02:14 2025 by rpki-client