$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200158.roa File: AS200158.roa (raw, json) Hash identifier: P+dgz5CA2jmh1emz2kq8l2kOI+4YLv+NSENGvSsy7Aw= Subject key identifier: FA:3B:1C:CC:28:9B:E8:64:EB:2D:E4:41:F8:2C:60:6C:EF:A7:2E:02 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 232242B3DF0BBD8FF69512F6C096B8E4D983FA5F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200158.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 200158 IP address blocks: 2a0a:6040:600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:22:42:b3:df:0b:bd:8f:f6:95:12:f6:c0:96:b8:e4:d9:83:fa:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=FA3B1CCC289BE864EB2DE441F82C606CEFA72E02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a8:77:fa:c1:68:59:e2:b0:4a:77:1a:0f:46: 9f:88:4f:16:96:1c:fe:8a:4f:a7:a2:a9:3f:d6:af: 16:fa:39:02:bb:c8:d7:53:2e:58:94:03:83:22:9a: 43:a1:4c:a3:fb:27:3a:d3:5f:21:32:70:01:cf:b9: 05:ef:9d:e3:a8:8e:3d:c0:66:35:c7:0e:a1:50:71: dd:bb:65:71:6f:17:6a:d1:97:b1:30:d0:05:3a:cf: 38:62:94:0a:ec:83:40:46:d6:e9:c2:b6:c4:38:72: a4:d9:27:b6:fe:83:f1:dc:e2:92:42:5d:62:04:90: 71:0c:7b:d1:45:b2:2c:3e:ac:e0:8e:c0:6d:95:53: 94:9a:e0:b8:bd:5f:d1:2a:e3:7e:9c:b8:99:09:d3: 6a:cf:4c:51:2b:2f:97:ac:57:ca:55:53:45:a4:54: ee:b5:86:70:db:88:5f:38:14:eb:93:2c:5a:74:b3: 04:23:c5:f7:ac:8a:a0:a2:9e:b0:e0:5b:28:a2:33: a3:26:dc:54:c9:b2:72:35:8f:f7:3b:d8:b5:b9:69: 24:b1:b4:1f:58:3a:bf:08:dd:7a:b5:f0:89:3f:45: 9d:1f:2d:e5:9e:ee:47:e1:17:52:0c:8e:3e:20:23: ac:38:34:28:46:71:da:ae:b4:c5:34:15:b0:7b:f5: 05:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3B:1C:CC:28:9B:E8:64:EB:2D:E4:41:F8:2C:60:6C:EF:A7:2E:02 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200158.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:600::/40 Signature Algorithm: sha256WithRSAEncryption b6:00:7e:a2:85:aa:44:03:a4:80:2e:8d:bc:1c:12:a9:89:ff: 6b:9b:9e:44:d2:84:a7:b1:12:64:c0:e3:f1:2e:41:e6:66:b9: 74:61:46:53:2a:b2:e7:1a:97:df:c9:ce:4f:00:3a:21:4f:83: f1:1e:df:2a:5d:7b:62:58:1a:5d:56:25:a4:bd:9e:74:40:d7: 05:84:a5:8c:49:4f:c2:75:75:4c:2f:a2:6f:56:ee:9c:9c:a9: ed:e3:ed:c6:21:a3:b5:bd:38:c8:ab:64:df:63:88:38:92:13: 40:02:d2:3f:a5:48:1d:0a:62:2d:3e:92:e9:82:e9:f4:7f:8e: 0b:7d:ac:00:9d:e0:7b:a9:1f:40:88:39:11:6a:e1:19:e4:2c: 00:7e:3a:3b:4e:57:9d:22:fa:c8:d1:56:76:2b:46:b1:52:78: fd:af:8f:66:86:e6:44:08:e1:e9:08:24:40:8f:b2:72:53:fb: 0f:37:91:c1:ec:55:f0:93:f2:52:fc:f0:d1:ac:a3:d4:3f:cd: f3:fa:ea:11:72:11:40:f5:8c:01:2b:ff:2f:13:ca:eb:16:b8: 6b:20:dc:62:8d:41:85:af:56:db:b2:26:aa:6f:3d:38:53:5e: dc:21:7a:b8:39:22:4b:81:a7:09:ba:e3:71:1f:8b:3f:8a:c4: da:17:19:b9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIyJCs98LvY/2lRL2wJa45NmD+l8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKEZBM0IxQ0NDMjg5QkU4NjRFQjJERTQ0MUY4MkM2MDZDRUZBNzJFMDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXqHf6wWhZ4rBKdxoPRp+ITxaW HP6KT6eiqT/Wrxb6OQK7yNdTLliUA4MimkOhTKP7JzrTXyEycAHPuQXvneOojj3A ZjXHDqFQcd27ZXFvF2rRl7Ew0AU6zzhilArsg0BG1unCtsQ4cqTZJ7b+g/Hc4pJC XWIEkHEMe9FFsiw+rOCOwG2VU5Sa4Li9X9Eq436cuJkJ02rPTFErL5esV8pVU0Wk VO61hnDbiF84FOuTLFp0swQjxfesiqCinrDgWyiiM6Mm3FTJsnI1j/c72LW5aSSx tB9YOr8I3Xq18Ik/RZ0fLeWe7kfhF1IMjj4gI6w4NChGcdqutMU0FbB79QWdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+jsczCib6GTrLeRB+CxgbO+nLgIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAYwDQYJKoZIhvcNAQELBQADggEBALYA fqKFqkQDpIAujbwcEqmJ/2ubnkTShKexEmTA4/EuQeZmuXRhRlMqsucal9/Jzk8A OiFPg/Ee3ypde2JYGl1WJaS9nnRA1wWEpYxJT8J1dUwvom9W7pycqe3j7cYho7W9 OMirZN9jiDiSE0AC0j+lSB0KYi0+kumC6fR/jgt9rACd4HupH0CIORFq4RnkLAB+ OjtOV50i+sjRVnYrRrFSeP2vj2aG5kQI4ekIJECPsnJT+w83kcHsVfCT8lL88NGs o9Q/zfP66hFyEUD1jAEr/y8TyusWuGsg3GKNQYWvVtuyJqpvPThTXtwherg5IkuB pwm643Efiz+KxNoXGbk= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:40 2025 by rpki-client