$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200172.roa File: AS200172.roa (raw, json) Hash identifier: vXeCB73XWc9zgPoa3yxT39FyIwMCDLGl9Kr54hV1Xfs= Subject key identifier: 7B:4E:70:CA:B0:EC:0D:08:87:1D:7C:0C:4C:A0:BB:6F:2A:23:9B:E0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 490261F7284D5461391638CF43752C44840FBDF6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200172.roa Signing time: Fri 04 Jul 2025 06:53:24 +0000 ROA not before: Fri 04 Jul 2025 06:48:24 +0000 ROA not after: Fri 03 Jul 2026 06:53:24 +0000 asID: 200172 IP address blocks: 2a0a:6040:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:02:61:f7:28:4d:54:61:39:16:38:cf:43:75:2c:44:84:0f:bd:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:24 2025 GMT Not After : Jul 3 06:53:24 2026 GMT Subject: CN=7B4E70CAB0EC0D08871D7C0C4CA0BB6F2A239BE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:53:be:bb:47:eb:e1:f5:f7:56:dc:f0:43:f7: 86:66:d0:a2:5b:4b:e7:82:cb:31:7e:d4:7c:54:05: 1b:7c:f7:64:d0:83:b2:ce:a0:03:9d:b4:b7:9b:bb: cd:4e:a3:31:42:58:7f:60:8e:17:43:9c:b2:d1:4e: 7b:d4:6b:ac:2c:34:d0:1b:e2:e8:4b:6b:87:db:8b: 49:33:87:d6:ba:33:d3:37:49:bf:8b:3a:a6:40:1a: 69:40:a9:51:06:71:4a:dd:d7:e5:dd:bd:a1:82:78: 75:b9:b8:48:37:71:90:50:f9:5a:1e:ee:6c:17:36: c4:53:6b:68:df:c9:ac:43:95:90:f5:5d:dc:99:a7: 3b:83:b8:71:8d:53:cf:ef:f9:ef:ea:01:be:5c:40: c5:3d:56:c1:cf:dc:34:92:9b:30:05:5a:15:63:23: b4:a5:49:1a:f9:e6:c9:b4:ac:d6:61:ff:8a:54:b2: ad:22:c9:61:cc:4a:f9:cb:8e:2d:5c:c0:f0:ce:96: d7:91:05:01:bc:6e:a7:62:9a:f3:15:f0:7c:e2:f5: c4:76:6b:ed:0b:a5:45:0d:b5:06:01:f5:fc:3d:b5: ba:e4:da:79:c5:b7:49:eb:3a:ea:71:e3:ae:ef:1a: bd:ea:86:70:a8:43:e0:72:70:6d:35:2e:45:d9:da: 81:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4E:70:CA:B0:EC:0D:08:87:1D:7C:0C:4C:A0:BB:6F:2A:23:9B:E0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200172.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2600::/40 Signature Algorithm: sha256WithRSAEncryption cc:7a:ae:42:3e:f2:a3:bd:39:f6:aa:ad:9a:45:ac:ff:91:0d: 86:51:81:1d:f6:8d:b9:1d:0a:d5:e0:18:b1:6a:13:45:b4:72: a8:20:aa:0c:07:60:98:2f:b6:e5:17:a5:79:a7:36:70:a0:21: ed:c0:96:5d:11:67:ac:2c:a2:4a:68:86:89:c1:48:e8:38:6f: 8f:7e:37:a9:3a:f4:ca:74:95:23:6a:95:4a:a3:15:c9:75:61: 2d:74:cf:13:85:b4:65:43:81:37:53:c0:e8:ee:61:a9:ac:ff: 93:4e:da:9d:e9:0e:ab:f5:42:02:6a:3d:ad:64:bb:c1:39:8d: f4:b6:c9:84:e0:17:07:1d:91:95:04:ac:95:ab:4b:82:b1:2f: 7b:c5:46:09:cb:fe:88:dc:65:f3:e3:c1:13:48:83:de:ca:15: 38:24:68:43:2f:7a:09:5d:6e:0e:06:83:b5:d7:30:51:ec:8f: ea:12:40:ae:06:5c:4c:bf:bc:1c:9f:b7:3b:39:23:94:38:65: 1e:23:16:8c:19:81:d0:9e:53:d3:03:a1:2a:47:f0:33:c9:25: f5:2e:09:29:ba:14:1a:45:06:62:66:59:a7:53:1c:30:5b:d1: 5b:cb:3f:af:3a:ea:bc:65:2c:82:06:53:03:0f:26:32:28:03: b1:63:ea:58 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSQJh9yhNVGE5FjjPQ3UsRIQPvfYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjRaFw0yNjA3MDMwNjUzMjRaMDMxMTAvBgNV BAMTKDdCNEU3MENBQjBFQzBEMDg4NzFEN0MwQzRDQTBCQjZGMkEyMzlCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVU767R+vh9fdW3PBD94Zm0KJb S+eCyzF+1HxUBRt892TQg7LOoAOdtLebu81OozFCWH9gjhdDnLLRTnvUa6wsNNAb 4uhLa4fbi0kzh9a6M9M3Sb+LOqZAGmlAqVEGcUrd1+XdvaGCeHW5uEg3cZBQ+Voe 7mwXNsRTa2jfyaxDlZD1XdyZpzuDuHGNU8/v+e/qAb5cQMU9VsHP3DSSmzAFWhVj I7SlSRr55sm0rNZh/4pUsq0iyWHMSvnLji1cwPDOlteRBQG8bqdimvMV8Hzi9cR2 a+0LpUUNtQYB9fw9tbrk2nnFt0nrOupx467vGr3qhnCoQ+BycG01LkXZ2oElAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUe05wyrDsDQiHHXwMTKC7byojm+AwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMTcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCYwDQYJKoZIhvcNAQELBQADggEBAMx6 rkI+8qO9OfaqrZpFrP+RDYZRgR32jbkdCtXgGLFqE0W0cqggqgwHYJgvtuUXpXmn NnCgIe3All0RZ6wsokpohonBSOg4b49+N6k69Mp0lSNqlUqjFcl1YS10zxOFtGVD gTdTwOjuYams/5NO2p3pDqv1QgJqPa1ku8E5jfS2yYTgFwcdkZUErJWrS4KxL3vF RgnL/ojcZfPjwRNIg97KFTgkaEMvegldbg4Gg7XXMFHsj+oSQK4GXEy/vByftzs5 I5Q4ZR4jFowZgdCeU9MDoSpH8DPJJfUuCSm6FBpFBmJmWadTHDBb0VvLP6866rxl LIIGUwMPJjIoA7Fj6lg= -----END CERTIFICATE-----Generated at Sat Jul 5 04:15:53 2025 by rpki-client