$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200201.roa File: AS200201.roa (raw, json) Hash identifier: 7H22YSXClNsjF8bRD70XrjkT0KhqkE3mqqpYWCa3CRw= Subject key identifier: 42:BA:CC:09:AB:D6:E8:F8:E1:53:A5:50:B7:F9:7F:FE:E9:3A:A5:55 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2340152B806695EE27A04390A48F9C46219F582D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200201.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 200201 IP address blocks: 2a0a:6040:4600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:40:15:2b:80:66:95:ee:27:a0:43:90:a4:8f:9c:46:21:9f:58:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=42BACC09ABD6E8F8E153A550B7F97FFEE93AA555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2d:63:ca:fb:b3:c2:58:34:57:24:5c:c6:c0: f9:32:4c:e1:64:9f:db:1f:4f:02:b0:c3:c3:32:ee: e9:d7:30:a6:27:f7:e2:a7:99:52:d1:14:41:7f:e1: fe:8a:58:1c:60:a9:e5:6f:62:f5:bc:ec:62:8d:94: b0:5d:f7:79:ea:5f:d4:36:63:6b:c1:fb:10:af:0d: f0:fc:ed:9a:43:1e:08:ed:71:e6:f5:23:b0:af:2d: ca:2a:be:bb:b4:fd:94:33:23:64:49:6e:3a:c7:0f: 80:20:89:ca:67:1c:e4:74:ff:fc:df:29:e9:83:4b: 81:09:ce:dc:12:80:8b:cd:17:c9:d4:02:e6:a7:e7: 51:9b:96:b0:c2:08:7d:f1:90:3f:b6:a0:fa:eb:31: ad:96:d7:f9:7f:18:2e:54:57:b7:16:c1:c8:59:cc: 90:61:3b:f6:0d:4c:7b:4f:f1:9c:a9:ec:8f:9e:8f: 02:c5:5e:ad:7e:2c:92:26:d2:db:ba:85:e8:74:09: 0b:19:68:5c:a7:40:90:53:ea:a0:6a:2c:2f:b4:5c: d8:0f:43:00:18:fc:f1:69:05:ba:2c:f3:aa:e1:ca: 09:51:12:08:f5:94:3d:1a:a4:2a:e6:58:cc:a3:cd: f0:bc:28:3d:06:4c:9e:79:6a:26:3e:a9:4b:7c:ca: 18:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BA:CC:09:AB:D6:E8:F8:E1:53:A5:50:B7:F9:7F:FE:E9:3A:A5:55 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4600::/40 Signature Algorithm: sha256WithRSAEncryption 47:f4:06:0b:46:97:81:d5:f1:ac:22:e3:50:cd:b8:2f:9a:cb: 50:ea:74:01:29:0f:ee:2a:d5:5c:86:32:2b:cf:11:2f:49:bd: da:71:6d:17:8a:cc:3b:2c:c8:3c:f0:d8:44:a9:bb:f9:92:b4: 2a:d0:b0:65:c6:8f:b9:0e:5a:e6:60:14:42:83:49:0f:02:dc: 4e:2a:c5:29:71:b7:c1:39:25:47:d4:65:3d:5d:73:05:9d:b1: c3:b9:bb:8c:00:56:96:a5:e5:b7:ef:0c:b0:5c:1d:cf:22:c5: 59:43:1b:2f:fb:0d:22:6d:b5:59:34:e5:90:cc:e8:be:44:fa: e2:f4:32:21:91:58:de:3c:8f:de:bf:f1:6f:96:bc:68:86:18: 6a:9e:2a:5b:51:43:be:db:d0:d3:7f:71:09:11:95:99:f3:8a: b3:d3:8a:3c:f9:3c:92:a4:07:c1:e4:d4:53:56:17:c8:89:d0: 0d:6f:b8:d6:a3:32:bb:f1:1e:0f:8c:26:8f:6f:9c:9a:80:83: aa:27:ef:cb:a2:ed:2f:11:fd:a7:56:91:1e:63:61:35:b2:87: 57:a6:59:33:40:d8:c1:ad:85:87:f8:c0:db:2a:79:15:9b:7c: d4:8e:ec:09:f2:a4:9f:1c:5f:79:33:8c:44:a7:06:d7:0c:cc: 5f:af:e1:a2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUI0AVK4Bmle4noEOQpI+cRiGfWC0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDQyQkFDQzA5QUJENkU4RjhFMTUzQTU1MEI3Rjk3RkZFRTkzQUE1NTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1LWPK+7PCWDRXJFzGwPkyTOFk n9sfTwKww8My7unXMKYn9+KnmVLRFEF/4f6KWBxgqeVvYvW87GKNlLBd93nqX9Q2 Y2vB+xCvDfD87ZpDHgjtceb1I7CvLcoqvru0/ZQzI2RJbjrHD4AgicpnHOR0//zf KemDS4EJztwSgIvNF8nUAuan51GblrDCCH3xkD+2oPrrMa2W1/l/GC5UV7cWwchZ zJBhO/YNTHtP8Zyp7I+ejwLFXq1+LJIm0tu6heh0CQsZaFynQJBT6qBqLC+0XNgP QwAY/PFpBbos86rhyglREgj1lD0apCrmWMyjzfC8KD0GTJ55aiY+qUt8yhh3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQrrMCavW6PjhU6VQt/l//uk6pVUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEYwDQYJKoZIhvcNAQELBQADggEBAEf0 BgtGl4HV8awi41DNuC+ay1DqdAEpD+4q1VyGMivPES9JvdpxbReKzDssyDzw2ESp u/mStCrQsGXGj7kOWuZgFEKDSQ8C3E4qxSlxt8E5JUfUZT1dcwWdscO5u4wAVpal 5bfvDLBcHc8ixVlDGy/7DSJttVk05ZDM6L5E+uL0MiGRWN48j96/8W+WvGiGGGqe KltRQ77b0NN/cQkRlZnzirPTijz5PJKkB8Hk1FNWF8iJ0A1vuNajMrvxHg+MJo9v nJqAg6on78ui7S8R/adWkR5jYTWyh1emWTNA2MGthYf4wNsqeRWbfNSO7AnypJ8c X3kzjESnBtcMzF+v4aI= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:39 2025 by rpki-client