$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200210.roa File: AS200210.roa (raw, json) Hash identifier: jGrNfmaINnIUV5cSpk6rXMhAkGQvVxwYOlVlD+2F5Wo= Subject key identifier: 71:68:B2:34:4E:C1:55:4D:91:78:F5:5B:B7:33:00:44:EC:C8:F3:37 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 54EB9B5FD905A451F88640AF60109FFC9C1119AE Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200210.roa Signing time: Fri 04 Jul 2025 06:53:28 +0000 ROA not before: Fri 04 Jul 2025 06:48:28 +0000 ROA not after: Fri 03 Jul 2026 06:53:28 +0000 asID: 200210 IP address blocks: 2a0a:6040:1a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:eb:9b:5f:d9:05:a4:51:f8:86:40:af:60:10:9f:fc:9c:11:19:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:28 2025 GMT Not After : Jul 3 06:53:28 2026 GMT Subject: CN=7168B2344EC1554D9178F55BB7330044ECC8F337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e8:83:10:91:0e:19:47:86:e7:40:5b:d8:9b: 6e:f6:46:ed:08:6e:18:8c:c2:af:c0:3a:fd:3e:84: 53:a3:e3:fe:27:4c:0d:42:22:50:bd:0e:0c:c0:46: 46:5b:93:15:fc:d9:30:61:cd:be:3c:0e:5c:9b:8a: 07:b1:ca:1f:d1:f3:5a:9f:c8:2a:30:df:81:8b:d4: df:bd:74:59:7e:7e:84:b6:dd:c9:bf:bd:cb:40:c3: e4:3d:b4:d6:11:60:fd:da:da:f3:1f:24:d2:af:68: 96:a8:59:ca:45:7b:07:1f:eb:9e:6f:41:e6:d9:0b: 8b:cf:4a:ff:ea:94:74:87:b4:fc:5a:85:36:df:36: b9:ae:f9:8f:e8:2f:61:6e:f4:55:82:96:4a:17:83: 1a:f4:91:0f:ef:1c:72:75:0d:b2:41:5c:93:9c:10: 12:0f:49:28:e4:44:bf:a6:97:2f:11:a2:ad:f2:e2: d2:da:77:32:e0:c1:7e:7d:af:e4:55:44:db:77:8f: 17:33:40:dd:de:86:fa:2d:07:37:e3:c7:a3:1d:91: c6:9e:b9:75:e2:88:4d:0d:51:aa:05:d3:94:3e:d4: 19:8b:d9:b9:b5:8e:ea:d0:c7:aa:da:36:9f:37:a6: c1:bf:36:fc:92:51:8f:81:a2:13:ed:9a:59:93:35: 67:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:68:B2:34:4E:C1:55:4D:91:78:F5:5B:B7:33:00:44:EC:C8:F3:37 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1a00::/40 Signature Algorithm: sha256WithRSAEncryption ae:65:ee:15:80:f4:fd:1c:2c:20:c9:11:7e:1e:5b:c0:13:e7: 21:f8:84:21:59:dc:8c:c8:d4:4c:de:2b:08:ef:6f:c1:ed:16: c1:36:bd:f4:78:f6:1e:57:35:b3:9a:86:e3:6b:c1:3a:1d:51: b5:68:fb:3c:20:be:0f:eb:c0:19:0c:b4:6d:84:6e:9f:1d:1e: cf:65:72:f7:06:ff:79:88:b1:c7:dc:3a:aa:ab:dc:ec:06:57: 00:9f:f8:be:0b:dd:b1:41:75:eb:60:0d:8b:77:3a:2b:bd:79: f6:b8:bf:fc:50:b8:7e:fe:90:0b:d9:98:1c:ed:c5:3d:d8:60: 0c:94:f9:fb:33:7e:ee:ba:b6:fe:a4:c2:5c:60:1b:17:ee:49: ee:42:a7:33:f8:c2:f6:3a:f2:32:c6:cd:5b:82:45:a4:b5:8b: 04:5f:9a:d8:19:d5:a2:05:fa:a2:6f:59:d1:e8:c6:5e:a8:3e: 4d:13:0f:81:09:f4:02:07:97:82:47:c3:70:d2:58:53:e9:dd: 8f:a7:82:bb:34:93:b4:94:a7:c8:22:b6:c9:61:6d:2b:a6:82: cd:ef:41:00:ee:c0:94:3d:dd:d6:23:a4:01:82:91:0f:c1:cd: 98:80:6c:e4:4b:ba:09:5a:42:da:67:05:5d:88:37:d5:6b:95: 31:59:4a:ed -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVOubX9kFpFH4hkCvYBCf/JwRGa4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjhaFw0yNjA3MDMwNjUzMjhaMDMxMTAvBgNV BAMTKDcxNjhCMjM0NEVDMTU1NEQ5MTc4RjU1QkI3MzMwMDQ0RUNDOEYzMzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk6IMQkQ4ZR4bnQFvYm272Ru0I bhiMwq/AOv0+hFOj4/4nTA1CIlC9DgzARkZbkxX82TBhzb48Dlybigexyh/R81qf yCow34GL1N+9dFl+foS23cm/vctAw+Q9tNYRYP3a2vMfJNKvaJaoWcpFewcf655v QebZC4vPSv/qlHSHtPxahTbfNrmu+Y/oL2Fu9FWClkoXgxr0kQ/vHHJ1DbJBXJOc EBIPSSjkRL+mly8Roq3y4tLadzLgwX59r+RVRNt3jxczQN3ehvotBzfjx6Mdkcae uXXiiE0NUaoF05Q+1BmL2bm1jurQx6raNp83psG/NvySUY+BohPtmlmTNWdRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUcWiyNE7BVU2RePVbtzMAROzI8zcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjEwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBowDQYJKoZIhvcNAQELBQADggEBAK5l 7hWA9P0cLCDJEX4eW8AT5yH4hCFZ3IzI1EzeKwjvb8HtFsE2vfR49h5XNbOahuNr wTodUbVo+zwgvg/rwBkMtG2Ebp8dHs9lcvcG/3mIscfcOqqr3OwGVwCf+L4L3bFB detgDYt3Oiu9efa4v/xQuH7+kAvZmBztxT3YYAyU+fszfu66tv6kwlxgGxfuSe5C pzP4wvY68jLGzVuCRaS1iwRfmtgZ1aIF+qJvWdHoxl6oPk0TD4EJ9AIHl4JHw3DS WFPp3Y+ngrs0k7SUp8gitslhbSumgs3vQQDuwJQ93dYjpAGCkQ/BzZiAbORLugla QtpnBV2IN9VrlTFZSu0= -----END CERTIFICATE-----Generated at Sat Jul 5 03:42:14 2025 by rpki-client