$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200221.roa File: AS200221.roa (raw, json) Hash identifier: 9bnJ8v5hNi8CasnQi4Fn9uhNYCEDR2LY2PmOIr2sHvQ= Subject key identifier: 17:4E:D2:9D:34:AC:FD:B0:73:C6:5F:1D:7A:37:A2:45:83:9F:4E:D3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 509D7000228973560421B286102201DEE9837AE8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200221.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 200221 IP address blocks: 2a0a:6040:2100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9d:70:00:22:89:73:56:04:21:b2:86:10:22:01:de:e9:83:7a:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=174ED29D34ACFDB073C65F1D7A37A245839F4ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f4:0d:63:da:78:ef:02:d5:01:ab:52:95:b6: a8:ad:ee:7d:42:6d:6b:38:74:e8:8a:8c:e8:a4:ce: 5c:69:cd:56:ef:b1:22:72:0c:5e:97:55:e4:e3:b7: 94:a1:5e:85:92:59:34:8b:e7:03:13:a3:b0:6e:fb: d0:76:00:19:47:81:d7:e0:a5:e1:22:f0:6d:47:c8: 4c:0d:d9:8f:45:6d:04:1a:7c:01:72:b8:ae:54:cd: 95:21:ac:60:83:39:2e:e3:92:db:a9:52:c9:5b:6e: 0e:a6:e7:55:0e:c3:84:af:61:ed:94:26:7e:30:2d: 3e:fa:eb:0c:c1:81:0d:17:5d:d7:2e:d0:38:19:5b: 18:49:ea:66:b2:65:b0:1b:20:0b:9b:94:4b:48:c8: 3c:ed:30:ad:bc:c3:a8:13:4f:6b:8a:3f:98:ad:ac: 2d:ff:a0:9f:e1:21:b1:2f:8c:5b:0b:b8:da:d9:ee: 49:5f:7a:71:69:7d:cc:0d:2f:6c:8b:a5:6f:49:37: 68:c0:18:b7:0e:02:8e:4f:c4:71:ea:4b:bf:9b:86: cc:3e:de:a2:da:bd:c5:bf:ec:99:f6:37:62:73:e0: cc:d1:8d:41:97:1d:96:50:a7:6a:25:40:78:07:5a: 21:3f:f6:9d:0a:b5:16:4c:71:f2:81:19:18:6b:40: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:4E:D2:9D:34:AC:FD:B0:73:C6:5F:1D:7A:37:A2:45:83:9F:4E:D3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200221.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2100::/40 Signature Algorithm: sha256WithRSAEncryption c5:80:08:4b:d8:64:68:1d:b6:c9:c5:ab:46:11:14:78:09:14: cc:3a:c5:a1:e5:8a:0a:29:c0:9c:3d:03:f7:d1:37:2c:e9:2e: 32:a7:8e:c4:37:2f:d2:70:ba:1d:44:a0:61:8a:d9:1e:f2:7d: 01:cb:3b:83:50:fe:50:bf:ab:aa:bd:b6:61:02:7c:1f:02:a6: e8:ca:30:b9:28:81:b8:59:8c:76:fd:a1:04:15:cf:85:30:29: a9:20:1f:63:98:a7:3b:db:c5:fe:b1:37:92:2b:aa:64:0c:f9: ea:07:2c:df:32:64:35:37:10:8e:7c:f1:ad:c5:1c:e4:49:40: 55:6d:e6:ca:b8:0d:52:8d:a8:50:bd:28:d7:2f:e6:ed:d7:74: 57:13:34:e7:52:3c:88:65:fb:92:40:79:83:34:0e:3f:60:57: c1:9b:4c:4a:e6:33:80:c2:d1:3d:51:d2:b4:69:8c:0c:d5:0c: 23:53:00:64:e4:9f:2e:19:94:9c:f0:80:ee:ca:fd:66:d9:de: 69:28:87:40:1c:83:e4:fe:8d:35:70:2d:2a:6f:9e:02:06:23: 25:83:5d:ad:1d:85:27:5c:66:46:21:18:64:08:dc:1e:a4:9b: 1d:98:96:35:4b:e7:8f:e7:75:4c:fc:7c:ca:51:3e:a3:c4:9e: 8b:ab:0e:27 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUJ1wACKJc1YEIbKGECIB3umDeugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKDE3NEVEMjlEMzRBQ0ZEQjA3M0M2NUYxRDdBMzdBMjQ1ODM5RjRFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR9A1j2njvAtUBq1KVtqit7n1C bWs4dOiKjOikzlxpzVbvsSJyDF6XVeTjt5ShXoWSWTSL5wMTo7Bu+9B2ABlHgdfg peEi8G1HyEwN2Y9FbQQafAFyuK5UzZUhrGCDOS7jktupUslbbg6m51UOw4SvYe2U Jn4wLT766wzBgQ0XXdcu0DgZWxhJ6mayZbAbIAublEtIyDztMK28w6gTT2uKP5it rC3/oJ/hIbEvjFsLuNrZ7klfenFpfcwNL2yLpW9JN2jAGLcOAo5PxHHqS7+bhsw+ 3qLavcW/7Jn2N2Jz4MzRjUGXHZZQp2olQHgHWiE/9p0KtRZMcfKBGRhrQClpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUF07SnTSs/bBzxl8dejeiRYOfTtMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCEwDQYJKoZIhvcNAQELBQADggEBAMWA CEvYZGgdtsnFq0YRFHgJFMw6xaHligopwJw9A/fRNyzpLjKnjsQ3L9Jwuh1EoGGK 2R7yfQHLO4NQ/lC/q6q9tmECfB8CpujKMLkogbhZjHb9oQQVz4UwKakgH2OYpzvb xf6xN5IrqmQM+eoHLN8yZDU3EI588a3FHORJQFVt5sq4DVKNqFC9KNcv5u3XdFcT NOdSPIhl+5JAeYM0Dj9gV8GbTErmM4DC0T1R0rRpjAzVDCNTAGTkny4ZlJzwgO7K /WbZ3mkoh0Acg+T+jTVwLSpvngIGIyWDXa0dhSdcZkYhGGQI3B6kmx2YljVL54/n dUz8fMpRPqPEnourDic= -----END CERTIFICATE-----Generated at Sat Jul 5 04:03:32 2025 by rpki-client