$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200242.roa File: AS200242.roa (raw, json) Hash identifier: ag4XAvBgBTS+X0CfM+d39mliap/fINJlNxNAQkNmEpw= Subject key identifier: 46:BA:6E:02:60:35:40:BE:5F:48:57:F7:EB:69:41:C7:CB:3C:B9:29 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5DBBAE9FBB3E70B2F6CD4F448FD2E68BC179EF43 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200242.roa Signing time: Fri 04 Jul 2025 06:53:09 +0000 ROA not before: Fri 04 Jul 2025 06:48:09 +0000 ROA not after: Fri 03 Jul 2026 06:53:09 +0000 asID: 200242 IP address blocks: 2a0a:6040:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:bb:ae:9f:bb:3e:70:b2:f6:cd:4f:44:8f:d2:e6:8b:c1:79:ef:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:09 2025 GMT Not After : Jul 3 06:53:09 2026 GMT Subject: CN=46BA6E02603540BE5F4857F7EB6941C7CB3CB929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a3:3f:72:19:54:38:51:9d:96:5f:5a:89:c0: 8b:03:75:4d:e4:39:b0:88:7b:cb:7f:14:9c:04:ce: 22:67:ea:9f:65:e7:55:db:89:9b:ed:25:3e:2f:b5: 46:b9:85:39:b1:06:cf:59:d6:b8:95:c0:f3:ce:92: 6b:b5:88:f2:72:d5:34:4d:e2:f5:5a:7c:ce:80:c1: 2b:a6:01:09:b9:5f:76:7b:f5:0d:07:fd:83:c8:d6: 22:84:f0:44:63:6b:e0:10:88:ba:49:84:cd:35:21: c0:e1:f6:61:bb:da:33:64:a4:69:52:c9:9f:98:c2: e2:89:37:b4:5f:64:bf:59:e0:47:37:9c:45:df:53: d5:d3:17:54:5e:97:dc:ef:f2:89:46:60:af:f4:0b: 6d:34:38:bf:2d:81:0c:b5:79:f0:a7:37:b6:ec:81: a5:43:93:e9:9e:fe:dd:52:40:2c:73:d0:b0:e9:e3: 86:41:42:25:09:e9:6b:a1:dd:18:9e:5e:9e:6d:e4: 99:eb:39:7e:44:34:5e:fe:8c:72:a2:4d:ab:7b:98: 28:1c:f4:31:fa:78:9b:58:e2:a8:0e:fe:d8:01:28: 4c:3a:0d:80:3c:1c:92:af:3b:f5:81:f6:8b:f0:f5: 7a:a8:9d:2f:10:ca:a2:d4:e5:b7:2e:a9:ad:14:9b: 70:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:BA:6E:02:60:35:40:BE:5F:48:57:F7:EB:69:41:C7:CB:3C:B9:29 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4100::/40 Signature Algorithm: sha256WithRSAEncryption 3d:16:fb:fa:d2:ea:6a:79:b1:64:26:17:0e:d2:91:93:7b:35: b9:af:25:f2:fa:13:a0:e3:4b:b8:8f:cc:f9:bb:16:66:39:91: 37:10:57:a7:ae:38:7c:bc:e2:48:5e:53:6b:5c:85:de:6b:8e: 1a:bc:b8:85:2e:1c:97:7d:2a:3a:2b:e3:15:45:ff:b8:22:89: f1:4c:54:b1:7f:28:91:35:59:b3:93:da:c6:6a:52:7e:95:1f: 58:2f:b9:e8:d7:3a:72:61:66:74:bc:c8:2d:a4:51:04:b4:a0: 4a:a6:bd:a9:0c:7f:a5:eb:8b:5a:a5:9d:73:13:65:a8:c9:84: 81:17:43:cc:b8:78:eb:01:a6:16:0a:dd:3e:42:bb:1e:e6:5e: 58:e5:75:02:b0:59:81:ce:77:1e:85:7e:52:b1:aa:23:15:ee: ed:21:bb:58:76:07:86:59:f0:ec:e5:be:e6:95:95:1f:7c:09: ef:29:5d:a7:40:ee:3e:81:59:a8:7e:dc:98:99:bb:95:85:23: c8:ae:d6:28:38:72:ef:c3:66:40:15:4f:86:5e:01:0a:b3:db: 2b:ab:0b:9a:71:1f:18:20:7c:4b:0b:d2:f0:fa:d8:ba:1c:6f: 60:da:8e:5c:8b:60:b3:a1:aa:35:aa:bd:7e:e2:7b:d5:45:f1: 8c:72:a4:a8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXbuun7s+cLL2zU9Ej9Lmi8F570MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDlaFw0yNjA3MDMwNjUzMDlaMDMxMTAvBgNV BAMTKDQ2QkE2RTAyNjAzNTQwQkU1RjQ4NTdGN0VCNjk0MUM3Q0IzQ0I5MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7oz9yGVQ4UZ2WX1qJwIsDdU3k ObCIe8t/FJwEziJn6p9l51XbiZvtJT4vtUa5hTmxBs9Z1riVwPPOkmu1iPJy1TRN 4vVafM6AwSumAQm5X3Z79Q0H/YPI1iKE8ERja+AQiLpJhM01IcDh9mG72jNkpGlS yZ+YwuKJN7RfZL9Z4Ec3nEXfU9XTF1Rel9zv8olGYK/0C200OL8tgQy1efCnN7bs gaVDk+me/t1SQCxz0LDp44ZBQiUJ6Wuh3RieXp5t5JnrOX5ENF7+jHKiTat7mCgc 9DH6eJtY4qgO/tgBKEw6DYA8HJKvO/WB9ovw9XqonS8QyqLU5bcuqa0Um3CXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURrpuAmA1QL5fSFf362lBx8s8uSkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEEwDQYJKoZIhvcNAQELBQADggEBAD0W +/rS6mp5sWQmFw7SkZN7NbmvJfL6E6DjS7iPzPm7FmY5kTcQV6euOHy84kheU2tc hd5rjhq8uIUuHJd9Kjor4xVF/7giifFMVLF/KJE1WbOT2sZqUn6VH1gvuejXOnJh ZnS8yC2kUQS0oEqmvakMf6Xri1qlnXMTZajJhIEXQ8y4eOsBphYK3T5Cux7mXljl dQKwWYHOdx6FflKxqiMV7u0hu1h2B4ZZ8OzlvuaVlR98Ce8pXadA7j6BWah+3JiZ u5WFI8iu1ig4cu/DZkAVT4ZeAQqz2yurC5pxHxggfEsL0vD62Locb2DajlyLYLOh qjWqvX7ie9VF8YxypKg= -----END CERTIFICATE-----Generated at Sat Jul 5 04:18:52 2025 by rpki-client