$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200243.roa File: AS200243.roa (raw, json) Hash identifier: wFSA2doOXjb+mQGia4XodfmFAkIAkbk70CEe4xd7x4w= Subject key identifier: E0:4C:BD:A4:80:51:28:96:5E:87:35:7E:E4:AD:0E:04:20:F5:A9:6A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4684D9E2F33EFDA379C73095D2F14509C4EA57A4 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200243.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 200243 IP address blocks: 2a0a:6040:900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:84:d9:e2:f3:3e:fd:a3:79:c7:30:95:d2:f1:45:09:c4:ea:57:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=E04CBDA4805128965E87357EE4AD0E0420F5A96A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e9:bb:74:d7:ff:da:d0:01:e2:8d:8d:03:71: 7b:a4:17:09:5c:f7:56:6e:6a:d4:bc:cf:e2:71:9c: 73:bd:38:06:8c:46:d8:c3:fd:21:1c:07:8c:80:af: 4c:a3:10:77:42:d0:a8:d2:fb:b4:8f:e9:c2:59:2c: fd:e9:b2:de:f4:f7:86:77:7f:05:1f:df:55:85:b1: 3e:80:c6:78:2f:a1:cb:8e:7a:83:29:a5:c4:44:25: 14:cf:a1:38:e2:bf:13:96:db:c2:e2:a3:4c:99:53: 96:7f:92:e1:9e:f1:e6:21:4d:66:1f:75:9e:ea:4e: f1:9a:ee:0c:50:71:ea:f2:27:15:dd:c9:ec:18:49: 72:2a:d5:b0:02:6c:9c:c6:6b:cc:04:c5:fa:c4:c7: e9:e8:95:f4:36:3a:26:e6:a4:26:30:00:09:bd:c3: 1f:c0:5b:c1:c4:e6:d3:dd:c5:41:fe:6d:cc:8f:94: ac:7d:7a:11:51:1c:57:88:ee:2c:12:03:76:f6:00: ab:f3:5e:8b:ee:43:61:5c:04:73:14:b3:22:12:4c: 5f:5f:63:56:eb:e0:5f:03:23:b6:ee:35:73:d6:eb: 04:f3:86:39:50:ca:f3:3e:8a:b9:0f:00:8d:71:f8: 3b:57:31:ee:e4:84:e7:60:40:17:49:cf:a7:a0:1a: da:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:4C:BD:A4:80:51:28:96:5E:87:35:7E:E4:AD:0E:04:20:F5:A9:6A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200243.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:900::/40 Signature Algorithm: sha256WithRSAEncryption ab:49:b3:1a:27:57:14:4f:35:66:74:4d:2b:f9:ae:31:c6:00: ed:8c:e5:3d:8e:a8:45:dc:c7:c0:27:e6:49:db:85:a2:b8:77: 57:b5:41:20:c4:bc:ec:be:32:c9:74:2e:ac:2f:b6:f2:ec:53: 40:23:d8:b3:f6:cb:8a:47:93:62:ec:de:1a:51:e0:87:fa:3f: 91:b9:a2:a0:01:c1:d3:1a:a7:e4:ef:c7:e0:eb:ab:a0:0b:64: ad:66:5f:41:3d:1f:fd:58:21:a0:37:e9:71:21:ca:68:5f:eb: 4c:88:3d:6a:b0:b5:26:99:6d:21:4a:9e:5f:38:ef:d2:be:82: 7e:c8:48:ec:a3:b3:ca:f2:79:cc:5a:5b:0f:1c:a3:df:12:ee: a2:fb:55:59:5c:e2:3c:f6:ca:f9:f3:d7:81:6d:1b:82:cc:0a: 7d:67:d1:98:01:0f:f0:fb:3f:a8:e8:aa:50:9d:63:56:97:6f: 17:91:3d:ae:45:3e:c0:ac:cf:a8:7a:b6:ba:dd:17:7a:ad:36: 72:90:b6:cb:42:83:ff:17:21:3b:34:5d:03:fd:39:77:1c:e2: 22:d0:8a:f9:7c:89:42:d4:54:6b:04:32:86:90:bf:f5:16:59: 46:a8:47:0c:17:d1:2f:7e:be:29:14:83:d8:73:a3:20:9d:88: 8a:02:9e:0a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURoTZ4vM+/aN5xzCV0vFFCcTqV6QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKEUwNENCREE0ODA1MTI4OTY1RTg3MzU3RUU0QUQwRTA0MjBGNUE5NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd6bt01//a0AHijY0DcXukFwlc 91ZuatS8z+JxnHO9OAaMRtjD/SEcB4yAr0yjEHdC0KjS+7SP6cJZLP3pst7094Z3 fwUf31WFsT6AxngvocuOeoMppcREJRTPoTjivxOW28Lio0yZU5Z/kuGe8eYhTWYf dZ7qTvGa7gxQceryJxXdyewYSXIq1bACbJzGa8wExfrEx+nolfQ2OibmpCYwAAm9 wx/AW8HE5tPdxUH+bcyPlKx9ehFRHFeI7iwSA3b2AKvzXovuQ2FcBHMUsyISTF9f Y1br4F8DI7buNXPW6wTzhjlQyvM+irkPAI1x+DtXMe7khOdgQBdJz6egGtoxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4Ey9pIBRKJZehzV+5K0OBCD1qWowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAkwDQYJKoZIhvcNAQELBQADggEBAKtJ sxonVxRPNWZ0TSv5rjHGAO2M5T2OqEXcx8An5knbhaK4d1e1QSDEvOy+Msl0Lqwv tvLsU0Aj2LP2y4pHk2Ls3hpR4If6P5G5oqABwdMap+Tvx+Drq6ALZK1mX0E9H/1Y IaA36XEhymhf60yIPWqwtSaZbSFKnl8479K+gn7ISOyjs8ryecxaWw8co98S7qL7 VVlc4jz2yvnz14FtG4LMCn1n0ZgBD/D7P6joqlCdY1aXbxeRPa5FPsCsz6h6trrd F3qtNnKQtstCg/8XITs0XQP9OXcc4iLQivl8iULUVGsEMoaQv/UWWUaoRwwX0S9+ vikUg9hzoyCdiIoCngo= -----END CERTIFICATE-----Generated at Sat Jul 5 04:02:08 2025 by rpki-client