$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200257.roa File: AS200257.roa (raw, json) Hash identifier: DqH5VY4B6iKrFcvMvqIx8kpt2S82+iMJKaVwRxnH+44= Subject key identifier: 0D:02:75:B1:45:42:88:B4:5E:2C:42:73:B0:55:89:3B:DD:1B:79:29 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5973122437A11F524DECB8337064B5A7D65155AD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200257.roa Signing time: Fri 04 Jul 2025 06:53:15 +0000 ROA not before: Fri 04 Jul 2025 06:48:15 +0000 ROA not after: Fri 03 Jul 2026 06:53:15 +0000 asID: 200257 IP address blocks: 2a0a:6040:3300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:73:12:24:37:a1:1f:52:4d:ec:b8:33:70:64:b5:a7:d6:51:55:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:15 2025 GMT Not After : Jul 3 06:53:15 2026 GMT Subject: CN=0D0275B1454288B45E2C4273B055893BDD1B7929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:30:28:b2:21:c3:92:9d:39:5d:5d:8d:af:6d: a9:9e:e3:a0:d4:9d:46:cf:7f:9f:86:f0:d8:60:50: 9b:6e:60:cf:66:a4:2c:f5:56:a7:72:89:1f:8c:8c: 20:81:82:e2:0c:b0:57:97:f3:cd:c2:07:89:be:12: b1:35:df:43:3e:7c:99:ed:39:de:69:4a:6d:33:42: c5:88:bb:8e:df:b7:bf:58:e4:5b:8f:16:68:c7:a9: d2:8d:c0:0c:79:9b:e4:9e:c5:39:eb:4a:56:07:5e: 56:9b:d9:55:a1:40:b1:fb:c6:bd:e5:3e:4a:c3:78: cd:62:f5:d1:d0:69:af:27:c9:a7:9f:2d:9c:d1:92: 85:64:03:5d:6d:f6:f4:9a:4a:86:6c:99:e7:cd:b0: 68:f9:02:49:d6:66:c2:25:ac:e9:24:2b:bb:9b:5c: c7:0f:1d:da:0e:2a:4f:71:fd:4e:ab:49:86:a4:39: be:2c:ce:ec:9d:8d:16:b6:e8:35:8b:0e:0a:33:a0: 43:e2:19:35:66:22:a5:ac:e9:ad:fd:b0:8c:dd:ba: 6d:9f:c3:57:5e:95:ea:47:47:ba:96:91:ff:d9:05: 41:1d:a2:57:e4:06:78:eb:b3:f3:78:93:7f:7a:7a: e1:75:10:55:13:a6:9d:47:27:50:90:2a:4d:95:76: a7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:02:75:B1:45:42:88:B4:5E:2C:42:73:B0:55:89:3B:DD:1B:79:29 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200257.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3300::/40 Signature Algorithm: sha256WithRSAEncryption 86:3e:55:09:72:69:27:0c:d3:0c:77:62:33:28:5a:94:65:b4: e1:52:45:28:f1:47:24:1b:84:21:4e:ed:27:46:3e:8c:9b:00: 0a:c5:18:5d:e3:0f:64:f8:54:62:cd:0d:10:16:9d:03:c6:2a: 07:9a:96:70:77:21:d8:cd:67:7c:0f:99:af:41:e8:cc:cd:38: 99:2d:35:8d:c7:3d:3a:28:ec:87:48:3b:28:73:7f:b6:2b:05: b7:e6:d7:fa:ec:d2:e4:d7:bb:e9:89:81:c6:ef:b7:8d:45:1d: cb:82:4c:4e:14:ef:f8:0e:de:2c:c9:d3:4e:ef:69:ca:75:f6: f7:22:27:27:80:85:a3:e3:30:98:54:c8:d6:db:02:8c:1f:55: 59:f6:c6:4a:5e:b4:71:3c:bf:b8:94:09:0d:a7:9c:ee:c7:ad: 2c:03:71:e2:f8:f2:17:4c:a8:28:45:30:62:92:88:6f:98:6d: d7:d7:87:1d:33:15:e8:17:d3:10:45:58:da:0b:e0:f4:e7:4f: 97:9c:a3:02:61:3d:9c:0b:0a:ef:bc:f3:31:e7:93:d2:ad:6a: fd:0d:86:1e:6b:5a:c6:da:4a:38:54:fd:d8:d2:fc:04:91:0b: af:ae:77:76:47:9b:33:74:02:e0:70:6c:04:67:48:b4:ac:d1: af:ef:0c:3f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWXMSJDehH1JN7LgzcGS1p9ZRVa0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTVaFw0yNjA3MDMwNjUzMTVaMDMxMTAvBgNV BAMTKDBEMDI3NUIxNDU0Mjg4QjQ1RTJDNDI3M0IwNTU4OTNCREQxQjc5MjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSMCiyIcOSnTldXY2vbame46DU nUbPf5+G8NhgUJtuYM9mpCz1VqdyiR+MjCCBguIMsFeX883CB4m+ErE130M+fJnt Od5pSm0zQsWIu47ft79Y5FuPFmjHqdKNwAx5m+SexTnrSlYHXlab2VWhQLH7xr3l PkrDeM1i9dHQaa8nyaefLZzRkoVkA11t9vSaSoZsmefNsGj5AknWZsIlrOkkK7ub XMcPHdoOKk9x/U6rSYakOb4szuydjRa26DWLDgozoEPiGTVmIqWs6a39sIzdum2f w1delepHR7qWkf/ZBUEdolfkBnjrs/N4k396euF1EFUTpp1HJ1CQKk2Vdqe1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDQJ1sUVCiLReLEJzsFWJO90beSkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDMwDQYJKoZIhvcNAQELBQADggEBAIY+ VQlyaScM0wx3YjMoWpRltOFSRSjxRyQbhCFO7SdGPoybAArFGF3jD2T4VGLNDRAW nQPGKgealnB3IdjNZ3wPma9B6MzNOJktNY3HPToo7IdIOyhzf7YrBbfm1/rs0uTX u+mJgcbvt41FHcuCTE4U7/gO3izJ007vacp19vciJyeAhaPjMJhUyNbbAowfVVn2 xkpetHE8v7iUCQ2nnO7HrSwDceL48hdMqChFMGKSiG+YbdfXhx0zFegX0xBFWNoL 4PTnT5ecowJhPZwLCu+88zHnk9Ktav0Nhh5rWsbaSjhU/djS/ASRC6+ud3ZHmzN0 AuBwbARnSLSs0a/vDD8= -----END CERTIFICATE-----Generated at Sat Jul 5 04:05:56 2025 by rpki-client