$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200268.roa File: AS200268.roa (raw, json) Hash identifier: 45kmZx7L4cU7J8qjSPDcbHuOaqn6nmX4vi+3+xO48J8= Subject key identifier: 17:31:37:D6:01:3D:9E:D0:D9:44:B1:5E:12:33:20:47:71:4A:83:26 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3330D18C4297CBBD40B663718373FB70B665DA62 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200268.roa Signing time: Fri 04 Jul 2025 06:53:04 +0000 ROA not before: Fri 04 Jul 2025 06:48:04 +0000 ROA not after: Fri 03 Jul 2026 06:53:04 +0000 asID: 200268 IP address blocks: 2a0a:6040:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:30:d1:8c:42:97:cb:bd:40:b6:63:71:83:73:fb:70:b6:65:da:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:04 2025 GMT Not After : Jul 3 06:53:04 2026 GMT Subject: CN=173137D6013D9ED0D944B15E12332047714A8326 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e1:cb:8a:b1:08:80:6b:4a:53:46:b7:a0:a3: b8:09:1b:cb:d1:87:0c:61:bb:d7:a3:41:94:e6:8e: 38:da:4f:73:82:32:81:f6:f3:da:e2:2c:d3:5f:c1: a7:fd:09:88:2b:90:fc:4c:6f:bd:bc:94:c7:76:ed: 16:aa:70:53:21:fb:1c:76:2c:5f:ec:cd:35:32:0c: 92:a3:db:65:52:5e:a9:84:5f:51:99:1d:12:ff:a2: 8f:36:f6:02:bc:79:cb:dd:66:db:1a:b5:b4:c6:7a: 6c:54:99:c1:ab:d2:4c:06:6c:b3:b2:af:c7:03:ca: 9e:2f:50:ce:63:46:0a:a8:57:18:3f:fb:f8:52:6d: 4b:3b:06:51:31:f8:8b:3e:9c:fa:16:04:ec:8b:e3: 08:40:59:42:34:e7:d5:80:26:60:0f:99:1c:53:a6: 43:33:1a:e1:ac:52:e1:06:c5:19:ac:16:30:81:69: 1c:db:40:5b:c4:8d:17:68:c6:60:44:10:0a:64:47: 47:f6:15:1f:33:bd:b0:3e:5c:e8:61:00:6f:03:f8: f9:28:89:87:5f:09:9e:da:79:bf:3c:19:22:9e:f2: c9:d1:38:42:54:09:24:4f:33:b1:2d:7b:f1:49:09: 0a:c1:b1:da:80:33:5f:11:c4:09:4a:25:b4:5f:b1: e4:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:31:37:D6:01:3D:9E:D0:D9:44:B1:5E:12:33:20:47:71:4A:83:26 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200268.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 12:0d:ab:de:40:b6:6e:1a:cd:67:89:7a:9a:4b:0c:8a:72:4f: f6:d9:9a:4a:15:dd:d2:a5:c7:09:a8:b2:bc:01:78:f1:77:4a: 46:a1:ce:fb:fc:33:36:0c:fd:d0:e5:a2:a6:2a:21:e6:21:6f: 3d:c9:6e:70:b2:68:e9:2f:d2:2e:a9:6e:a8:52:42:86:ec:db: 5d:0b:5b:08:36:9b:dc:1f:da:e4:28:84:11:56:cf:94:82:8d: bf:0e:8a:34:1b:20:16:40:88:05:08:5a:21:87:40:75:6e:f9: ac:65:ac:c1:07:b1:61:61:e2:2b:97:e7:a5:1d:21:d3:b5:c3: ce:e4:15:8a:84:d7:c6:92:97:f8:d3:45:03:01:d6:1c:db:e5: 42:69:64:c6:69:97:46:e7:2e:1e:66:2c:dc:5e:dc:86:ee:09: c8:c7:6f:b4:4b:55:22:b2:1d:8d:d3:68:de:90:14:3c:bd:95: e0:00:55:b3:fc:7e:f6:ad:71:8a:0b:ee:95:f7:d4:8e:19:47: 22:2f:c8:47:69:00:b6:76:f0:e8:a8:dc:5d:fb:71:cd:9c:a4: c7:4e:77:f2:85:3a:f4:24:d1:06:dd:69:3d:5a:f8:13:be:98: a0:2b:27:76:0f:93:f2:0f:c2:b7:e0:bd:df:b1:2a:6e:77:3d: 85:47:3f:87 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMzDRjEKXy71AtmNxg3P7cLZl2mIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDRaFw0yNjA3MDMwNjUzMDRaMDMxMTAvBgNV BAMTKDE3MzEzN0Q2MDEzRDlFRDBEOTQ0QjE1RTEyMzMyMDQ3NzE0QTgzMjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC44cuKsQiAa0pTRrego7gJG8vR hwxhu9ejQZTmjjjaT3OCMoH289riLNNfwaf9CYgrkPxMb728lMd27RaqcFMh+xx2 LF/szTUyDJKj22VSXqmEX1GZHRL/oo829gK8ecvdZtsatbTGemxUmcGr0kwGbLOy r8cDyp4vUM5jRgqoVxg/+/hSbUs7BlEx+Is+nPoWBOyL4whAWUI059WAJmAPmRxT pkMzGuGsUuEGxRmsFjCBaRzbQFvEjRdoxmBEEApkR0f2FR8zvbA+XOhhAG8D+Pko iYdfCZ7aeb88GSKe8snROEJUCSRPM7Ete/FJCQrBsdqAM18RxAlKJbRfseTFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFzE31gE9ntDZRLFeEjMgR3FKgyYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBswDQYJKoZIhvcNAQELBQADggEBABIN q95Atm4azWeJeppLDIpyT/bZmkoV3dKlxwmosrwBePF3Skahzvv8MzYM/dDloqYq IeYhbz3JbnCyaOkv0i6pbqhSQobs210LWwg2m9wf2uQohBFWz5SCjb8OijQbIBZA iAUIWiGHQHVu+axlrMEHsWFh4iuX56UdIdO1w87kFYqE18aSl/jTRQMB1hzb5UJp ZMZpl0bnLh5mLNxe3IbuCcjHb7RLVSKyHY3TaN6QFDy9leAAVbP8fvatcYoL7pX3 1I4ZRyIvyEdpALZ28Oio3F37cc2cpMdOd/KFOvQk0QbdaT1a+BO+mKArJ3YPk/IP wrfgvd+xKm53PYVHP4c= -----END CERTIFICATE-----Generated at Sat Jul 5 06:08:31 2025 by rpki-client