$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200307.roa File: AS200307.roa (raw, json) Hash identifier: nSQpDCdTdfpnyWMzJw+7cM67QBlfv5C5kbYzvZL4rqs= Subject key identifier: AC:2E:BB:44:A0:4E:7E:68:45:42:11:D4:B9:35:28:65:B4:14:58:A2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4A2AAFF74650E68846AF36DAF7D5F90A5717A2CD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200307.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 200307 IP address blocks: 2a0a:6040:ac00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:2a:af:f7:46:50:e6:88:46:af:36:da:f7:d5:f9:0a:57:17:a2:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=AC2EBB44A04E7E68454211D4B9352865B41458A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8e:0d:a1:85:38:84:23:54:68:09:91:80:38: a5:0d:2b:6d:92:3d:c2:82:55:dc:73:53:95:15:71: f0:19:dc:b9:1c:89:08:d4:d8:06:fb:ba:b9:d6:08: 2d:6e:82:15:da:47:ac:15:d7:18:07:a5:24:c1:0e: 97:b8:7b:91:d2:61:6d:8e:5e:09:c5:f3:5c:04:2b: 71:e0:15:73:c4:d7:c0:29:7c:91:a4:26:e9:dd:f7: 23:ae:99:86:ba:75:97:e5:46:77:08:f9:6d:04:db: 48:05:34:3b:65:d3:6b:46:1b:e2:53:5c:6c:c8:d2: 0d:0c:28:82:d2:30:11:4f:9b:5e:de:a2:cd:da:df: e0:2e:2e:21:a2:f0:72:48:e9:39:16:fe:28:84:48: 36:fd:a4:a4:c4:58:92:c1:2d:41:8e:ad:fc:83:56: ad:74:69:e1:b7:dc:6d:e4:dc:b2:19:fb:ee:69:a1: 15:36:6a:8d:48:b8:79:76:39:23:82:49:3e:d2:d2: 49:b2:ff:9f:27:8f:c2:2f:5b:2e:95:8e:85:4e:a3: 61:ee:73:21:37:a0:9e:d4:d1:36:be:70:d2:b8:26: 5e:c2:ab:7d:c9:fa:4b:40:49:e2:d7:34:12:fb:1d: 83:51:12:f3:3a:5d:b7:7f:7c:ac:5d:b9:ec:05:43: 9c:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2E:BB:44:A0:4E:7E:68:45:42:11:D4:B9:35:28:65:B4:14:58:A2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200307.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ac00::/40 Signature Algorithm: sha256WithRSAEncryption c5:dd:05:f0:d2:41:1d:9d:24:a0:6a:16:3a:4c:0f:98:9e:73: 3f:aa:7e:5f:19:46:4d:ad:fe:44:ec:23:d5:f4:41:16:8a:5b: c2:5a:7b:d4:f5:19:c0:5e:d6:1a:76:0d:21:07:02:38:06:c6: 1d:60:4e:84:8d:63:c9:e4:30:d6:92:18:2b:d4:35:c8:36:cf: 0b:15:d6:d1:22:c6:5f:ea:59:fa:e7:3d:30:cc:7a:30:4a:75: 9a:e1:04:ff:a3:9d:89:8c:3d:02:a0:fe:5a:18:a0:87:59:39: 9b:a3:8c:f2:a4:6b:e5:1d:bc:f4:91:6f:ff:22:00:d5:23:fe: ed:86:d2:f4:f1:be:50:8c:f4:7a:18:58:81:0b:2f:ef:63:87: ad:43:bd:e6:4f:15:3c:fb:fe:50:b1:65:7c:e7:d7:05:25:f7: 9b:97:6a:3b:c0:5d:25:29:d0:d0:7c:c7:a1:39:33:09:de:16: d9:01:a1:7f:df:27:32:db:b5:10:53:6c:b9:ee:ea:d4:43:ab: 1d:e9:ba:46:02:f8:91:fa:e5:4b:d1:ad:45:c2:04:9e:66:a4: 4a:ce:76:60:34:bb:1d:99:fb:11:a1:10:36:c1:3f:cb:c1:a8: 56:0e:ed:c4:d5:f9:a0:cb:84:9d:e0:54:7b:5c:d0:66:a6:a0: 51:c5:26:ea -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSiqv90ZQ5ohGrzba99X5ClcXos0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKEFDMkVCQjQ0QTA0RTdFNjg0NTQyMTFENEI5MzUyODY1QjQxNDU4QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVjg2hhTiEI1RoCZGAOKUNK22S PcKCVdxzU5UVcfAZ3LkciQjU2Ab7urnWCC1ughXaR6wV1xgHpSTBDpe4e5HSYW2O XgnF81wEK3HgFXPE18ApfJGkJund9yOumYa6dZflRncI+W0E20gFNDtl02tGG+JT XGzI0g0MKILSMBFPm17eos3a3+AuLiGi8HJI6TkW/iiESDb9pKTEWJLBLUGOrfyD Vq10aeG33G3k3LIZ++5poRU2ao1IuHl2OSOCST7S0kmy/58nj8IvWy6VjoVOo2Hu cyE3oJ7U0Ta+cNK4Jl7Cq33J+ktASeLXNBL7HYNREvM6Xbd/fKxduewFQ5xBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrC67RKBOfmhFQhHUuTUoZbQUWKIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKwwDQYJKoZIhvcNAQELBQADggEBAMXd BfDSQR2dJKBqFjpMD5iecz+qfl8ZRk2t/kTsI9X0QRaKW8Jae9T1GcBe1hp2DSEH AjgGxh1gToSNY8nkMNaSGCvUNcg2zwsV1tEixl/qWfrnPTDMejBKdZrhBP+jnYmM PQKg/loYoIdZOZujjPKka+UdvPSRb/8iANUj/u2G0vTxvlCM9HoYWIELL+9jh61D veZPFTz7/lCxZXzn1wUl95uXajvAXSUp0NB8x6E5MwneFtkBoX/fJzLbtRBTbLnu 6tRDqx3pukYC+JH65UvRrUXCBJ5mpErOdmA0ux2Z+xGhEDbBP8vBqFYO7cTV+aDL hJ3gVHtc0GamoFHFJuo= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:37 2025 by rpki-client