$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200326.roa File: AS200326.roa (raw, json) Hash identifier: jlKj2HmgPuM/oYM7CyzS4UDvgJOGBy7583R+n/3g/WQ= Subject key identifier: E0:38:EA:7E:8D:A8:80:A2:AF:14:D0:22:8E:BA:5E:E6:00:B1:48:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4625126EB9118B95452DFA2AA1F49A1D1354D812 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200326.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 200326 IP address blocks: 2a0a:6040:a500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:25:12:6e:b9:11:8b:95:45:2d:fa:2a:a1:f4:9a:1d:13:54:d8:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=E038EA7E8DA880A2AF14D0228EBA5EE600B14893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e8:59:a6:80:9b:32:d1:ad:1b:10:bb:ad:9c: 1d:65:c8:26:78:da:86:2c:df:48:ed:9e:b9:36:d2: 60:2e:de:31:ee:d5:81:1f:41:ba:cb:ca:bc:70:28: dc:fb:7e:23:76:cd:36:6b:bd:8e:4a:1b:0e:bb:07: 2d:73:a3:40:2a:e4:97:59:b5:80:17:05:ae:34:f7: c5:d7:25:16:b1:3f:fb:60:f3:e6:18:a0:80:07:44: 8c:44:f8:3a:a8:6b:30:02:0a:03:64:ed:8c:08:91: dd:be:d0:c7:48:8b:01:34:61:a7:7d:24:57:a2:33: f0:f3:22:23:90:88:09:5b:2d:11:0a:2f:14:2d:08: 8f:59:4d:aa:e6:db:56:ed:0f:3a:aa:8c:5a:bc:22: ab:da:21:de:7d:63:26:65:1e:00:7e:c6:16:14:cf: 59:f6:cc:98:50:61:c9:b5:fa:73:84:f7:48:e8:93: cf:04:46:55:b9:34:71:06:a3:8f:fa:2f:65:81:24: 48:86:ab:d3:34:2a:35:90:2a:6c:a8:b0:72:10:ee: ec:79:e9:b1:a7:83:24:8c:d8:eb:7c:8a:e8:86:5d: 86:f6:4f:1c:53:ac:ac:38:b4:8a:9e:ef:a2:1c:6d: af:ee:0d:90:92:d6:3c:62:e9:80:67:54:cc:89:77: 2a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:38:EA:7E:8D:A8:80:A2:AF:14:D0:22:8E:BA:5E:E6:00:B1:48:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a500::/40 Signature Algorithm: sha256WithRSAEncryption 9a:2d:5e:17:11:df:e8:22:96:8c:84:e2:10:48:1c:11:2f:c6: c9:39:3f:ed:d5:55:2d:a9:b1:20:63:65:5d:09:3b:80:cf:49: 30:3b:8d:34:68:67:2e:9e:45:69:da:90:41:13:ed:4f:bb:82: f2:e6:c2:e8:60:b4:59:8c:8d:95:07:6a:e7:4d:b2:80:53:89: 30:5a:64:06:df:89:3f:0c:6d:94:35:f1:4a:cb:b0:c4:8c:89: 6e:5f:4d:10:2d:7a:f5:71:4a:2e:18:0a:d2:d1:76:9f:b1:4d: df:d9:af:fc:0b:ce:ff:19:17:e8:b0:b2:bd:c3:04:13:92:7c: eb:80:66:1a:a7:1c:0a:b7:a7:93:5e:68:6b:3d:03:c2:69:00: 32:93:ae:29:b9:83:02:00:18:ff:ef:c3:35:67:5c:b8:35:08: f1:ba:89:ac:51:09:13:51:ec:ff:a6:20:4b:e2:09:37:df:59: d0:7b:d6:8c:80:47:d6:6a:40:f4:e2:71:fe:cf:df:2e:90:11: 82:b2:5c:4a:6b:67:88:90:0a:f1:59:23:32:84:13:33:bd:aa: 8b:5a:dc:d7:81:36:c6:5e:be:26:96:4f:91:bc:78:60:ee:21: 17:78:05:45:93:8a:93:e1:d5:ea:68:ff:0e:7c:1e:e4:95:61: 75:83:ed:0e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURiUSbrkRi5VFLfoqofSaHRNU2BIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKEUwMzhFQTdFOERBODgwQTJBRjE0RDAyMjhFQkE1RUU2MDBCMTQ4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDg6FmmgJsy0a0bELutnB1lyCZ4 2oYs30jtnrk20mAu3jHu1YEfQbrLyrxwKNz7fiN2zTZrvY5KGw67By1zo0Aq5JdZ tYAXBa4098XXJRaxP/tg8+YYoIAHRIxE+DqoazACCgNk7YwIkd2+0MdIiwE0Yad9 JFeiM/DzIiOQiAlbLREKLxQtCI9ZTarm21btDzqqjFq8IqvaId59YyZlHgB+xhYU z1n2zJhQYcm1+nOE90jok88ERlW5NHEGo4/6L2WBJEiGq9M0KjWQKmyosHIQ7ux5 6bGngySM2Ot8iuiGXYb2TxxTrKw4tIqe76Icba/uDZCS1jxi6YBnVMyJdyo/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4Djqfo2ogKKvFNAijrpe5gCxSJMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKUwDQYJKoZIhvcNAQELBQADggEBAJot XhcR3+giloyE4hBIHBEvxsk5P+3VVS2psSBjZV0JO4DPSTA7jTRoZy6eRWnakEET 7U+7gvLmwuhgtFmMjZUHaudNsoBTiTBaZAbfiT8MbZQ18UrLsMSMiW5fTRAtevVx Si4YCtLRdp+xTd/Zr/wLzv8ZF+iwsr3DBBOSfOuAZhqnHAq3p5NeaGs9A8JpADKT rim5gwIAGP/vwzVnXLg1CPG6iaxRCRNR7P+mIEviCTffWdB71oyAR9ZqQPTicf7P 3y6QEYKyXEprZ4iQCvFZIzKEEzO9qota3NeBNsZeviaWT5G8eGDuIRd4BUWTipPh 1epo/w58HuSVYXWD7Q4= -----END CERTIFICATE-----Generated at Sat Jul 5 03:47:28 2025 by rpki-client