$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200329.roa File: AS200329.roa (raw, json) Hash identifier: dQ2ihgoV9TJ+2b2btqUmMe7EZH+DETVeo2kAyxFDrww= Subject key identifier: AB:B5:B5:F2:75:66:C3:73:45:E8:67:D4:16:82:E0:57:C9:13:16:C5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7691D4B567C32384E5FB5DC011C3C425434950C7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200329.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 200329 IP address blocks: 2a0a:6040:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:91:d4:b5:67:c3:23:84:e5:fb:5d:c0:11:c3:c4:25:43:49:50:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=ABB5B5F27566C37345E867D41682E057C91316C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:07:35:56:08:49:90:6c:14:5a:e0:b7:09:dd: 9a:0d:7b:5a:5b:3e:1f:d5:cb:05:57:5f:52:bc:f6: ca:89:2a:56:68:52:aa:07:ec:1d:93:20:ff:68:a9: 81:f1:dd:3c:94:45:0b:4a:91:cd:f2:b7:45:5b:d5: d7:a6:dd:b2:1a:b2:5b:34:a9:79:8e:4d:48:35:bc: dd:e9:7d:d5:6c:6f:ec:b1:10:23:17:db:be:83:8b: a8:11:b8:86:37:8a:db:7d:52:c7:dc:6a:62:94:04: fe:aa:79:b7:0e:02:37:b5:1b:ab:7f:1d:97:8a:92: 33:11:d5:5e:cc:14:5d:3d:5a:c6:5d:a0:fb:df:f2: 66:92:fe:90:9f:1e:62:5d:49:62:7c:57:df:f4:67: d9:46:8e:17:99:7c:0d:11:38:3a:1b:4d:14:c2:66: 12:be:21:8a:93:e9:c0:90:38:31:26:e7:ad:56:4a: eb:f4:20:22:bc:a8:6f:dc:2d:b9:59:d9:6e:4f:75: 57:59:fe:aa:32:84:ba:7c:d8:ef:93:77:78:b3:d3: 3d:d0:82:73:48:8e:39:a6:1a:17:07:ec:f8:79:4a: 51:d7:12:f3:d8:c6:d0:0a:89:2e:55:2b:20:c4:ba: d4:ce:7f:f5:90:bf:6c:a8:a4:03:c6:63:30:a4:b9: f4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:B5:B5:F2:75:66:C3:73:45:E8:67:D4:16:82:E0:57:C9:13:16:C5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200329.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b00::/40 Signature Algorithm: sha256WithRSAEncryption df:f7:08:36:b3:cd:cc:54:47:ef:99:3e:69:66:6b:47:d0:17: f8:6f:fc:d2:2c:55:b3:6f:b0:04:1e:36:01:0b:f9:19:82:cf: fc:57:93:77:68:c1:a3:ff:71:e1:2c:c4:77:cf:50:55:a6:fb: 95:7f:8b:29:73:1c:70:da:02:5b:c0:d5:a6:5e:8e:08:74:d7: 75:fe:82:0d:48:bf:b1:e6:20:2a:c3:df:62:be:60:a5:8e:24: 1f:67:f3:87:07:b8:56:c4:b3:8b:31:b2:c7:58:82:d7:89:ac: 9e:73:af:9c:91:35:3b:a2:fd:c1:ee:c5:9c:07:34:87:39:e3: 88:3a:aa:20:9e:19:92:b9:e2:bc:50:51:53:12:12:db:11:04: 7e:2f:14:e5:19:ca:21:79:84:b1:dd:9d:c8:9e:a5:e5:88:56: 0b:f4:7b:26:e6:25:2e:65:0d:8d:52:52:9f:70:9d:31:6d:f6: 8f:5c:c5:16:58:35:6f:d4:f1:89:0c:c4:0f:fc:09:5a:39:11: 54:6b:f0:37:4c:c9:6d:b1:4c:18:c7:74:53:de:2d:64:e4:21: 03:e5:c2:86:64:a7:21:c1:5b:9d:00:06:2d:e2:ff:21:5a:0a: 4d:6f:a9:8b:41:06:e9:95:21:71:95:fb:a4:2a:ce:55:2a:54: 09:a9:ef:21 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdpHUtWfDI4Tl+13AEcPEJUNJUMcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKEFCQjVCNUYyNzU2NkMzNzM0NUU4NjdENDE2ODJFMDU3QzkxMzE2QzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNBzVWCEmQbBRa4LcJ3ZoNe1pb Ph/VywVXX1K89sqJKlZoUqoH7B2TIP9oqYHx3TyURQtKkc3yt0Vb1dem3bIasls0 qXmOTUg1vN3pfdVsb+yxECMX276Di6gRuIY3itt9UsfcamKUBP6qebcOAje1G6t/ HZeKkjMR1V7MFF09WsZdoPvf8maS/pCfHmJdSWJ8V9/0Z9lGjheZfA0RODobTRTC ZhK+IYqT6cCQODEm561WSuv0ICK8qG/cLblZ2W5PdVdZ/qoyhLp82O+Td3iz0z3Q gnNIjjmmGhcH7Ph5SlHXEvPYxtAKiS5VKyDEutTOf/WQv2yopAPGYzCkufRRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUq7W18nVmw3NF6GfUFoLgV8kTFsUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAswDQYJKoZIhvcNAQELBQADggEBAN/3 CDazzcxUR++ZPmlma0fQF/hv/NIsVbNvsAQeNgEL+RmCz/xXk3dowaP/ceEsxHfP UFWm+5V/iylzHHDaAlvA1aZejgh013X+gg1Iv7HmICrD32K+YKWOJB9n84cHuFbE s4sxssdYgteJrJ5zr5yRNTui/cHuxZwHNIc544g6qiCeGZK54rxQUVMSEtsRBH4v FOUZyiF5hLHdnciepeWIVgv0eybmJS5lDY1SUp9wnTFt9o9cxRZYNW/U8YkMxA/8 CVo5EVRr8DdMyW2xTBjHdFPeLWTkIQPlwoZkpyHBW50ABi3i/yFaCk1vqYtBBumV IXGV+6QqzlUqVAmp7yE= -----END CERTIFICATE-----Generated at Sat Jul 5 03:43:14 2025 by rpki-client