$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200335.roa File: AS200335.roa (raw, json) Hash identifier: BukW/IyrpQhyVOcLEujPo5Zvehn7H1IRchBZWoPpwdo= Subject key identifier: 3F:CC:1C:07:33:9D:D7:89:7D:93:FB:CC:B3:95:D8:1F:F0:B1:81:65 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 12E85CDF5C8E609A60C29296ED30786E0D6747D1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200335.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 200335 IP address blocks: 2a0a:6040:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:e8:5c:df:5c:8e:60:9a:60:c2:92:96:ed:30:78:6e:0d:67:47:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=3FCC1C07339DD7897D93FBCCB395D81FF0B18165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3b:21:71:4a:80:cd:68:1d:e1:fe:3b:2d:2c: 45:5e:52:3d:aa:70:74:a0:37:ee:b9:bd:07:2a:22: ed:da:b6:51:6e:a9:17:e3:87:ba:fa:0d:cf:e3:18: c5:02:41:1a:fd:3c:27:11:68:21:8e:e2:af:bf:e8: 41:95:51:fc:53:6c:5f:aa:4e:f3:dc:a0:09:69:ee: 45:6c:70:cb:99:10:bf:14:45:1a:36:83:36:5e:d6: de:6e:65:22:54:a5:09:4d:6e:dc:d5:14:64:7e:95: 24:4d:49:c6:50:00:fd:0e:67:ad:76:12:83:da:4a: 16:68:d7:5f:93:6a:ef:6b:f3:99:64:0d:03:52:7d: 2a:65:1e:3c:73:b6:43:7e:73:dd:2c:25:ff:8f:dd: 9f:4a:73:bb:bc:9a:8a:39:36:b4:b1:9f:c9:c2:27: c9:10:8a:c7:33:4b:47:21:c2:6a:a8:c8:ee:fd:c0: 55:26:e0:37:53:79:15:9e:d9:6e:b6:e5:42:36:82: 65:4b:1f:bb:76:f8:ea:2a:39:75:87:27:da:99:99: eb:db:b9:9c:45:62:a5:46:a0:f9:24:7c:26:86:dd: c8:0e:67:8c:5d:8e:7a:42:6d:6f:56:86:6b:16:ae: 2e:2f:81:cb:e9:1b:77:30:20:ec:ca:7a:04:e0:b0: 8e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:CC:1C:07:33:9D:D7:89:7D:93:FB:CC:B3:95:D8:1F:F0:B1:81:65 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3100::/40 Signature Algorithm: sha256WithRSAEncryption 6b:3b:b1:41:a2:66:f5:13:46:a2:66:89:e5:07:35:4b:0e:dd: 42:25:10:b9:03:c8:ec:b1:95:31:1b:44:ce:00:a8:1e:0e:a9: 7b:35:3b:5f:46:1d:94:cb:9a:2d:04:a7:ab:c2:62:65:75:78: 95:98:02:ad:67:b8:89:0a:6f:78:6c:23:cd:93:20:b3:2a:07: 00:9c:0f:04:a5:5e:15:07:f3:02:8b:85:5d:2f:bf:86:6a:ee: 75:34:d7:c2:95:00:c2:8c:a1:c1:ca:cd:cb:12:79:d6:e9:b1: d6:3b:26:57:0b:c6:2e:35:74:4e:36:dc:b9:f3:aa:ce:00:53: e2:9f:69:36:8d:28:a5:ac:69:4e:5e:21:1e:99:1c:f4:d8:2a: 62:5b:dd:e7:93:65:d4:fe:d3:70:6d:71:8a:cc:85:e7:69:80: a9:33:d0:e6:8e:24:01:ce:16:c7:a4:1a:fb:b0:b3:43:fc:73: 6e:33:a0:21:d2:79:98:24:95:90:36:00:0d:5f:91:97:1c:07: 4e:26:80:9b:ea:8d:66:ef:0f:51:75:7d:ff:d3:3a:b2:0c:86: ba:b3:7c:2c:d5:47:f6:64:b9:66:e6:1b:2c:0e:c8:1c:fb:12: 11:a5:d0:5b:62:30:91:ad:b7:7d:bd:2c:80:7c:e0:fc:33:51: 26:b1:e8:4a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEuhc31yOYJpgwpKW7TB4bg1nR9EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKDNGQ0MxQzA3MzM5REQ3ODk3RDkzRkJDQ0IzOTVEODFGRjBCMTgxNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5OyFxSoDNaB3h/jstLEVeUj2q cHSgN+65vQcqIu3atlFuqRfjh7r6Dc/jGMUCQRr9PCcRaCGO4q+/6EGVUfxTbF+q TvPcoAlp7kVscMuZEL8URRo2gzZe1t5uZSJUpQlNbtzVFGR+lSRNScZQAP0OZ612 EoPaShZo11+Tau9r85lkDQNSfSplHjxztkN+c90sJf+P3Z9Kc7u8moo5NrSxn8nC J8kQisczS0chwmqoyO79wFUm4DdTeRWe2W625UI2gmVLH7t2+OoqOXWHJ9qZmevb uZxFYqVGoPkkfCaG3cgOZ4xdjnpCbW9WhmsWri4vgcvpG3cwIOzKegTgsI67AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUP8wcBzOd14l9k/vMs5XYH/CxgWUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDEwDQYJKoZIhvcNAQELBQADggEBAGs7 sUGiZvUTRqJmieUHNUsO3UIlELkDyOyxlTEbRM4AqB4OqXs1O19GHZTLmi0Ep6vC YmV1eJWYAq1nuIkKb3hsI82TILMqBwCcDwSlXhUH8wKLhV0vv4Zq7nU018KVAMKM ocHKzcsSedbpsdY7JlcLxi41dE423Lnzqs4AU+KfaTaNKKWsaU5eIR6ZHPTYKmJb 3eeTZdT+03BtcYrMhedpgKkz0OaOJAHOFsekGvuws0P8c24zoCHSeZgklZA2AA1f kZccB04mgJvqjWbvD1F1ff/TOrIMhrqzfCzVR/ZkuWbmGywOyBz7EhGl0FtiMJGt t329LIB84PwzUSax6Eo= -----END CERTIFICATE-----Generated at Sat Jul 5 03:58:44 2025 by rpki-client