$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200535.roa File: AS200535.roa (raw, json) Hash identifier: DdZA4VsurpRA33a06FgUQySYtPwZkyL6wJVi6lCkA1Y= Subject key identifier: 44:9F:AC:31:EF:20:A8:8D:A6:5D:51:B8:9B:12:87:37:9B:69:AB:3F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7102EE18025B227F1811C792A8878C4E4703C88D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200535.roa Signing time: Fri 04 Jul 2025 06:52:56 +0000 ROA not before: Fri 04 Jul 2025 06:47:56 +0000 ROA not after: Fri 03 Jul 2026 06:52:56 +0000 asID: 200535 IP address blocks: 2a0a:6040:500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:02:ee:18:02:5b:22:7f:18:11:c7:92:a8:87:8c:4e:47:03:c8:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:56 2025 GMT Not After : Jul 3 06:52:56 2026 GMT Subject: CN=449FAC31EF20A88DA65D51B89B1287379B69AB3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b4:b0:99:99:f2:5a:79:53:2a:86:8e:1f:09: ee:ed:1b:33:12:fb:9b:96:20:ff:04:ea:01:c4:eb: 17:7b:ca:68:33:ef:d1:8a:e3:ac:74:f2:35:cc:9b: ef:0f:04:b5:2c:d7:4a:17:e9:d7:b8:79:02:37:66: 08:92:dd:38:a3:5f:34:d9:f5:cc:79:a1:65:7d:a2: 31:9c:44:8b:2b:72:f1:7e:4c:08:19:53:cb:17:84: 1c:58:5e:f2:f2:8c:96:d2:38:7d:3b:9e:4a:95:d7: ca:a8:99:3d:23:1d:b8:24:d9:a2:81:f0:e4:3a:24: 5a:48:4b:53:d4:6a:26:53:f1:4d:46:e6:dd:fa:fc: ee:03:d5:ad:94:38:03:10:ea:1e:97:e9:72:99:c0: 81:15:1c:a3:fc:20:c2:fe:3c:f5:08:8f:4a:82:0a: d6:84:d3:1f:e1:68:d9:76:ea:de:eb:b7:74:7d:0b: e1:f7:0f:2e:9d:d0:a1:8a:58:57:b3:42:c0:de:a1: cc:4a:19:21:4e:e8:4f:66:ea:ac:70:b2:e9:4e:6f: ed:c2:59:97:8d:43:52:c3:0a:db:77:24:f4:59:2a: 9d:a1:fa:89:4a:84:88:57:46:a7:48:c1:99:b3:95: 7d:7f:60:2d:82:08:2d:c9:33:c8:0e:54:54:7b:e2: 13:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:9F:AC:31:EF:20:A8:8D:A6:5D:51:B8:9B:12:87:37:9B:69:AB:3F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:500::/40 Signature Algorithm: sha256WithRSAEncryption 8e:b5:5d:42:08:e4:1f:79:06:e5:db:7c:95:31:74:86:a9:9d: 19:12:00:41:29:30:cc:53:0b:c7:8d:ea:87:20:6b:ef:b1:bb: 37:3b:bb:82:15:88:60:1d:6a:60:37:55:28:88:39:d1:c6:38: 37:f7:c6:8a:57:b4:c7:01:e3:37:44:eb:e5:f1:70:dd:81:4f: 4c:8b:3d:1e:f6:56:b0:04:38:ce:09:b4:9a:d9:8a:b8:78:f4: af:f9:33:ea:38:03:7d:6b:d6:6c:21:06:46:ca:4c:37:ca:fe: e1:9f:f9:31:d0:83:1b:62:df:e2:a2:b9:0d:90:b9:e0:f1:a0: 62:a5:26:f2:8e:2d:5e:a8:c0:3d:85:aa:68:90:8b:7b:4f:fe: 41:2d:6d:df:e3:d7:d5:e8:f9:71:81:b8:49:68:18:f2:89:00: 4a:2a:3d:0f:32:e2:4a:0a:ef:ff:ab:65:c4:a9:d2:bf:fa:4d: db:30:03:b0:fa:2f:5a:7c:fa:b6:1f:92:11:c8:f1:6e:71:77: d8:ef:70:8a:19:f9:de:06:d0:cf:0d:d6:9b:eb:fd:5e:14:f7: 16:08:c2:c1:5f:58:33:b8:89:ba:42:e7:fd:58:cf:36:5b:88: a2:f8:b0:3c:11:7f:58:14:18:5e:a6:d9:ca:7d:82:b9:20:73: 84:38:a3:48 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcQLuGAJbIn8YEceSqIeMTkcDyI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTZaFw0yNjA3MDMwNjUyNTZaMDMxMTAvBgNV BAMTKDQ0OUZBQzMxRUYyMEE4OERBNjVENTFCODlCMTI4NzM3OUI2OUFCM0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCktLCZmfJaeVMqho4fCe7tGzMS +5uWIP8E6gHE6xd7ymgz79GK46x08jXMm+8PBLUs10oX6de4eQI3ZgiS3TijXzTZ 9cx5oWV9ojGcRIsrcvF+TAgZU8sXhBxYXvLyjJbSOH07nkqV18qomT0jHbgk2aKB 8OQ6JFpIS1PUaiZT8U1G5t36/O4D1a2UOAMQ6h6X6XKZwIEVHKP8IML+PPUIj0qC CtaE0x/haNl26t7rt3R9C+H3Dy6d0KGKWFezQsDeocxKGSFO6E9m6qxwsulOb+3C WZeNQ1LDCtt3JPRZKp2h+olKhIhXRqdIwZmzlX1/YC2CCC3JM8gOVFR74hPHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURJ+sMe8gqI2mXVG4mxKHN5tpqz8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAUwDQYJKoZIhvcNAQELBQADggEBAI61 XUII5B95BuXbfJUxdIapnRkSAEEpMMxTC8eN6ocga++xuzc7u4IViGAdamA3VSiI OdHGODf3xopXtMcB4zdE6+XxcN2BT0yLPR72VrAEOM4JtJrZirh49K/5M+o4A31r 1mwhBkbKTDfK/uGf+THQgxti3+KiuQ2QueDxoGKlJvKOLV6owD2FqmiQi3tP/kEt bd/j19Xo+XGBuEloGPKJAEoqPQ8y4koK7/+rZcSp0r/6TdswA7D6L1p8+rYfkhHI 8W5xd9jvcIoZ+d4G0M8N1pvr/V4U9xYIwsFfWDO4ibpC5/1YzzZbiKL4sDwRf1gU GF6m2cp9grkgc4Q4o0g= -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:34 2025 by rpki-client