$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200536.roa File: AS200536.roa (raw, json) Hash identifier: 8Y/iwyH8nEGR+XwlULwoo40A3ibpiKMMBSTG9mssnU4= Subject key identifier: 97:F4:36:E7:F3:F4:F4:E4:38:F3:A5:55:1A:37:C5:17:CF:70:15:95 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2D5948307FE9D456BD3998BE4EDF2B0E15296BBC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200536.roa Signing time: Fri 04 Jul 2025 06:53:09 +0000 ROA not before: Fri 04 Jul 2025 06:48:09 +0000 ROA not after: Fri 03 Jul 2026 06:53:09 +0000 asID: 200536 IP address blocks: 2a0a:6040:a900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:59:48:30:7f:e9:d4:56:bd:39:98:be:4e:df:2b:0e:15:29:6b:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:09 2025 GMT Not After : Jul 3 06:53:09 2026 GMT Subject: CN=97F436E7F3F4F4E438F3A5551A37C517CF701595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:e8:ce:fe:29:0f:90:4a:f8:4c:22:c3:48:27: 24:eb:dc:a3:66:d1:5a:73:65:7e:f2:f0:75:13:9a: 0d:4f:93:0c:08:8f:9f:60:ce:c5:6e:66:cc:e6:6c: b2:2c:a9:c5:94:d5:cb:9e:ed:6d:c8:cc:37:c7:44: 0f:a4:5c:17:42:93:7d:95:8a:63:14:33:13:a5:a9: fe:f8:9b:71:c3:81:8c:35:2d:83:af:bb:eb:e2:34: 42:49:bf:63:38:be:cc:68:0c:7c:a6:ab:90:1e:94: 31:fd:3a:9e:41:fc:03:db:ca:86:cb:3a:d5:37:c7: 56:a2:0f:a2:37:35:cc:be:77:62:14:5c:cf:4e:10: 7d:35:56:88:c9:b7:bf:d6:c4:3a:03:d1:22:c7:02: 0d:31:b4:5c:bc:69:2d:42:7f:b1:b2:27:b9:fa:9b: d7:d8:bd:15:65:0c:52:35:c6:11:0a:3e:75:5b:36: 2c:72:c6:df:ae:d2:25:9b:7d:67:ae:be:91:85:97: 6b:46:fd:13:54:31:a2:ab:04:46:f9:b2:ef:56:b4: 17:9f:4a:6c:2c:e1:fe:12:b6:67:1c:29:75:91:29: 60:d2:af:f3:30:95:af:57:f8:9b:cd:12:16:a1:37: 65:c5:a0:02:9c:b2:07:b3:1d:45:b5:3c:29:d7:c4: 3d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F4:36:E7:F3:F4:F4:E4:38:F3:A5:55:1A:37:C5:17:CF:70:15:95 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200536.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a900::/40 Signature Algorithm: sha256WithRSAEncryption 77:6c:36:07:f7:de:f5:2d:e8:28:19:8a:63:27:eb:82:a2:d0: b8:3f:e1:7f:ff:9b:5c:d8:18:c2:72:6a:41:3f:9b:18:0b:b0: b5:ff:5c:84:b4:0b:7f:a2:17:cd:21:a4:7e:00:32:10:b5:d2: d4:f1:24:9a:09:dc:37:1f:71:63:01:bf:54:80:c0:a5:27:05: 2e:63:7e:39:1b:37:15:50:99:7d:95:d2:4c:cc:09:6d:20:88: 8e:70:40:ad:2d:d9:33:6b:3f:4a:31:e9:19:e5:7e:0f:ba:c6: 8c:ff:6b:61:fe:c9:01:f2:b1:d3:22:d8:46:fb:ef:3a:4a:30: f0:f1:c9:42:35:b5:a4:a9:38:88:ad:8d:7c:02:11:a4:f5:e6: ac:54:78:dc:5f:66:4d:d8:50:cc:54:fe:8e:19:72:50:e9:a4: 47:6c:03:75:a2:96:f5:73:c5:0b:3a:6e:8c:f0:a0:fd:15:48: 09:58:05:fe:0e:d5:6e:65:a3:01:cc:a5:20:8a:20:23:1e:d8: 1c:b8:d9:cd:1c:4b:79:73:60:f7:1b:54:36:2f:60:a6:a4:ff: 22:a1:16:2e:10:27:37:e7:0a:70:43:fb:98:67:3e:17:ad:f8: 9b:67:28:6c:15:54:1c:c4:84:fa:cb:13:d6:e5:79:42:d7:11: 18:d6:19:27 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULVlIMH/p1Fa9OZi+Tt8rDhUpa7wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDlaFw0yNjA3MDMwNjUzMDlaMDMxMTAvBgNV BAMTKDk3RjQzNkU3RjNGNEY0RTQzOEYzQTU1NTFBMzdDNTE3Q0Y3MDE1OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv6M7+KQ+QSvhMIsNIJyTr3KNm 0VpzZX7y8HUTmg1PkwwIj59gzsVuZszmbLIsqcWU1cue7W3IzDfHRA+kXBdCk32V imMUMxOlqf74m3HDgYw1LYOvu+viNEJJv2M4vsxoDHymq5AelDH9Op5B/APbyobL OtU3x1aiD6I3Ncy+d2IUXM9OEH01VojJt7/WxDoD0SLHAg0xtFy8aS1Cf7GyJ7n6 m9fYvRVlDFI1xhEKPnVbNixyxt+u0iWbfWeuvpGFl2tG/RNUMaKrBEb5su9WtBef Smws4f4StmccKXWRKWDSr/Mwla9X+JvNEhahN2XFoAKcsgezHUW1PCnXxD09AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUl/Q25/P09OQ486VVGjfFF89wFZUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKkwDQYJKoZIhvcNAQELBQADggEBAHds Ngf33vUt6CgZimMn64Ki0Lg/4X//m1zYGMJyakE/mxgLsLX/XIS0C3+iF80hpH4A MhC10tTxJJoJ3DcfcWMBv1SAwKUnBS5jfjkbNxVQmX2V0kzMCW0giI5wQK0t2TNr P0ox6Rnlfg+6xoz/a2H+yQHysdMi2Eb77zpKMPDxyUI1taSpOIitjXwCEaT15qxU eNxfZk3YUMxU/o4ZclDppEdsA3WilvVzxQs6bozwoP0VSAlYBf4O1W5lowHMpSCK ICMe2By42c0cS3lzYPcbVDYvYKak/yKhFi4QJzfnCnBD+5hnPhet+JtnKGwVVBzE hPrLE9bleULXERjWGSc= -----END CERTIFICATE-----Generated at Sat Jul 5 06:06:18 2025 by rpki-client