$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200557.roa File: AS200557.roa (raw, json) Hash identifier: tkLH66BGPilEmDpq5/h5YLyYipLUFpyo/JGLhazgNOY= Subject key identifier: 38:71:DD:66:8C:80:AC:77:AF:9F:1C:B7:3F:F0:FD:0D:E3:74:38:B5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 63C97C971A7A02C0D109E125D3F00C118C7DBEE5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200557.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 200557 IP address blocks: 2a0a:6040:1400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c9:7c:97:1a:7a:02:c0:d1:09:e1:25:d3:f0:0c:11:8c:7d:be:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=3871DD668C80AC77AF9F1CB73FF0FD0DE37438B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:58:2d:a2:d8:8b:c7:33:4a:67:62:8a:34:e4: 29:a7:85:d2:98:2e:52:77:3d:35:be:59:0b:42:23: a3:f6:66:22:f7:05:a6:df:c1:c2:00:9b:d6:e1:e7: a1:be:8d:7d:68:3a:1b:fb:61:d4:4e:93:cb:77:d2: d6:5a:ba:fb:75:de:f6:47:25:c4:27:73:f1:64:74: 08:43:b1:ef:ff:be:a7:80:68:9e:67:59:c8:af:c5: 5c:f7:c9:db:a6:c4:ef:3b:c6:65:40:ec:9a:15:a7: 5a:76:ab:78:e0:cd:68:41:b6:3c:45:59:e6:1a:26: 9d:10:de:a8:bc:0a:55:e8:1d:ba:64:7d:75:d4:3a: e1:5a:ea:38:16:17:24:81:6d:4e:c4:7b:ab:40:1f: 6d:48:5d:c6:ac:0b:6a:be:c3:a6:6f:9c:75:15:5f: ec:98:15:b4:5d:fe:7a:d1:75:0d:96:80:df:60:99: 27:ce:af:fb:29:f5:4a:61:d2:a3:96:1c:96:cc:99: 37:df:85:2c:f1:77:c0:24:81:06:f7:74:b6:f6:11: 54:e1:03:eb:ab:3a:aa:0b:3f:57:a7:4a:4a:3e:e3: 33:22:be:99:8c:83:d8:87:59:1b:3e:33:6a:e7:e4: 5a:ed:c7:49:ad:74:a4:11:94:8c:eb:55:8b:de:0b: b7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:71:DD:66:8C:80:AC:77:AF:9F:1C:B7:3F:F0:FD:0D:E3:74:38:B5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200557.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1400::/40 Signature Algorithm: sha256WithRSAEncryption 0c:00:86:85:b8:f7:50:24:9c:b3:1b:7b:34:a0:8c:b9:ac:e6: 3b:12:10:f8:a4:ac:22:a8:fc:70:5b:79:b7:de:d6:1a:69:e6: ad:0a:9a:6d:e9:98:5e:37:99:53:85:21:d1:00:52:9a:da:9a: 16:c3:f1:35:5a:a6:3a:19:bb:45:e9:31:b9:7d:5e:a6:80:17: 7a:81:69:5a:71:cf:bc:b7:6c:69:6d:26:3c:67:64:63:97:8c: 6f:b5:f9:fc:94:b0:0d:fc:3e:15:27:fc:bd:f1:47:fd:f0:bc: 6a:5b:95:10:7c:fc:b9:7a:15:ca:45:f2:68:9d:69:6c:37:c6: e3:53:f8:79:12:79:62:f7:63:4e:c6:5c:99:8e:38:48:f7:a2: f0:80:ac:4a:c0:93:69:ee:17:ae:1a:38:36:14:fb:8a:ba:ea: 66:67:a0:c9:b6:e5:b6:ef:35:c9:3e:e8:88:42:6f:4e:06:40: e5:f8:da:59:b5:11:34:89:53:eb:df:1b:31:a7:cb:8a:83:0e: eb:64:b8:fa:1c:14:03:0c:20:c8:57:3e:43:4e:a5:ef:23:bd: 77:61:f7:3f:2a:a6:37:68:78:34:9a:e3:c0:f4:13:1d:1a:37: 6a:bb:f8:e0:53:c1:88:64:6d:38:0e:60:0f:46:91:b3:64:36: a2:49:97:ea -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUY8l8lxp6AsDRCeEl0/AMEYx9vuUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDM4NzFERDY2OEM4MEFDNzdBRjlGMUNCNzNGRjBGRDBERTM3NDM4QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQWC2i2IvHM0pnYoo05CmnhdKY LlJ3PTW+WQtCI6P2ZiL3BabfwcIAm9bh56G+jX1oOhv7YdROk8t30tZauvt13vZH JcQnc/FkdAhDse//vqeAaJ5nWcivxVz3ydumxO87xmVA7JoVp1p2q3jgzWhBtjxF WeYaJp0Q3qi8ClXoHbpkfXXUOuFa6jgWFySBbU7Ee6tAH21IXcasC2q+w6ZvnHUV X+yYFbRd/nrRdQ2WgN9gmSfOr/sp9Uph0qOWHJbMmTffhSzxd8AkgQb3dLb2EVTh A+urOqoLP1enSko+4zMivpmMg9iHWRs+M2rn5Frtx0mtdKQRlIzrVYveC7dlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOHHdZoyArHevnxy3P/D9DeN0OLUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBQwDQYJKoZIhvcNAQELBQADggEBAAwA hoW491AknLMbezSgjLms5jsSEPikrCKo/HBbebfe1hpp5q0Kmm3pmF43mVOFIdEA UpramhbD8TVapjoZu0XpMbl9XqaAF3qBaVpxz7y3bGltJjxnZGOXjG+1+fyUsA38 PhUn/L3xR/3wvGpblRB8/Ll6FcpF8midaWw3xuNT+HkSeWL3Y07GXJmOOEj3ovCA rErAk2nuF64aODYU+4q66mZnoMm25bbvNck+6IhCb04GQOX42lm1ETSJU+vfGzGn y4qDDutkuPocFAMMIMhXPkNOpe8jvXdh9z8qpjdoeDSa48D0Ex0aN2q7+OBTwYhk bTgOYA9GkbNkNqJJl+o= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:51 2025 by rpki-client