$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200558.roa File: AS200558.roa (raw, json) Hash identifier: gLPxwthV1fWKJHKUj8ScaLURYvC4wHfYpTc1IUCIQdM= Subject key identifier: FC:3D:86:65:52:7D:19:CB:D9:F2:48:21:41:DA:87:77:30:08:4B:C3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2F850348471CA1416148310F5E236790E3DE41CD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200558.roa Signing time: Fri 04 Jul 2025 06:53:23 +0000 ROA not before: Fri 04 Jul 2025 06:48:23 +0000 ROA not after: Fri 03 Jul 2026 06:53:23 +0000 asID: 200558 IP address blocks: 2a0a:6040:a700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:85:03:48:47:1c:a1:41:61:48:31:0f:5e:23:67:90:e3:de:41:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:23 2025 GMT Not After : Jul 3 06:53:23 2026 GMT Subject: CN=FC3D8665527D19CBD9F2482141DA877730084BC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:91:c1:db:22:3e:1d:d2:23:84:31:c5:cc: d6:96:33:fc:81:9b:ae:3a:93:31:82:a1:5b:b8:ac: 63:9c:34:da:ab:5c:4c:ed:78:eb:9b:ce:ce:1c:cc: c4:df:20:24:4f:41:5e:74:3a:57:c2:ae:ac:6c:6f: de:42:c4:9f:20:a1:46:a4:4a:fb:d1:a9:ea:34:b0: 72:36:8d:13:9a:64:cd:57:de:5e:cc:26:c6:58:a1: 9b:73:a5:9b:ed:83:29:0d:02:4a:69:c7:40:1b:55: 32:86:6c:d8:01:22:f3:86:3d:e3:a7:a0:3b:6d:a1: eb:37:54:74:d9:b1:28:f4:41:9e:be:b5:b1:07:4d: 84:97:f1:90:fa:c3:25:8a:56:31:a7:cf:e2:e8:c5: 85:c6:93:27:39:ed:50:ee:de:fb:4c:a5:a9:b7:c4: 14:db:d7:fc:c9:a2:34:8c:8c:51:bd:81:86:31:4c: 55:e6:46:c5:e3:00:70:9e:e6:58:fb:b7:61:e1:6c: 0d:fd:1e:90:79:f4:e5:b6:69:a1:28:0c:20:de:ad: 4c:0c:80:15:6c:30:ad:5e:28:57:8f:6f:66:ef:6a: c3:fd:e6:ef:b1:28:bb:da:0b:05:bf:aa:90:3c:e6: c0:fe:47:56:e0:22:0d:1f:66:67:33:57:06:f3:01: d3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:3D:86:65:52:7D:19:CB:D9:F2:48:21:41:DA:87:77:30:08:4B:C3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200558.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a700::/40 Signature Algorithm: sha256WithRSAEncryption ac:73:de:46:38:e0:f2:1d:d0:c9:f3:5a:38:51:82:f4:42:5a: 62:e4:06:d8:8f:38:de:90:cb:aa:e0:b7:b8:ec:2f:23:02:09: fa:aa:c0:43:03:c8:45:7a:7e:7c:d9:d1:11:fd:50:25:d7:ef: 53:ab:07:50:43:a6:0b:59:78:83:00:bd:3c:eb:c8:7d:ff:80: a3:f0:30:20:25:43:11:11:18:3f:0e:e7:23:84:ef:cd:8f:7f: 89:ce:01:87:fa:53:ad:ea:ca:ba:c4:3f:e6:8b:45:57:78:83: b9:4d:dc:9c:11:6a:97:d4:fd:61:38:ca:b1:62:b5:87:48:d4: 96:aa:74:a0:47:cb:fd:53:66:13:59:2d:5f:a5:1f:24:5d:48: 69:bb:57:82:46:6b:7a:85:89:d1:6e:a7:bf:08:5f:2c:02:28: cb:32:f2:ac:64:bf:0c:ef:51:a4:ab:11:81:b6:47:40:8e:28: 24:bf:be:4a:36:48:88:50:3b:d9:00:52:1e:fc:0d:68:f0:d0: 02:68:9b:99:aa:16:fa:aa:b3:25:8f:fb:f1:ed:05:92:19:c6: 93:a4:f6:65:b9:7e:47:07:78:ba:12:f4:ea:da:f9:ad:c8:7f: 91:d0:00:df:10:71:b3:3b:30:77:fd:30:b0:88:3f:11:09:0e: 4c:59:17:cd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUL4UDSEccoUFhSDEPXiNnkOPeQc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjNaFw0yNjA3MDMwNjUzMjNaMDMxMTAvBgNV BAMTKEZDM0Q4NjY1NTI3RDE5Q0JEOUYyNDgyMTQxREE4Nzc3MzAwODRCQzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/OZHB2yI+HdIjhDHFzNaWM/yB m646kzGCoVu4rGOcNNqrXEzteOubzs4czMTfICRPQV50OlfCrqxsb95CxJ8goUak SvvRqeo0sHI2jROaZM1X3l7MJsZYoZtzpZvtgykNAkppx0AbVTKGbNgBIvOGPeOn oDttoes3VHTZsSj0QZ6+tbEHTYSX8ZD6wyWKVjGnz+LoxYXGkyc57VDu3vtMpam3 xBTb1/zJojSMjFG9gYYxTFXmRsXjAHCe5lj7t2HhbA39HpB59OW2aaEoDCDerUwM gBVsMK1eKFePb2bvasP95u+xKLvaCwW/qpA85sD+R1bgIg0fZmczVwbzAdNzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/D2GZVJ9GcvZ8kghQdqHdzAIS8MwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKcwDQYJKoZIhvcNAQELBQADggEBAKxz 3kY44PId0MnzWjhRgvRCWmLkBtiPON6Qy6rgt7jsLyMCCfqqwEMDyEV6fnzZ0RH9 UCXX71OrB1BDpgtZeIMAvTzryH3/gKPwMCAlQxERGD8O5yOE782Pf4nOAYf6U63q yrrEP+aLRVd4g7lN3JwRapfU/WE4yrFitYdI1JaqdKBHy/1TZhNZLV+lHyRdSGm7 V4JGa3qFidFup78IXywCKMsy8qxkvwzvUaSrEYG2R0COKCS/vko2SIhQO9kAUh78 DWjw0AJom5mqFvqqsyWP+/HtBZIZxpOk9mW5fkcHeLoS9Ora+a3If5HQAN8QcbM7 MHf9MLCIPxEJDkxZF80= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:01 2025 by rpki-client