$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200558.roa File: AS200558.roa (raw, json) Hash identifier: L6p5WRWIcKXK3ufkeMKKCLxRq4b0CyGj0iOZkMPybDg= Subject key identifier: C0:1B:67:16:D8:0F:2D:05:4B:11:E2:97:B7:DB:C3:D7:51:D7:BC:31 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1EC2D6F8B57D1C1FD41A365A1C3AA22DF6661913 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200558.roa Signing time: Fri 05 Jun 2026 07:12:39 +0000 ROA not before: Fri 05 Jun 2026 07:07:39 +0000 ROA not after: Fri 04 Jun 2027 07:12:39 +0000 asID: 200558 IP address blocks: 2a0a:6040:a700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:c2:d6:f8:b5:7d:1c:1f:d4:1a:36:5a:1c:3a:a2:2d:f6:66:19:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:39 2026 GMT Not After : Jun 4 07:12:39 2027 GMT Subject: CN=C01B6716D80F2D054B11E297B7DBC3D751D7BC31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:24:58:1b:be:fa:0a:ce:31:c5:71:d4:b4:32: f0:9f:4e:a6:85:08:3a:53:4c:7f:fa:cd:c6:fc:28: 20:9b:5f:c4:41:cb:8c:72:84:6c:1a:60:eb:aa:72: 22:d0:b5:26:d0:25:6a:d7:d4:42:da:ca:bb:2d:e3: 0b:7e:90:4f:d1:8a:37:da:61:8d:cf:2d:7a:a8:55: ef:ff:6d:d2:be:a0:e9:9e:b3:c8:7a:7d:5c:1b:32: 42:16:e8:76:21:1f:98:4e:30:75:d7:89:08:e9:39: be:b3:5f:e3:fd:2c:1b:6b:60:62:ec:2f:e7:82:38: a7:e7:ec:e9:5e:ed:fe:6f:03:5a:4d:49:5a:36:d8: 55:81:7b:c3:81:d2:85:35:19:de:6f:83:7b:b1:ce: 7a:c5:33:c9:66:c5:07:b0:90:59:92:a8:7c:b6:3a: b7:5e:b3:b8:b1:de:b8:40:b9:62:3e:81:18:f5:c5: e0:6f:b4:b6:35:97:a0:84:1b:54:45:18:9c:0c:d6: 8c:3e:e6:ae:1e:89:91:d9:f7:5e:f6:88:60:15:fe: 78:4e:e9:3e:33:06:f9:e6:b0:a1:be:f4:cc:af:e4: 53:fc:dd:e7:77:ff:3e:cf:0b:db:97:bc:30:c3:0d: 95:6b:3b:35:9f:3c:07:4d:36:e0:68:9d:e6:7f:8a: b6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1B:67:16:D8:0F:2D:05:4B:11:E2:97:B7:DB:C3:D7:51:D7:BC:31 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200558.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a700::/40 Signature Algorithm: sha256WithRSAEncryption 51:b6:04:2b:e7:d8:6f:3c:7e:08:3e:d5:1a:30:38:1f:73:4f: c0:55:75:f4:37:40:87:a0:2a:14:7e:6d:c8:73:07:09:62:49: d8:c7:e9:05:65:5b:0d:84:80:5b:bf:77:b9:d8:df:db:7c:31: de:d3:48:62:2d:7b:c7:49:86:5f:b0:4d:c7:d9:50:1e:55:cd: 1e:b5:51:65:59:6c:b1:e3:86:d7:ae:03:dc:77:3e:54:aa:01: 28:28:86:04:c8:dc:dd:ef:ed:67:b6:37:60:7e:f7:72:1a:5d: d9:04:7b:8c:3e:a9:79:b2:e2:26:db:02:59:4b:d9:1e:ba:2a: 5f:6d:d0:76:0f:57:84:c1:1f:53:ec:4e:b8:8a:a2:dc:ca:4a: 7d:ba:5d:d8:ba:1f:68:50:ce:dc:a8:23:90:be:da:7c:f6:f1: 0f:58:5a:99:28:53:4c:6b:09:ce:b4:f1:fc:77:78:56:8e:d0: 07:96:c2:eb:03:b8:bc:39:15:a0:1d:be:0e:2c:96:20:30:1c: 4e:49:da:7b:32:ff:8e:3d:a9:7a:6a:f2:d6:ee:f0:4b:a1:e7: 3e:f6:77:35:aa:4b:69:6a:a0:61:ab:26:83:8a:32:bb:a5:d9: 60:b7:30:18:c7:9e:fd:7a:65:b3:0a:69:53:15:6b:2d:d1:49: 43:db:08:e7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHsLW+LV9HB/UGjZaHDqiLfZmGRMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzlaFw0yNzA2MDQwNzEyMzlaMDMxMTAvBgNV BAMTKEMwMUI2NzE2RDgwRjJEMDU0QjExRTI5N0I3REJDM0Q3NTFEN0JDMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJJFgbvvoKzjHFcdS0MvCfTqaF CDpTTH/6zcb8KCCbX8RBy4xyhGwaYOuqciLQtSbQJWrX1ELayrst4wt+kE/Rijfa YY3PLXqoVe//bdK+oOmes8h6fVwbMkIW6HYhH5hOMHXXiQjpOb6zX+P9LBtrYGLs L+eCOKfn7Ole7f5vA1pNSVo22FWBe8OB0oU1Gd5vg3uxznrFM8lmxQewkFmSqHy2 Ordes7ix3rhAuWI+gRj1xeBvtLY1l6CEG1RFGJwM1ow+5q4eiZHZ9172iGAV/nhO 6T4zBvnmsKG+9Myv5FP83ed3/z7PC9uXvDDDDZVrOzWfPAdNNuBoneZ/iraVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwBtnFtgPLQVLEeKXt9vD11HXvDEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTU4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKcwDQYJKoZIhvcNAQELBQADggEBAFG2 BCvn2G88fgg+1RowOB9zT8BVdfQ3QIegKhR+bchzBwliSdjH6QVlWw2EgFu/d7nY 39t8Md7TSGIte8dJhl+wTcfZUB5VzR61UWVZbLHjhteuA9x3PlSqASgohgTI3N3v 7We2N2B+93IaXdkEe4w+qXmy4ibbAllL2R66Kl9t0HYPV4TBH1PsTriKotzKSn26 Xdi6H2hQztyoI5C+2nz28Q9YWpkoU0xrCc608fx3eFaO0AeWwusDuLw5FaAdvg4s liAwHE5J2nsy/449qXpq8tbu8Euh5z72dzWqS2lqoGGrJoOKMrul2WC3MBjHnv16 ZbMKaVMVay3RSUPbCOc= -----END CERTIFICATE-----Generated at Thu Jun 11 19:13:35 2026 by rpki-client