$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200570.roa File: AS200570.roa (raw, json) Hash identifier: xQ6rgMFTbaBmW4gX9vIs3SAvkeWFDpm/pigYwgqEE6Y= Subject key identifier: 97:A4:55:41:D5:93:C8:6C:F2:81:30:46:93:2F:6F:EE:80:13:66:35 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3BAD3DBC363C83A1DAC25E95478211AA516345EA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200570.roa Signing time: Fri 04 Jul 2025 06:53:05 +0000 ROA not before: Fri 04 Jul 2025 06:48:05 +0000 ROA not after: Fri 03 Jul 2026 06:53:05 +0000 asID: 200570 IP address blocks: 2a0a:6040:ee00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ad:3d:bc:36:3c:83:a1:da:c2:5e:95:47:82:11:aa:51:63:45:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:05 2025 GMT Not After : Jul 3 06:53:05 2026 GMT Subject: CN=97A45541D593C86CF2813046932F6FEE80136635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:06:36:b2:82:df:b2:52:51:16:84:48:72:10: 01:d2:36:c2:54:3e:91:08:12:12:32:2a:b8:4a:60: 5b:2a:af:4f:79:33:3a:85:f7:23:53:73:56:49:79: 6b:52:64:a4:f2:f3:36:35:f9:e4:48:17:26:2d:75: d5:32:1e:b6:c5:50:bd:24:ae:3c:96:33:1f:a1:33: b9:d1:c1:b8:44:f0:8e:bb:19:97:3b:f7:6a:05:54: cc:45:60:df:9f:e8:17:0d:cc:b8:5c:0c:41:71:4e: db:02:20:06:da:ff:f2:63:64:8d:4d:a8:63:09:9e: 98:6c:0c:eb:f8:82:f1:83:e4:92:85:05:2e:a6:79: e9:f6:c4:c1:7d:d6:0f:e9:14:92:08:f6:cd:d3:33: 4a:35:f2:b3:9f:ae:fa:5c:a0:6f:e9:c6:67:1e:5a: af:ac:e5:8b:80:be:c8:ce:1b:db:66:1d:db:c1:f9: 7d:20:0b:55:de:e3:52:72:49:d1:8e:54:0f:d2:3f: 4e:b0:af:c7:fc:29:ae:d5:2d:a1:ad:06:0a:ce:78: c2:e4:a9:45:5b:43:9a:98:3f:3b:58:f3:ab:f5:a7: 47:2c:a7:69:fe:1d:3b:50:c3:5a:1c:46:5e:b4:4c: 9b:bd:6a:be:75:f0:93:d5:d5:7a:f8:01:ab:55:aa: 04:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:A4:55:41:D5:93:C8:6C:F2:81:30:46:93:2F:6F:EE:80:13:66:35 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200570.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ee00::/40 Signature Algorithm: sha256WithRSAEncryption 42:5d:58:d1:b2:70:f8:6b:4a:1c:62:01:13:d6:e4:94:8d:1a: fc:75:6d:ce:82:d3:5c:ac:47:1c:82:e4:86:d1:3e:df:d8:94: d9:fe:c0:ee:72:e7:aa:0a:c0:0a:0b:c2:7f:ae:16:ee:4f:ac: da:6e:68:01:91:69:fb:4b:4c:8e:fc:ee:90:97:57:50:78:6e: 69:7b:07:c2:5a:4a:e6:ea:03:b4:8c:5e:bb:11:da:22:04:57: 3c:5c:b2:52:7f:f1:3c:89:d8:5e:a9:60:2a:77:c7:53:90:4d: d0:3e:e9:8e:1d:61:c4:ce:92:e4:78:aa:98:d8:62:a7:1e:21: 63:2a:2a:c8:04:36:bf:d6:7d:78:61:c5:e4:93:58:50:90:19: 92:aa:11:00:a5:fe:15:4e:f9:ab:7a:61:89:8c:44:a6:7c:03: eb:53:9a:53:cc:d9:63:dc:78:ae:40:73:7a:e9:e7:94:b7:5b: 41:eb:57:98:39:e3:f6:e1:e7:fc:41:06:8f:50:1d:31:d4:f2: c2:6d:44:e0:ac:7a:ab:d0:1f:73:02:19:1c:a8:91:a5:b1:dc: 2f:10:88:92:49:57:a4:81:8e:7a:48:3c:b4:f0:7a:7d:77:4d: 6c:b2:49:99:e5:7c:58:0f:b3:c1:5c:b7:0a:07:e9:bf:9c:3a: bf:00:07:f9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUO609vDY8g6Hawl6VR4IRqlFjReowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDVaFw0yNjA3MDMwNjUzMDVaMDMxMTAvBgNV BAMTKDk3QTQ1NTQxRDU5M0M4NkNGMjgxMzA0NjkzMkY2RkVFODAxMzY2MzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2Bjaygt+yUlEWhEhyEAHSNsJU PpEIEhIyKrhKYFsqr095MzqF9yNTc1ZJeWtSZKTy8zY1+eRIFyYtddUyHrbFUL0k rjyWMx+hM7nRwbhE8I67GZc792oFVMxFYN+f6BcNzLhcDEFxTtsCIAba//JjZI1N qGMJnphsDOv4gvGD5JKFBS6meen2xMF91g/pFJII9s3TM0o18rOfrvpcoG/pxmce Wq+s5YuAvsjOG9tmHdvB+X0gC1Xe41JySdGOVA/SP06wr8f8Ka7VLaGtBgrOeMLk qUVbQ5qYPztY86v1p0csp2n+HTtQw1ocRl60TJu9ar518JPV1Xr4AatVqgSnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUl6RVQdWTyGzygTBGky9v7oATZjUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTcwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQO4wDQYJKoZIhvcNAQELBQADggEBAEJd WNGycPhrShxiARPW5JSNGvx1bc6C01ysRxyC5IbRPt/YlNn+wO5y56oKwAoLwn+u Fu5PrNpuaAGRaftLTI787pCXV1B4bml7B8JaSubqA7SMXrsR2iIEVzxcslJ/8TyJ 2F6pYCp3x1OQTdA+6Y4dYcTOkuR4qpjYYqceIWMqKsgENr/WfXhhxeSTWFCQGZKq EQCl/hVO+at6YYmMRKZ8A+tTmlPM2WPceK5Ac3rp55S3W0HrV5g54/bh5/xBBo9Q HTHU8sJtROCseqvQH3MCGRyokaWx3C8QiJJJV6SBjnpIPLTwen13TWyySZnlfFgP s8FctwoH6b+cOr8AB/k= -----END CERTIFICATE-----Generated at Sat Jul 5 03:58:38 2025 by rpki-client