$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200579.roa File: AS200579.roa (raw, json) Hash identifier: xNdQhz7bAh9OaVfAjUpcLINLuw8jIY3OlARFAc8He5Y= Subject key identifier: EB:A1:AF:C8:62:E9:51:66:95:AD:F0:B6:59:1B:89:C4:23:B0:B3:A5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 720DDE7C0890C57D4C456927EAC16B9135D8A542 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200579.roa Signing time: Fri 04 Jul 2025 06:53:23 +0000 ROA not before: Fri 04 Jul 2025 06:48:23 +0000 ROA not after: Fri 03 Jul 2026 06:53:23 +0000 asID: 200579 IP address blocks: 2a0a:6040:fb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0d:de:7c:08:90:c5:7d:4c:45:69:27:ea:c1:6b:91:35:d8:a5:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:23 2025 GMT Not After : Jul 3 06:53:23 2026 GMT Subject: CN=EBA1AFC862E9516695ADF0B6591B89C423B0B3A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:3f:58:ca:e1:cf:be:35:e4:d6:62:ac:c6:63: ef:38:1e:69:98:fa:bc:54:d4:5d:e6:06:68:b1:0c: 29:0a:6f:b4:df:28:7e:f6:42:e4:6c:5f:4b:6a:4c: 7c:e8:0e:5a:c6:0e:da:8b:a1:d3:1d:7d:8f:95:e9: e5:ef:a0:52:ec:f6:fd:ca:67:52:02:9b:6e:dd:60: b0:36:c2:81:b0:5b:57:45:2b:b8:ca:f2:a2:2f:3a: e4:10:cd:d2:23:a4:9c:17:bc:4b:89:c6:f4:9d:cb: 36:6e:d8:c2:54:36:7a:50:53:fc:9a:ef:fe:84:23: fa:b1:85:d1:78:ee:59:cb:4c:71:8c:6f:ac:fa:a7: 83:8b:b7:93:7f:b3:b9:a5:04:d1:35:2c:8d:a6:32: f0:93:03:26:88:5a:4e:4c:b7:3d:4e:82:c3:8a:b4: e2:6d:cc:0b:dd:56:c4:d1:89:30:fa:9e:ca:47:ae: fa:a0:de:76:f3:b2:da:d3:c7:60:c4:d0:c1:e7:a8: eb:ff:43:83:3c:f8:b3:66:ed:3a:4b:85:4c:b9:97: 00:e8:10:03:0d:ec:c1:c9:19:1d:24:be:4b:db:3a: cb:59:4d:ff:49:3c:08:5f:3f:00:51:73:ea:17:de: e2:a3:58:22:90:3f:77:12:ff:7a:d3:ca:02:78:54: 45:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A1:AF:C8:62:E9:51:66:95:AD:F0:B6:59:1B:89:C4:23:B0:B3:A5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fb00::/40 Signature Algorithm: sha256WithRSAEncryption 2a:29:6b:1d:26:38:7a:e7:01:f1:81:4c:44:79:49:7c:17:62: 44:fe:08:6e:75:be:8f:6c:81:11:d9:8b:06:88:0e:1a:d4:77: 2e:3f:9f:47:31:7c:80:98:10:ee:cf:b4:54:a6:d3:3e:26:6c: 85:26:b2:b3:13:6c:64:89:be:0a:4f:14:4b:04:ac:d8:7c:ba: 07:6a:4c:28:ee:fa:cd:9e:78:37:83:00:cc:67:50:a0:97:86: 9f:69:06:0b:46:64:93:61:7f:23:32:f6:3a:63:94:96:5f:ad: 40:dd:c8:c4:20:80:dc:f3:5a:50:d9:26:14:31:ed:50:44:58: 25:e8:d5:48:f4:76:b7:e3:7c:09:12:50:37:ea:c7:30:f1:bb: a0:50:b0:93:f4:a6:a9:0b:46:50:99:5b:48:dd:50:94:1d:29: 97:c3:a9:b3:09:cd:79:e0:f9:13:77:97:a1:59:52:c6:f8:85: 08:ed:c6:2e:90:e8:70:00:f3:01:51:e9:1f:61:38:be:ec:a4: 5a:f9:0b:a3:e7:4a:ec:db:dc:26:73:0b:3e:94:cf:d1:75:6a: df:43:9f:96:a0:75:94:cf:43:c5:31:9e:0f:39:27:49:94:5c: 3e:d8:bb:8c:f8:06:98:e3:f0:b2:94:8e:0f:ef:10:23:7f:5f: e9:b6:4b:49 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcg3efAiQxX1MRWkn6sFrkTXYpUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjNaFw0yNjA3MDMwNjUzMjNaMDMxMTAvBgNV BAMTKEVCQTFBRkM4NjJFOTUxNjY5NUFERjBCNjU5MUI4OUM0MjNCMEIzQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoP1jK4c++NeTWYqzGY+84HmmY +rxU1F3mBmixDCkKb7TfKH72QuRsX0tqTHzoDlrGDtqLodMdfY+V6eXvoFLs9v3K Z1ICm27dYLA2woGwW1dFK7jK8qIvOuQQzdIjpJwXvEuJxvSdyzZu2MJUNnpQU/ya 7/6EI/qxhdF47lnLTHGMb6z6p4OLt5N/s7mlBNE1LI2mMvCTAyaIWk5Mtz1OgsOK tOJtzAvdVsTRiTD6nspHrvqg3nbzstrTx2DE0MHnqOv/Q4M8+LNm7TpLhUy5lwDo EAMN7MHJGR0kvkvbOstZTf9JPAhfPwBRc+oX3uKjWCKQP3cS/3rTygJ4VEU3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU66GvyGLpUWaVrfC2WRuJxCOws6UwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPswDQYJKoZIhvcNAQELBQADggEBACop ax0mOHrnAfGBTER5SXwXYkT+CG51vo9sgRHZiwaIDhrUdy4/n0cxfICYEO7PtFSm 0z4mbIUmsrMTbGSJvgpPFEsErNh8ugdqTCju+s2eeDeDAMxnUKCXhp9pBgtGZJNh fyMy9jpjlJZfrUDdyMQggNzzWlDZJhQx7VBEWCXo1Uj0drfjfAkSUDfqxzDxu6BQ sJP0pqkLRlCZW0jdUJQdKZfDqbMJzXng+RN3l6FZUsb4hQjtxi6Q6HAA8wFR6R9h OL7spFr5C6PnSuzb3CZzCz6Uz9F1at9Dn5agdZTPQ8Uxng85J0mUXD7Yu4z4Bpjj 8LKUjg/vECN/X+m2S0k= -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:09 2025 by rpki-client