$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200592.roa File: AS200592.roa (raw, json) Hash identifier: v10Jdvw/QrvanJ/cchP4OnmCp0O8f6siUO+a8EPVMwQ= Subject key identifier: 47:72:53:97:10:78:4F:78:4E:4B:D3:14:81:5A:EF:20:21:12:5A:2C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 67BDD06D7C94AA24A1A925E6F7FC5142E7843F4D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200592.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 200592 IP address blocks: 2a0a:6040:d300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:bd:d0:6d:7c:94:aa:24:a1:a9:25:e6:f7:fc:51:42:e7:84:3f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=4772539710784F784E4BD314815AEF2021125A2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:be:86:f2:00:6c:00:96:68:73:52:04:16:86: 1e:92:2e:91:0d:f6:51:d1:68:f9:6a:f1:e6:76:61: d4:4e:b7:41:71:1b:57:b7:82:02:ca:23:6a:75:a3: a9:73:ae:86:7e:bc:b3:2e:34:0f:e8:4c:4c:79:b6: 11:6d:b0:1f:1b:29:a9:f6:5f:98:6d:74:d6:c6:70: f9:b0:c5:a3:b3:db:5e:89:a5:7c:22:a3:a5:f5:60: 80:2e:1e:f1:78:57:c6:9b:a1:84:92:cf:9c:f2:7e: 8f:2e:8a:af:23:76:04:2a:b2:63:00:3f:b9:61:11: d1:60:29:70:39:3e:77:2c:17:15:eb:e3:96:85:cb: b9:84:bd:50:53:93:3a:66:94:9a:24:b9:c1:89:0a: 79:33:33:79:09:a9:b0:c7:c8:31:4a:a5:c8:45:df: 16:d3:20:8a:45:5d:58:79:37:75:ac:b3:77:22:32: 98:41:b6:a3:5f:6b:b0:44:c7:d0:5a:4f:0e:48:c6: 72:2d:91:03:09:6a:ca:4a:cd:71:bc:b2:2a:5c:41: 92:b5:28:fb:d2:2a:83:6c:fc:7e:03:d5:2c:1f:d5: 8c:17:d6:41:1e:24:4c:46:00:7b:96:9d:93:0e:31: 61:03:e7:e0:0d:e4:af:db:75:d7:24:47:30:33:3e: 2f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:72:53:97:10:78:4F:78:4E:4B:D3:14:81:5A:EF:20:21:12:5A:2C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200592.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d300::/40 Signature Algorithm: sha256WithRSAEncryption 64:16:b5:b9:f3:09:6f:02:0a:ab:fb:e4:77:f5:6b:fb:5a:9a: c8:0e:7c:b7:5a:46:ca:82:94:ee:04:d3:e4:64:ae:d8:2c:f3: 44:f1:c4:e7:34:42:49:0b:ac:eb:53:78:f3:92:66:6a:c6:cd: 82:45:54:ab:2e:77:c0:df:5a:ff:2b:64:f0:82:15:a0:08:03: 45:f8:c0:ee:27:33:dc:1c:a8:f4:15:d0:25:03:36:1c:e2:5c: c2:b7:5d:9f:7b:67:d8:6d:e1:ea:ee:94:22:1e:cf:94:4a:36: c6:de:12:a5:06:0f:7b:e9:fd:7b:ea:4e:d9:7a:22:66:bd:a1: 6a:59:e6:87:a0:7f:24:37:57:e0:eb:d2:b8:3d:d3:bd:58:b1: 29:a4:d0:80:a2:0c:f5:14:d3:8f:9e:07:9a:6c:e0:59:b6:cb: b2:09:3b:c5:4b:fb:34:e7:18:fd:8a:b5:35:09:66:4b:e4:c5: 4f:64:dc:e2:53:e3:7c:4c:86:29:fd:a5:22:53:d4:ab:a9:5d: 7f:53:20:c1:4c:f8:b9:59:36:ba:39:e7:47:5c:58:8e:e0:44: 0a:57:8e:e0:5f:21:16:02:35:74:8e:ef:8d:f1:82:9c:49:a3: 43:8d:22:b2:3d:70:96:9b:85:63:42:01:24:4d:f1:45:83:67: 46:e4:fd:5d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ73QbXyUqiShqSXm9/xRQueEP00wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDQ3NzI1Mzk3MTA3ODRGNzg0RTRCRDMxNDgxNUFFRjIwMjExMjVBMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhvobyAGwAlmhzUgQWhh6SLpEN 9lHRaPlq8eZ2YdROt0FxG1e3ggLKI2p1o6lzroZ+vLMuNA/oTEx5thFtsB8bKan2 X5htdNbGcPmwxaOz216JpXwio6X1YIAuHvF4V8aboYSSz5zyfo8uiq8jdgQqsmMA P7lhEdFgKXA5PncsFxXr45aFy7mEvVBTkzpmlJokucGJCnkzM3kJqbDHyDFKpchF 3xbTIIpFXVh5N3Wss3ciMphBtqNfa7BEx9BaTw5IxnItkQMJaspKzXG8sipcQZK1 KPvSKoNs/H4D1Swf1YwX1kEeJExGAHuWnZMOMWED5+AN5K/bddckRzAzPi9nAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUR3JTlxB4T3hOS9MUgVrvICESWiwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNMwDQYJKoZIhvcNAQELBQADggEBAGQW tbnzCW8CCqv75Hf1a/tamsgOfLdaRsqClO4E0+Rkrtgs80TxxOc0QkkLrOtTePOS ZmrGzYJFVKsud8DfWv8rZPCCFaAIA0X4wO4nM9wcqPQV0CUDNhziXMK3XZ97Z9ht 4erulCIez5RKNsbeEqUGD3vp/XvqTtl6Ima9oWpZ5oegfyQ3V+Dr0rg9071YsSmk 0ICiDPUU04+eB5ps4Fm2y7IJO8VL+zTnGP2KtTUJZkvkxU9k3OJT43xMhin9pSJT 1KupXX9TIMFM+LlZNro550dcWI7gRApXjuBfIRYCNXSO743xgpxJo0ONIrI9cJab hWNCASRN8UWDZ0bk/V0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:04 2025 by rpki-client