$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200676.roa File: AS200676.roa (raw, json) Hash identifier: PsGjau9OzFsbeEAwoT7UVe4cPpG+A8rT2xGPPSkHBbg= Subject key identifier: 94:4C:7A:0F:E1:68:26:17:99:BD:E4:85:3D:EE:22:A5:9B:79:4C:D7 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 104318DE15BE17A3A9F6B0CD2B2E1E2A3A5EDA4F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200676.roa Signing time: Fri 04 Jul 2025 06:53:09 +0000 ROA not before: Fri 04 Jul 2025 06:48:09 +0000 ROA not after: Fri 03 Jul 2026 06:53:09 +0000 asID: 200676 IP address blocks: 2a0a:6040:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:43:18:de:15:be:17:a3:a9:f6:b0:cd:2b:2e:1e:2a:3a:5e:da:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:09 2025 GMT Not After : Jul 3 06:53:09 2026 GMT Subject: CN=944C7A0FE168261799BDE4853DEE22A59B794CD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:50:4e:a5:2d:26:37:db:85:d9:ff:75:6b:a3: 44:c1:f7:7e:25:ba:7a:45:52:2c:a7:58:bb:41:40: c7:69:a2:79:f5:1e:44:c3:cc:2a:8f:3a:0b:09:47: e1:b3:ac:e6:89:48:36:a3:35:3e:2c:e2:17:9d:b4: 99:72:1c:14:79:b4:3c:3f:4b:2b:e2:9e:d1:43:98: 69:e5:7e:f8:cd:b6:94:69:ff:1c:69:5f:82:eb:dd: 98:0d:a7:ab:60:4a:01:09:ee:5b:24:8a:0d:a7:b2: c4:bc:5e:3d:44:44:68:7b:77:d4:c5:d2:6e:d9:9c: b3:f3:b3:13:56:91:46:28:ea:75:0f:2a:05:d6:ec: 22:37:7b:e2:e7:d4:7b:ea:06:2b:fb:25:66:d4:cb: 68:ba:0a:05:cb:19:3e:30:aa:dd:2f:9b:5a:09:10: d6:c5:e8:35:5b:f7:77:3f:27:5b:f5:cd:ef:6c:6e: f5:3d:36:ab:eb:ad:4a:86:87:95:73:3d:c7:38:57: 91:b1:65:f2:42:ec:77:4e:dc:53:85:65:53:51:ea: 66:b4:dd:1e:b4:22:ef:64:4b:9d:5a:43:f9:bc:56: 1b:9d:3d:9e:b8:f0:e5:d9:9b:33:9d:f1:b0:7b:d7: f2:83:ac:e5:e4:0d:5f:15:3a:b5:96:11:60:e5:9e: 96:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:4C:7A:0F:E1:68:26:17:99:BD:E4:85:3D:EE:22:A5:9B:79:4C:D7 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b100::/40 Signature Algorithm: sha256WithRSAEncryption 2c:34:9d:24:a8:75:82:89:61:ab:7c:7b:12:3a:5c:07:f3:bc: f7:6d:75:1e:f2:e0:c8:ee:8d:d0:ac:c9:9c:e7:30:c8:de:a8: 5d:ab:72:d7:07:da:34:4d:a3:4f:6c:f1:18:a7:6f:cc:f4:11: 2a:8b:79:71:91:ca:76:04:72:cc:68:e4:ad:75:65:f7:9e:9b: fe:16:c3:cb:92:91:51:32:9f:5a:b5:e1:fe:16:d7:3b:e3:30: c0:5d:b4:8f:fe:23:5d:f8:58:55:86:80:9f:9d:8a:48:0c:3c: e1:4b:b2:5c:72:e9:22:ad:c4:f7:2d:1e:21:8d:ec:92:bd:f5: c2:c0:35:bc:b3:9b:8f:3a:a9:12:62:1e:f0:76:36:8b:8d:b2: 62:3d:14:99:81:e9:84:95:23:92:0c:cf:5b:f6:99:a3:57:3f: f3:7a:fe:d3:39:7a:8b:b2:5d:4d:b9:c5:3d:85:ba:a1:f0:29: 9b:61:b8:9b:59:44:b6:92:eb:e1:07:3b:51:f1:d0:70:aa:4c: 78:94:bb:46:1e:0d:4c:bb:b0:15:6f:11:3a:37:81:c1:32:19: 54:eb:5d:ba:3c:0a:69:87:74:30:17:94:cd:c9:62:ca:3c:bb: 08:dd:5c:b7:a5:8d:dd:cf:38:f7:98:50:6d:47:7f:32:9e:bd: 4b:ed:00:f2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEEMY3hW+F6Op9rDNKy4eKjpe2k8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDlaFw0yNjA3MDMwNjUzMDlaMDMxMTAvBgNV BAMTKDk0NEM3QTBGRTE2ODI2MTc5OUJERTQ4NTNERUUyMkE1OUI3OTRDRDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwUE6lLSY324XZ/3Vro0TB934l unpFUiynWLtBQMdponn1HkTDzCqPOgsJR+GzrOaJSDajNT4s4hedtJlyHBR5tDw/ SyvintFDmGnlfvjNtpRp/xxpX4Lr3ZgNp6tgSgEJ7lskig2nssS8Xj1ERGh7d9TF 0m7ZnLPzsxNWkUYo6nUPKgXW7CI3e+Ln1HvqBiv7JWbUy2i6CgXLGT4wqt0vm1oJ ENbF6DVb93c/J1v1ze9sbvU9NqvrrUqGh5VzPcc4V5GxZfJC7HdO3FOFZVNR6ma0 3R60Iu9kS51aQ/m8VhudPZ648OXZmzOd8bB71/KDrOXkDV8VOrWWEWDlnpbvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlEx6D+FoJheZveSFPe4ipZt5TNcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLEwDQYJKoZIhvcNAQELBQADggEBACw0 nSSodYKJYat8exI6XAfzvPdtdR7y4MjujdCsyZznMMjeqF2rctcH2jRNo09s8Rin b8z0ESqLeXGRynYEcsxo5K11Zfeem/4Ww8uSkVEyn1q14f4W1zvjMMBdtI/+I134 WFWGgJ+dikgMPOFLslxy6SKtxPctHiGN7JK99cLANbyzm486qRJiHvB2NouNsmI9 FJmB6YSVI5IMz1v2maNXP/N6/tM5eouyXU25xT2FuqHwKZthuJtZRLaS6+EHO1Hx 0HCqTHiUu0YeDUy7sBVvETo3gcEyGVTrXbo8CmmHdDAXlM3JYso8uwjdXLeljd3P OPeYUG1HfzKevUvtAPI= -----END CERTIFICATE-----Generated at Sat Jul 5 04:08:33 2025 by rpki-client