$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200728.roa File: AS200728.roa (raw, json) Hash identifier: LEK6Qfs0uvIvoBd41+d29wEvx5DZOajOjzlGvNQaZG0= Subject key identifier: B8:6F:F4:38:03:8E:9C:D0:8D:A3:B4:DA:9F:0E:E1:82:17:EE:8C:D9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2BBEC63DE7A63E504640D604C5B8C84E391A51A8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200728.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 200728 IP address blocks: 2a0a:6040:7e00::/40 maxlen: 48 2a0a:6040:d000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:be:c6:3d:e7:a6:3e:50:46:40:d6:04:c5:b8:c8:4e:39:1a:51:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=B86FF438038E9CD08DA3B4DA9F0EE18217EE8CD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ff:62:df:ff:8c:10:0f:74:01:42:c8:df:78: 9b:52:9a:c7:78:d9:a4:d5:2e:cb:3c:71:e3:9a:ff: 3a:69:2a:c7:19:2c:e3:ca:94:00:0c:96:11:8a:41: 0c:01:6e:3a:be:1c:ed:9d:b5:a3:46:dd:c2:5e:0b: 98:e2:6e:82:37:e7:36:ba:7b:8e:e5:6b:87:9b:01: 0d:3e:60:8e:6a:fb:ee:13:c4:40:93:aa:91:af:7b: 5a:23:a7:ef:46:e5:04:e8:27:a7:91:6e:a5:b2:56: 79:45:82:fa:07:05:85:d4:04:24:04:42:5f:86:c6: ab:95:83:d2:5e:68:22:2b:48:ab:a9:39:83:91:e9: 34:fe:81:fd:07:d0:89:54:65:e2:a4:24:a2:93:62: 5e:74:24:0e:25:50:69:c3:60:76:4f:3a:05:de:29: 41:2f:12:21:d8:97:bc:d7:36:75:40:9c:56:0f:53: 44:2b:8a:31:c6:3f:4b:e3:35:44:9d:10:45:57:36: 6c:2d:bd:76:b8:d4:9e:a3:ec:dc:80:d2:2d:9d:d3: 42:5e:1b:ab:07:1a:ca:8c:55:b7:a0:ea:bd:9d:cf: b0:08:c1:44:7e:47:27:89:e0:5d:7a:76:1a:fe:90: 51:ae:b4:f6:f3:b8:f0:bd:c1:34:ab:9e:f0:6b:12: 47:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6F:F4:38:03:8E:9C:D0:8D:A3:B4:DA:9F:0E:E1:82:17:EE:8C:D9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200728.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e00::/40 2a0a:6040:d000::/40 Signature Algorithm: sha256WithRSAEncryption 2a:d3:68:de:58:8e:4b:9b:ec:64:bb:b0:1c:99:3c:6f:94:e7: df:c8:61:f0:9c:2d:71:69:55:25:eb:27:4c:79:63:4c:4f:ae: eb:91:77:d7:92:7c:b1:26:e2:1c:8e:c4:40:6c:bb:fa:22:87: fa:91:20:4c:f5:92:0a:22:00:e6:dc:bf:67:7c:fa:10:28:2f: e5:a0:17:0b:bb:6e:7e:cc:cc:ee:4b:b7:4b:55:7c:9b:71:1d: 24:f3:dc:43:32:01:b1:77:4c:91:51:2f:0d:38:54:18:6e:26: d4:b1:05:67:df:19:9a:80:53:8a:93:ec:bf:22:b2:d6:d4:7b: 28:a4:df:c7:64:69:1e:25:5f:ba:a8:a2:89:44:bf:9a:bc:8e: 1d:e9:ae:10:61:60:5c:b0:a7:14:e4:8e:e7:1b:b2:80:c8:69: ed:d2:46:46:e4:82:d5:88:72:c6:fc:fb:20:9c:4b:d0:3a:5b: 15:30:a0:02:21:15:68:c7:07:9a:0e:58:14:51:68:3b:ee:4e: 15:f4:1e:4d:50:08:19:76:3b:7a:ae:cd:2f:42:8d:62:e7:7b: 2d:26:63:46:f7:31:34:30:23:e6:38:36:84:70:13:cb:06:4c: a7:61:16:f1:b0:99:3a:9f:58:c4:62:f4:20:b8:61:63:be:9b: cc:32:3c:48 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUK77GPeemPlBGQNYExbjITjkaUagwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKEI4NkZGNDM4MDM4RTlDRDA4REEzQjREQTlGMEVFMTgyMTdFRThDRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7/2Lf/4wQD3QBQsjfeJtSmsd4 2aTVLss8ceOa/zppKscZLOPKlAAMlhGKQQwBbjq+HO2dtaNG3cJeC5jiboI35za6 e47la4ebAQ0+YI5q++4TxECTqpGve1ojp+9G5QToJ6eRbqWyVnlFgvoHBYXUBCQE Ql+GxquVg9JeaCIrSKupOYOR6TT+gf0H0IlUZeKkJKKTYl50JA4lUGnDYHZPOgXe KUEvEiHYl7zXNnVAnFYPU0QrijHGP0vjNUSdEEVXNmwtvXa41J6j7NyA0i2d00Je G6sHGsqMVbeg6r2dz7AIwUR+RyeJ4F16dhr+kFGutPbzuPC9wTSrnvBrEkddAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUuG/0OAOOnNCNo7Tanw7hghfujNkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzI4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQH4DBgAqCmBA0DANBgkqhkiG9w0BAQsF AAOCAQEAKtNo3liOS5vsZLuwHJk8b5Tn38hh8JwtcWlVJesnTHljTE+u65F315J8 sSbiHI7EQGy7+iKH+pEgTPWSCiIA5ty/Z3z6ECgv5aAXC7tufszM7ku3S1V8m3Ed JPPcQzIBsXdMkVEvDThUGG4m1LEFZ98ZmoBTipPsvyKy1tR7KKTfx2RpHiVfuqii iUS/mryOHemuEGFgXLCnFOSO5xuygMhp7dJGRuSC1Yhyxvz7IJxL0DpbFTCgAiEV aMcHmg5YFFFoO+5OFfQeTVAIGXY7eq7NL0KNYud7LSZjRvcxNDAj5jg2hHATywZM p2EW8bCZOp9YxGL0ILhhY76bzDI8SA== -----END CERTIFICATE-----Generated at Sat Jul 5 03:48:09 2025 by rpki-client