$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200730.roa File: AS200730.roa (raw, json) Hash identifier: Q+qsQbzjwvsJiCk2y5hQG5OuIG1qpfxTuE0cjVOJg7Y= Subject key identifier: 26:21:CA:9B:D8:71:58:77:F3:E0:A7:7F:C8:8E:74:C5:F9:F7:C1:7A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4C8D023B54218640E6A105E3DD83C6945421DA79 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200730.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 200730 IP address blocks: 2a0a:6040:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:8d:02:3b:54:21:86:40:e6:a1:05:e3:dd:83:c6:94:54:21:da:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=2621CA9BD8715877F3E0A77FC88E74C5F9F7C17A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fe:cc:25:2a:53:0d:68:16:89:a9:a0:e8:a7: c5:e1:39:57:fa:6d:b0:03:77:29:a1:90:1d:db:89: 6d:bd:b8:ca:76:0b:ac:a6:5c:1b:a4:65:85:d2:78: d2:8f:98:bc:10:5d:0a:b6:aa:1e:ba:b0:e6:43:d0: 5a:48:04:52:e0:87:f2:ca:1f:b8:02:64:19:05:42: 30:ce:0b:dd:08:a2:50:ba:36:a2:89:e7:6c:6a:84: ff:27:17:17:3a:56:2e:a1:48:d6:30:23:66:77:88: 32:a1:c0:83:7f:3e:58:71:a5:b6:a0:6c:5d:31:43: 12:b5:4e:1e:fa:53:44:7f:14:8c:e4:8a:f2:bf:35: 95:b6:1f:c2:ee:9a:10:44:9d:51:3e:69:9f:fe:aa: 26:d5:f7:ff:b0:55:77:eb:c2:cb:a4:c8:e9:cf:d8: 95:42:36:ba:53:fd:33:41:9f:bd:33:05:13:4c:63: c9:9b:92:ca:f0:a9:dc:cf:57:85:df:8c:de:ac:d9: 7e:41:7a:54:e6:85:6b:3e:66:f6:05:d3:19:44:46: 3d:5a:74:26:3d:4f:4a:14:cb:ae:d3:b9:19:d9:29: c6:e6:47:24:72:cf:a6:04:9f:cf:d2:3d:a9:77:30: 01:7c:83:7a:36:28:d0:26:db:25:53:03:06:89:96: f4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:21:CA:9B:D8:71:58:77:F3:E0:A7:7F:C8:8E:74:C5:F9:F7:C1:7A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200730.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c900::/40 Signature Algorithm: sha256WithRSAEncryption ae:7f:2f:3b:17:6d:ad:64:a3:80:ce:a0:4f:33:8e:9d:f5:32: 95:ea:fe:ef:9b:e9:cd:de:91:80:9c:a0:a1:6d:ad:6d:2e:37: ba:11:4f:f1:88:8b:13:f1:c9:8f:ee:8e:e9:4a:56:32:67:5d: e4:cd:8f:3a:e9:b5:f0:e0:66:39:47:5d:2c:d2:2a:ad:b9:d6: 79:52:8a:c1:c2:29:1b:db:53:38:d6:6e:8d:a2:6a:3d:39:bd: de:c0:fe:2d:e6:5e:05:68:91:ca:3e:6e:22:76:78:c3:c1:65: 2d:2a:54:88:b3:c9:bd:29:3d:bb:2c:96:5a:99:d0:5e:ae:7f: 05:02:b2:bd:3b:29:db:bd:11:47:02:5c:5b:00:65:d8:20:a1: f5:bf:df:97:97:c1:46:40:3f:ad:c0:46:6a:21:f1:f9:73:1e: da:ca:b5:c8:a2:2f:37:5b:d6:92:ac:39:a0:70:a3:b2:11:8f: 2c:70:ec:43:4e:8b:ae:1d:8a:27:7d:cf:1d:0d:b3:cf:db:7c: ed:17:18:a5:7d:fa:40:73:37:d5:97:04:f6:1e:ec:f5:64:e6: d7:5a:29:e1:d5:8d:8d:85:88:8e:a4:cf:30:3e:1e:63:78:7e: 50:59:79:24:26:62:47:a0:57:f6:fc:64:39:d2:47:da:d6:23: 9a:e6:3b:68 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTI0CO1QhhkDmoQXj3YPGlFQh2nkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKDI2MjFDQTlCRDg3MTU4NzdGM0UwQTc3RkM4OEU3NEM1RjlGN0MxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDG/swlKlMNaBaJqaDop8XhOVf6 bbADdymhkB3biW29uMp2C6ymXBukZYXSeNKPmLwQXQq2qh66sOZD0FpIBFLgh/LK H7gCZBkFQjDOC90IolC6NqKJ52xqhP8nFxc6Vi6hSNYwI2Z3iDKhwIN/Plhxpbag bF0xQxK1Th76U0R/FIzkivK/NZW2H8LumhBEnVE+aZ/+qibV9/+wVXfrwsukyOnP 2JVCNrpT/TNBn70zBRNMY8mbksrwqdzPV4XfjN6s2X5BelTmhWs+ZvYF0xlERj1a dCY9T0oUy67TuRnZKcbmRyRyz6YEn8/SPal3MAF8g3o2KNAm2yVTAwaJlvSPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJiHKm9hxWHfz4Kd/yI50xfn3wXowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMkwDQYJKoZIhvcNAQELBQADggEBAK5/ LzsXba1ko4DOoE8zjp31MpXq/u+b6c3ekYCcoKFtrW0uN7oRT/GIixPxyY/ujulK VjJnXeTNjzrptfDgZjlHXSzSKq251nlSisHCKRvbUzjWbo2iaj05vd7A/i3mXgVo kco+biJ2eMPBZS0qVIizyb0pPbssllqZ0F6ufwUCsr07Kdu9EUcCXFsAZdggofW/ 35eXwUZAP63ARmoh8flzHtrKtciiLzdb1pKsOaBwo7IRjyxw7ENOi64diid9zx0N s8/bfO0XGKV9+kBzN9WXBPYe7PVk5tdaKeHVjY2FiI6kzzA+HmN4flBZeSQmYkeg V/b8ZDnSR9rWI5rmO2g= -----END CERTIFICATE-----Generated at Sat Jul 5 03:44:16 2025 by rpki-client