$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200731.roa File: AS200731.roa (raw, json) Hash identifier: CNg/9J6gMvUQBX2SIN+7s5Y2L9PcCphmvlFDhfg7ljQ= Subject key identifier: D7:B0:57:C2:96:21:AA:D2:E9:F1:1C:A3:21:4C:9F:B6:6A:83:B2:6C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4ACDA725FC9C7BBA29B3642B5DA60D59206F6A79 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200731.roa Signing time: Fri 04 Jul 2025 06:52:59 +0000 ROA not before: Fri 04 Jul 2025 06:47:59 +0000 ROA not after: Fri 03 Jul 2026 06:52:59 +0000 asID: 200731 IP address blocks: 2a0a:6040:b800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:cd:a7:25:fc:9c:7b:ba:29:b3:64:2b:5d:a6:0d:59:20:6f:6a:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:59 2025 GMT Not After : Jul 3 06:52:59 2026 GMT Subject: CN=D7B057C29621AAD2E9F11CA3214C9FB66A83B26C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:64:86:91:8d:2a:25:0d:ff:26:9a:eb:5e:56: cc:5b:27:fe:56:06:14:08:20:ca:17:6b:5e:07:f3: 7c:67:96:ff:5c:55:70:bf:80:cd:d7:ec:bd:ef:a4: 2f:44:d1:2b:f3:d1:d7:ac:34:9b:24:4a:60:b2:ff: 3f:db:1c:f1:9a:ad:1c:73:ef:b5:90:51:1b:70:a5: 3f:86:58:02:61:0a:98:8f:19:68:bb:d3:b0:0d:19: cf:71:c7:b0:ca:0e:4f:9a:75:1d:f0:06:6e:68:1e: 2b:85:cb:47:5f:b6:e4:8f:98:2f:69:46:7b:c9:ca: d9:59:ac:5c:79:82:e2:13:66:d1:f0:ab:0f:cb:37: b5:c6:eb:81:4c:51:f0:d7:f9:67:6c:ea:e4:53:c0: 62:63:93:0c:20:ac:21:22:cf:67:ae:16:0f:9c:ea: 52:a2:02:a9:55:ba:96:6f:2e:8f:f5:a9:65:93:58: 87:a2:43:b0:eb:2f:d2:30:5b:e0:e1:aa:1d:ed:e9: e1:d1:d1:e8:0e:8c:87:14:f9:85:94:ed:57:50:03: 50:58:14:df:ec:7a:ef:15:a2:01:60:61:26:6e:cc: 73:c4:40:35:26:1d:c0:15:9b:f0:09:5a:9b:14:9f: 96:36:34:da:94:de:75:ee:cb:9a:35:d7:f6:25:63: 07:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B0:57:C2:96:21:AA:D2:E9:F1:1C:A3:21:4C:9F:B6:6A:83:B2:6C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b800::/40 Signature Algorithm: sha256WithRSAEncryption 0e:2b:b0:24:49:66:ec:4d:f2:bd:93:5b:e8:c2:4c:56:26:5d: 8f:4e:fb:70:a9:28:52:3a:c6:3b:23:a5:e7:4c:53:45:ea:d9: 94:70:3f:fc:84:57:0a:95:7f:09:95:97:83:27:1b:04:87:9d: 65:c9:a5:8a:1d:52:f5:f1:52:c4:00:26:2f:05:47:2c:d8:26: f5:29:4b:f6:4e:4e:ad:1e:71:ea:0c:8c:e7:4c:14:f7:2e:9e: b8:bb:ae:59:73:56:83:a7:b7:fc:e5:d1:69:af:1b:98:f6:b4: db:e6:38:b6:fa:90:e7:1e:25:2f:c2:c9:a0:36:93:da:b3:28: 19:29:51:e0:39:61:f6:7a:a4:32:23:73:74:7a:0d:67:07:ed: 68:53:e8:51:6d:ad:1e:e5:b8:cf:e0:60:5d:3f:65:ba:10:61: d7:98:0e:7c:c8:e1:84:be:19:8c:60:19:cc:94:50:45:1c:b5: 9d:ad:02:03:d3:12:a6:57:23:92:83:57:8f:a4:52:a2:e4:5a: ee:bc:6d:71:7b:ec:8f:09:0b:56:35:f4:34:4a:8d:77:a3:7e: 1c:da:46:81:bb:a4:01:ac:37:c6:7d:55:6a:a2:45:af:32:7a: 0b:51:22:21:26:e8:0d:9d:66:48:29:9e:2c:2a:92:9b:a1:a0: c1:27:bd:99 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSs2nJfyce7ops2QrXaYNWSBvankwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTlaFw0yNjA3MDMwNjUyNTlaMDMxMTAvBgNV BAMTKEQ3QjA1N0MyOTYyMUFBRDJFOUYxMUNBMzIxNEM5RkI2NkE4M0IyNkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpZIaRjSolDf8mmuteVsxbJ/5W BhQIIMoXa14H83xnlv9cVXC/gM3X7L3vpC9E0Svz0desNJskSmCy/z/bHPGarRxz 77WQURtwpT+GWAJhCpiPGWi707ANGc9xx7DKDk+adR3wBm5oHiuFy0dftuSPmC9p RnvJytlZrFx5guITZtHwqw/LN7XG64FMUfDX+Wds6uRTwGJjkwwgrCEiz2euFg+c 6lKiAqlVupZvLo/1qWWTWIeiQ7DrL9IwW+Dhqh3t6eHR0egOjIcU+YWU7VdQA1BY FN/seu8VogFgYSZuzHPEQDUmHcAVm/AJWpsUn5Y2NNqU3nXuy5o11/YlYwe1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU17BXwpYhqtLp8RyjIUyftmqDsmwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLgwDQYJKoZIhvcNAQELBQADggEBAA4r sCRJZuxN8r2TW+jCTFYmXY9O+3CpKFI6xjsjpedMU0Xq2ZRwP/yEVwqVfwmVl4Mn GwSHnWXJpYodUvXxUsQAJi8FRyzYJvUpS/ZOTq0eceoMjOdMFPcunri7rllzVoOn t/zl0WmvG5j2tNvmOLb6kOceJS/CyaA2k9qzKBkpUeA5YfZ6pDIjc3R6DWcH7WhT 6FFtrR7luM/gYF0/ZboQYdeYDnzI4YS+GYxgGcyUUEUctZ2tAgPTEqZXI5KDV4+k UqLkWu68bXF77I8JC1Y19DRKjXejfhzaRoG7pAGsN8Z9VWqiRa8yegtRIiEm6A2d ZkgpniwqkpuhoMEnvZk= -----END CERTIFICATE-----Generated at Sat Jul 5 03:49:02 2025 by rpki-client