$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200766.roa File: AS200766.roa (raw, json) Hash identifier: Db5MlSxD8A+KvlbDsfN8r8YjPx1ckvtruN84YzODZ0E= Subject key identifier: FC:73:E4:E4:6E:20:5D:C0:BC:8C:B7:60:5B:8D:E5:6C:05:69:49:74 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 63FAF6534F29D56481B64285D07722618E6DE8FB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200766.roa Signing time: Fri 04 Jul 2025 06:53:17 +0000 ROA not before: Fri 04 Jul 2025 06:48:17 +0000 ROA not after: Fri 03 Jul 2026 06:53:17 +0000 asID: 200766 IP address blocks: 2a0a:6040:c100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:fa:f6:53:4f:29:d5:64:81:b6:42:85:d0:77:22:61:8e:6d:e8:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:17 2025 GMT Not After : Jul 3 06:53:17 2026 GMT Subject: CN=FC73E4E46E205DC0BC8CB7605B8DE56C05694974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:27:96:81:ed:6d:f2:55:83:70:03:b5:d1:7e: 6b:46:b6:52:dc:3f:1a:bb:92:00:ae:b7:63:12:a6: e0:7e:3a:1f:a2:51:6b:e0:66:ce:30:10:45:bb:17: d6:98:02:97:ab:5b:2a:28:7c:94:29:1f:4f:bf:a2: d8:dc:df:c8:e5:28:d8:ca:de:ec:b7:e0:d8:1f:7c: a3:9a:e0:14:5a:38:25:00:3d:cb:63:e6:39:1a:9a: a2:2e:df:79:50:27:4b:0a:e4:e3:90:fb:25:0f:40: f2:f3:3f:5e:bf:52:04:b5:09:0a:36:3b:4f:ed:7c: d3:55:ff:f5:3d:4a:75:b4:71:88:28:2c:88:61:17: 23:35:8d:c2:b4:59:e3:46:17:dc:a9:5d:bd:e5:e9: 7a:2a:19:02:5f:e7:e2:6c:88:5a:fe:d4:33:6a:3c: 6a:8c:46:ce:22:92:21:a0:17:af:74:9f:07:cc:01: 48:17:b0:1d:34:4e:f5:fb:64:88:b1:8c:37:e0:61: 18:70:0d:2f:04:cc:e2:2a:fa:cd:f3:a5:93:c8:7d: a0:54:c8:4f:c1:1f:02:3c:e8:cc:16:8d:e5:7a:f8: 80:84:60:07:f9:1b:b1:66:80:8a:8f:40:7d:da:9d: 6d:2a:c2:2f:88:b6:91:a8:26:cc:21:ec:20:91:7f: 7c:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:73:E4:E4:6E:20:5D:C0:BC:8C:B7:60:5B:8D:E5:6C:05:69:49:74 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200766.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c100::/40 Signature Algorithm: sha256WithRSAEncryption 59:de:4a:54:a5:ec:0a:74:13:34:28:50:6d:d3:79:b4:02:a2: da:79:c8:ec:00:66:68:ea:07:a8:8c:66:4e:45:46:dd:79:f2: 0d:b3:bf:0a:0a:51:cf:17:43:c7:5c:93:5b:c8:5b:08:91:ad: ea:13:a3:c6:8f:aa:83:53:e7:c8:31:b8:ea:f3:88:1f:30:0a: a7:28:7a:dc:b5:74:19:a6:eb:32:ac:a4:15:94:7e:11:3d:5e: 1f:26:f2:5f:84:c2:29:d6:af:39:c2:74:24:6f:5f:fc:db:68: d8:20:85:53:0e:80:86:2e:6a:1c:ce:79:f8:b0:ab:96:86:8d: 99:1c:f2:10:2d:3e:7b:8f:6e:20:74:39:bc:80:93:7c:f3:7b: 65:36:d9:d7:bc:18:b7:96:31:9f:a3:c6:7c:f0:a0:1d:df:27: 46:b4:e5:9a:0d:d6:8b:ed:d6:6a:d1:5f:91:38:b1:7c:c0:12: 83:4f:18:6c:7a:62:1b:24:0f:85:f6:9a:e5:75:da:dc:5e:f2: cd:56:9b:99:7c:95:01:9c:9b:9c:7c:d8:64:51:c3:dc:67:55: 64:0d:36:94:e5:45:89:0d:78:c7:75:1a:68:8c:79:63:37:26: 9b:8b:02:61:21:e9:ca:5f:a9:f3:74:74:cb:20:39:9f:d8:72: c3:b8:99:bb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUY/r2U08p1WSBtkKF0HciYY5t6PswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTdaFw0yNjA3MDMwNjUzMTdaMDMxMTAvBgNV BAMTKEZDNzNFNEU0NkUyMDVEQzBCQzhDQjc2MDVCOERFNTZDMDU2OTQ5NzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIJ5aB7W3yVYNwA7XRfmtGtlLc Pxq7kgCut2MSpuB+Oh+iUWvgZs4wEEW7F9aYAperWyoofJQpH0+/otjc38jlKNjK 3uy34NgffKOa4BRaOCUAPctj5jkamqIu33lQJ0sK5OOQ+yUPQPLzP16/UgS1CQo2 O0/tfNNV//U9SnW0cYgoLIhhFyM1jcK0WeNGF9ypXb3l6XoqGQJf5+JsiFr+1DNq PGqMRs4ikiGgF690nwfMAUgXsB00TvX7ZIixjDfgYRhwDS8EzOIq+s3zpZPIfaBU yE/BHwI86MwWjeV6+ICEYAf5G7FmgIqPQH3anW0qwi+ItpGoJswh7CCRf3z/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/HPk5G4gXcC8jLdgW43lbAVpSXQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMEwDQYJKoZIhvcNAQELBQADggEBAFne SlSl7Ap0EzQoUG3TebQCotp5yOwAZmjqB6iMZk5FRt158g2zvwoKUc8XQ8dck1vI WwiRreoTo8aPqoNT58gxuOrziB8wCqcoety1dBmm6zKspBWUfhE9Xh8m8l+EwinW rznCdCRvX/zbaNgghVMOgIYuahzOefiwq5aGjZkc8hAtPnuPbiB0ObyAk3zze2U2 2de8GLeWMZ+jxnzwoB3fJ0a05ZoN1ovt1mrRX5E4sXzAEoNPGGx6YhskD4X2muV1 2txe8s1Wm5l8lQGcm5x82GRRw9xnVWQNNpTlRYkNeMd1GmiMeWM3JpuLAmEh6cpf qfN0dMsgOZ/YcsO4mbs= -----END CERTIFICATE-----Generated at Sat Jul 5 03:48:09 2025 by rpki-client