$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200775.roa File: AS200775.roa (raw, json) Hash identifier: Exa2SNPKRhUOlVNlP1bOczVxgIuoWQSL8NVi61gaNkM= Subject key identifier: 89:60:D0:68:BB:E9:70:87:8C:0D:C1:A9:08:8B:87:AD:57:18:65:E2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5FECD56E3F1EDA9479F465C5915B76329B55541D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200775.roa Signing time: Fri 05 Jun 2026 07:12:46 +0000 ROA not before: Fri 05 Jun 2026 07:07:46 +0000 ROA not after: Fri 04 Jun 2027 07:12:46 +0000 asID: 200775 IP address blocks: 2a0a:6040:c200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 20:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:ec:d5:6e:3f:1e:da:94:79:f4:65:c5:91:5b:76:32:9b:55:54:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:46 2026 GMT Not After : Jun 4 07:12:46 2027 GMT Subject: CN=8960D068BBE970878C0DC1A9088B87AD571865E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:35:83:71:92:6c:01:ae:c0:0d:a1:6a:68: f2:b7:67:a1:e4:11:2c:10:e4:c5:08:de:64:e6:b7: 8a:28:0d:3d:fc:2e:a9:fc:b0:b6:1d:4e:a2:b5:e8: 32:b4:89:20:17:4b:6f:7b:14:d7:0e:96:1c:46:97: 58:fa:6f:42:ed:cf:c4:6e:00:a2:0d:e4:bc:ab:96: 16:bd:c0:db:22:9b:31:0d:b8:9c:4a:46:12:1a:1d: 63:73:28:a4:eb:33:1d:2c:9e:c4:04:5e:d3:5f:33: 78:bb:d8:57:7d:1b:95:a7:96:bf:b2:f9:b6:47:53: 28:3a:fa:15:a2:19:a8:2c:6d:f0:78:7b:32:f9:ad: 3d:b3:da:74:ab:6f:9b:ef:2b:0f:e9:a7:5e:a2:6e: ad:78:f6:79:7c:78:c2:aa:57:b1:5d:a5:93:b0:44: 89:c2:5d:d0:ee:19:88:c6:ac:d3:7b:51:a6:09:27: 20:64:40:c5:e5:5d:3e:72:b6:16:d8:c1:e4:42:91: e2:18:7b:1c:22:46:8c:cb:d0:a8:9f:89:0a:02:d3: d4:07:f7:a1:5c:02:65:f2:c2:87:e6:5b:ee:de:f4: 3c:c4:77:ae:9d:65:01:06:59:f3:46:43:04:e8:10: 36:b3:01:3a:e3:41:c4:c2:a9:75:5c:49:56:b3:17: 4d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:60:D0:68:BB:E9:70:87:8C:0D:C1:A9:08:8B:87:AD:57:18:65:E2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200775.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c200::/40 Signature Algorithm: sha256WithRSAEncryption 8c:00:d6:cf:49:fc:37:6e:10:1c:4a:57:8a:7c:4e:b2:0f:e6: 6c:54:a1:8d:1c:3d:c7:8e:69:36:b2:8f:c6:b5:56:51:af:73: 3f:44:7f:85:5a:1c:7a:26:1f:9e:08:0f:3d:48:b8:f9:d0:1d: 4f:e1:31:90:d4:87:9b:a6:dc:ac:70:96:9b:44:dd:67:da:b2: 04:a9:95:0e:e5:fe:1a:f3:0a:7f:d9:34:e1:ac:96:bb:bc:ef: 00:70:4b:94:06:fa:56:d3:5e:50:c1:86:27:b3:fa:5a:e4:38: 31:cd:f0:83:af:b3:be:0a:e4:7b:8f:19:db:41:86:bb:e3:f3: 1d:1a:8d:dc:68:83:00:a9:75:cf:f5:3c:34:fb:8f:99:78:59: ba:77:5f:cf:f7:7c:b9:62:3d:f9:71:c5:05:a8:68:10:02:ee: d0:69:b2:08:d6:c0:45:b9:f5:01:22:bb:fa:5a:4b:39:82:67: 9c:d8:60:28:1e:ba:6d:12:be:7d:30:70:a5:ac:48:32:59:bc: dc:48:96:0a:76:08:15:6b:89:94:1d:11:aa:10:b5:92:e8:1d: 66:a2:63:0b:9e:88:f9:f3:22:37:79:c7:bd:43:c2:77:65:36: d1:5a:86:32:e0:c7:ca:69:52:75:ea:58:11:c9:40:06:fb:af: 37:8c:3d:94 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX+zVbj8e2pR59GXFkVt2MptVVB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDZaFw0yNzA2MDQwNzEyNDZaMDMxMTAvBgNV BAMTKDg5NjBEMDY4QkJFOTcwODc4QzBEQzFBOTA4OEI4N0FENTcxODY1RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/QDWDcZJsAa7ADaFqaPK3Z6Hk ESwQ5MUI3mTmt4ooDT38Lqn8sLYdTqK16DK0iSAXS297FNcOlhxGl1j6b0Ltz8Ru AKIN5Lyrlha9wNsimzENuJxKRhIaHWNzKKTrMx0snsQEXtNfM3i72Fd9G5Wnlr+y +bZHUyg6+hWiGagsbfB4ezL5rT2z2nSrb5vvKw/pp16ibq149nl8eMKqV7FdpZOw RInCXdDuGYjGrNN7UaYJJyBkQMXlXT5ythbYweRCkeIYexwiRozL0KifiQoC09QH 96FcAmXywofmW+7e9DzEd66dZQEGWfNGQwToEDazATrjQcTCqXVcSVazF02DAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiWDQaLvpcIeMDcGpCIuHrVcYZeIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMIwDQYJKoZIhvcNAQELBQADggEBAIwA 1s9J/DduEBxKV4p8TrIP5mxUoY0cPceOaTayj8a1VlGvcz9Ef4VaHHomH54IDz1I uPnQHU/hMZDUh5um3KxwlptE3WfasgSplQ7l/hrzCn/ZNOGslru87wBwS5QG+lbT XlDBhiez+lrkODHN8IOvs74K5HuPGdtBhrvj8x0ajdxogwCpdc/1PDT7j5l4Wbp3 X8/3fLliPflxxQWoaBAC7tBpsgjWwEW59QEiu/paSzmCZ5zYYCgeum0Svn0wcKWs SDJZvNxIlgp2CBVriZQdEaoQtZLoHWaiYwueiPnzIjd5x71DwndlNtFahjLgx8pp UnXqWBHJQAb7rzeMPZQ= -----END CERTIFICATE-----Generated at Thu Jun 11 23:49:45 2026 by rpki-client