$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200789.roa File: AS200789.roa (raw, json) Hash identifier: thzIosneU/UIqazARZa5fBlD1GgPxzSp8fD9zty5B7Q= Subject key identifier: ED:5D:03:A1:9F:DD:16:EC:EE:7B:86:18:89:B7:3C:78:FE:20:D6:84 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6018D7C9147FB7616BC473C2E2097359792441B7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200789.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 200789 IP address blocks: 2a0a:6040:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:18:d7:c9:14:7f:b7:61:6b:c4:73:c2:e2:09:73:59:79:24:41:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=ED5D03A19FDD16ECEE7B861889B73C78FE20D684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b7:e3:b9:5e:d5:29:0b:ad:b6:24:8f:8a:a4: ca:29:ea:1f:ad:09:5b:87:2f:bc:35:ac:75:27:30: 66:d3:e3:31:12:8d:1a:b3:3c:1e:38:fd:d4:01:19: cc:2c:28:22:ea:c9:84:9c:77:f2:e7:dd:75:c0:f9: 2a:a5:4c:ad:55:26:17:a2:4b:22:48:82:d8:66:2b: 39:09:06:2b:d1:cc:9d:0a:42:bd:57:4c:3c:2d:58: 6e:66:8f:37:49:20:15:03:cd:19:d6:a4:57:6f:82: 6d:e6:21:09:bf:4d:b1:97:c3:3c:a4:0e:ad:78:2d: c4:ab:a2:53:d0:e4:58:d3:8f:10:a4:5c:ee:30:81: 54:c8:c2:1c:4e:b3:7e:ef:93:ab:94:18:dc:cd:3a: bc:fe:09:3c:66:6d:ef:a7:80:8b:5e:06:38:d5:2c: aa:b1:70:af:58:51:e1:78:0a:98:3c:e9:4f:9e:52: ce:e6:7d:a0:81:92:59:91:72:49:84:ff:54:4a:93: 5f:69:ec:4c:1d:6c:49:67:f0:ab:d1:86:12:2f:64: e3:9e:39:ca:12:78:af:fd:75:a3:68:dd:4f:4c:26: 93:2b:45:49:43:c0:62:ed:de:b6:b1:98:b0:81:1a: a7:8c:80:27:4a:ee:e0:c0:0c:4f:51:e4:2d:56:f2: 20:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:5D:03:A1:9F:DD:16:EC:EE:7B:86:18:89:B7:3C:78:FE:20:D6:84 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200789.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b700::/40 Signature Algorithm: sha256WithRSAEncryption 5e:c5:06:25:ad:d5:09:20:ad:15:fe:0f:57:da:37:dc:13:6a: ea:0f:8a:41:81:6a:b8:46:03:61:84:7e:d1:2b:e5:72:cf:9f: df:24:14:85:ad:c1:17:06:99:46:4b:03:64:f2:21:0d:f5:d2: 4c:89:e0:71:a1:09:3d:b6:91:1c:f4:89:7f:60:fc:be:87:b8: f1:72:ad:10:1d:b5:76:fe:84:d9:82:90:4e:de:c4:38:db:ca: 84:d5:0e:b5:3c:b8:4f:a2:14:4a:60:3f:eb:62:54:ee:ff:a0: aa:ae:fa:05:a0:b4:b3:ac:1a:4a:f9:1c:06:a1:fd:6a:a1:a2: 3f:99:87:65:15:85:f7:6f:29:9a:ea:b1:b1:f0:82:78:dd:61: e5:d7:0e:53:b0:d5:43:2d:d3:77:7d:81:b6:e3:1c:68:6f:f1: a4:7d:db:d7:25:17:e5:fd:ed:55:30:09:7f:e4:ec:b2:ef:97: b7:54:b0:4e:83:7d:7e:b2:5f:2c:0d:e6:ba:2a:0c:5c:b6:45: 00:18:78:bb:fe:51:64:27:ea:ec:13:4e:f2:3d:ef:1d:bb:43: 3e:08:03:e3:12:c2:1e:9f:8e:96:86:e9:2d:bd:59:4a:89:25: e5:30:79:ea:cb:9f:66:15:a9:4a:bf:c2:c7:ed:9c:7e:4f:60: e3:2b:ce:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYBjXyRR/t2FrxHPC4glzWXkkQbcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKEVENUQwM0ExOUZERDE2RUNFRTdCODYxODg5QjczQzc4RkUyMEQ2ODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXt+O5XtUpC622JI+KpMop6h+t CVuHL7w1rHUnMGbT4zESjRqzPB44/dQBGcwsKCLqyYScd/Ln3XXA+SqlTK1VJhei SyJIgthmKzkJBivRzJ0KQr1XTDwtWG5mjzdJIBUDzRnWpFdvgm3mIQm/TbGXwzyk Dq14LcSrolPQ5FjTjxCkXO4wgVTIwhxOs37vk6uUGNzNOrz+CTxmbe+ngIteBjjV LKqxcK9YUeF4Cpg86U+eUs7mfaCBklmRckmE/1RKk19p7EwdbEln8KvRhhIvZOOe OcoSeK/9daNo3U9MJpMrRUlDwGLt3raxmLCBGqeMgCdK7uDADE9R5C1W8iCpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7V0DoZ/dFuzue4YYibc8eP4g1oQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLcwDQYJKoZIhvcNAQELBQADggEBAF7F BiWt1QkgrRX+D1faN9wTauoPikGBarhGA2GEftEr5XLPn98kFIWtwRcGmUZLA2Ty IQ310kyJ4HGhCT22kRz0iX9g/L6HuPFyrRAdtXb+hNmCkE7exDjbyoTVDrU8uE+i FEpgP+tiVO7/oKqu+gWgtLOsGkr5HAah/Wqhoj+Zh2UVhfdvKZrqsbHwgnjdYeXX DlOw1UMt03d9gbbjHGhv8aR929clF+X97VUwCX/k7LLvl7dUsE6DfX6yXywN5roq DFy2RQAYeLv+UWQn6uwTTvI97x27Qz4IA+MSwh6fjpaG6S29WUqJJeUweerLn2YV qUq/wsftnH5PYOMrzq0= -----END CERTIFICATE-----Generated at Sat Jul 5 06:11:01 2025 by rpki-client