$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200791.roa File: AS200791.roa (raw, json) Hash identifier: 1i2mEF1VrPGseS/FP/VRvBrXOTJr/fpSaUpBQqbKqZM= Subject key identifier: 56:F0:1B:1E:C5:7A:BB:E3:05:3A:BC:4E:EE:E1:DE:5D:5A:75:CE:43 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1022B5498547F4E654A0BBDF0D9E0C7A8F35E595 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200791.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 200791 IP address blocks: 2a0a:6040:bb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:22:b5:49:85:47:f4:e6:54:a0:bb:df:0d:9e:0c:7a:8f:35:e5:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=56F01B1EC57ABBE3053ABC4EEEE1DE5D5A75CE43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c2:0b:6c:2e:70:04:8f:65:8c:3e:d3:3f:09: 51:e1:8d:bc:04:b7:39:4a:fc:df:49:92:4a:0c:35: 9c:4d:78:a1:e5:a2:ef:a7:7b:00:c1:5f:14:68:e5: e1:c4:d0:a0:12:77:71:9c:2d:5f:8e:85:3f:f3:b3: 38:dd:0d:f9:46:78:3e:92:9f:39:07:35:1a:46:f4: 3e:96:7e:5b:06:dd:e2:24:78:84:0a:9e:f9:b8:60: 21:bf:01:96:a4:59:31:e2:b5:6a:e5:db:1d:32:bd: 70:c3:08:35:aa:66:12:5f:03:b3:84:0e:53:12:cd: a8:22:29:2c:ab:69:01:01:03:7f:d7:e2:3e:f4:41: 7b:b2:f8:0b:74:41:d3:3f:13:f2:0d:aa:2a:9a:07: a0:ef:0d:a4:b0:1b:43:dd:d5:21:7d:99:42:8b:ae: 40:47:e9:a2:1e:e5:8a:80:1d:7d:f0:4e:14:69:a7: c0:dd:0a:c4:8d:4d:e8:1a:be:e6:1a:cd:55:6e:bd: a5:fe:77:98:5f:53:bd:ad:e9:32:10:7f:0e:25:4f: b6:06:f0:f9:6d:70:a1:08:ed:fe:5e:26:b3:ac:5b: 4c:57:21:f1:e6:be:20:4b:fb:a2:ae:ee:ec:9c:14: 15:9e:4d:5c:c1:71:fd:8d:d4:e9:aa:b0:7c:ab:b9: 1a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F0:1B:1E:C5:7A:BB:E3:05:3A:BC:4E:EE:E1:DE:5D:5A:75:CE:43 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200791.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bb00::/40 Signature Algorithm: sha256WithRSAEncryption d4:15:3d:d1:40:5b:6d:9e:46:d7:ce:97:d1:2f:12:0b:94:b8: 3e:8b:61:aa:65:c7:fc:3e:8d:30:b6:28:8a:ad:77:b0:1f:23: 40:a4:cb:51:20:a2:48:42:47:66:a8:e9:4d:f1:c0:7b:d1:85: 8b:f8:62:46:d2:e6:47:67:76:e5:c0:f4:aa:37:d7:5d:ca:77: dd:3e:fe:f1:fc:f7:05:bf:5b:af:91:c6:86:3c:16:65:d9:e2: 80:d6:9d:24:37:ed:96:b0:62:c0:74:dc:6e:74:bc:ef:fd:67: f9:b3:a0:8f:ae:83:f1:3b:a4:a5:7d:04:29:c9:b0:af:9e:b9: 96:f6:6e:ab:bb:b0:8b:ea:f1:34:b2:31:e9:db:b6:71:1c:64: 89:d3:48:83:85:4a:bb:27:e7:4f:bd:1c:14:c6:3b:b3:b4:49: 65:16:a9:74:72:76:2e:58:ca:aa:cc:8a:92:ac:8a:0a:e3:30: 58:45:69:0b:d4:d2:7f:61:ce:d6:1b:6f:2f:0e:c6:63:c0:b4: be:20:08:a4:25:c9:3b:b8:14:70:d6:c4:b1:9e:b7:a3:6c:0a: 5d:af:b2:c8:06:08:06:1e:eb:3f:aa:d7:66:49:44:f1:2a:9e: b5:11:fa:21:5a:8b:de:76:bd:d4:88:8c:c6:06:21:25:00:71: 7b:af:3e:1e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUECK1SYVH9OZUoLvfDZ4Meo815ZUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKDU2RjAxQjFFQzU3QUJCRTMwNTNBQkM0RUVFRTFERTVENUE3NUNFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuwgtsLnAEj2WMPtM/CVHhjbwE tzlK/N9JkkoMNZxNeKHlou+newDBXxRo5eHE0KASd3GcLV+OhT/zszjdDflGeD6S nzkHNRpG9D6WflsG3eIkeIQKnvm4YCG/AZakWTHitWrl2x0yvXDDCDWqZhJfA7OE DlMSzagiKSyraQEBA3/X4j70QXuy+At0QdM/E/INqiqaB6DvDaSwG0Pd1SF9mUKL rkBH6aIe5YqAHX3wThRpp8DdCsSNTegavuYazVVuvaX+d5hfU72t6TIQfw4lT7YG 8PltcKEI7f5eJrOsW0xXIfHmviBL+6Ku7uycFBWeTVzBcf2N1OmqsHyruRr1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUVvAbHsV6u+MFOrxO7uHeXVp1zkMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzkxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLswDQYJKoZIhvcNAQELBQADggEBANQV PdFAW22eRtfOl9EvEguUuD6LYaplx/w+jTC2KIqtd7AfI0Cky1EgokhCR2ao6U3x wHvRhYv4YkbS5kdnduXA9Ko3113Kd90+/vH89wW/W6+RxoY8FmXZ4oDWnSQ37Zaw YsB03G50vO/9Z/mzoI+ug/E7pKV9BCnJsK+euZb2bqu7sIvq8TSyMenbtnEcZInT SIOFSrsn50+9HBTGO7O0SWUWqXRydi5YyqrMipKsigrjMFhFaQvU0n9hztYbby8O xmPAtL4gCKQlyTu4FHDWxLGet6NsCl2vssgGCAYe6z+q12ZJRPEqnrUR+iFai952 vdSIjMYGISUAcXuvPh4= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:44 2025 by rpki-client