$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200791.roa File: AS200791.roa (raw, json) Hash identifier: vPT6hJlrHQaDmsmltiQB903MWa9GEYKTXsjvUdxYG8o= Subject key identifier: 75:EC:FF:62:21:B0:70:84:6C:F5:F3:D5:65:64:63:87:F1:71:03:3A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 073D65E7280CA98D0F64E88583FB5E3D04F0CAB7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200791.roa Signing time: Fri 05 Jun 2026 07:12:20 +0000 ROA not before: Fri 05 Jun 2026 07:07:20 +0000 ROA not after: Fri 04 Jun 2027 07:12:20 +0000 asID: 200791 IP address blocks: 2a0a:6040:bb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 22:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3d:65:e7:28:0c:a9:8d:0f:64:e8:85:83:fb:5e:3d:04:f0:ca:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:20 2026 GMT Not After : Jun 4 07:12:20 2027 GMT Subject: CN=75ECFF6221B070846CF5F3D565646387F171033A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:00:d3:f8:4d:05:0e:a2:94:15:51:a6:99:77: bd:a6:13:89:e2:a0:9c:87:c9:71:34:77:96:bf:24: 53:43:cc:28:31:69:50:53:75:4f:d1:4d:54:b1:ef: c6:ad:a7:36:42:75:14:20:6a:33:6a:f0:28:f8:d7: 93:b7:f0:78:b9:d3:0e:76:4e:36:4c:44:d6:5a:3c: be:ce:6a:13:63:4a:e7:2a:70:37:a6:21:48:67:06: 77:43:dd:4e:07:0b:29:c7:2a:6a:1c:62:ae:01:bf: e2:e0:e1:27:fc:63:e1:67:99:16:08:54:39:8d:97: 03:62:41:20:d3:f5:49:dc:0d:5c:38:c6:42:23:3c: eb:66:d8:9a:0e:4f:47:0d:6c:b3:a9:8a:95:19:6c: 29:a7:d7:e0:a4:1f:a7:8e:e6:74:cf:ef:d5:b3:58: 3c:ac:04:1d:49:03:76:07:84:a5:a1:7c:42:4d:0a: ee:b5:6d:f7:cb:a5:d9:1b:18:f1:76:30:d5:96:a9: d9:d3:2b:62:0b:fd:5a:0d:03:2e:8f:4b:9c:2d:6a: e0:ea:a1:58:ce:cb:34:9c:9b:aa:34:89:7e:8a:49: a8:4e:f1:b5:5b:2d:d5:90:c4:ba:cb:18:65:21:a1: e7:99:ba:6f:7a:8c:50:8f:02:50:c6:aa:5c:85:41: 29:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EC:FF:62:21:B0:70:84:6C:F5:F3:D5:65:64:63:87:F1:71:03:3A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200791.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bb00::/40 Signature Algorithm: sha256WithRSAEncryption cc:b3:05:87:2d:fa:f7:92:b7:95:0c:45:d8:ae:74:94:cc:69: 7d:e1:d3:76:79:ef:3b:0f:37:e4:0f:57:c0:ae:21:12:31:6c: 0c:ba:f1:24:11:2c:46:0b:46:44:d5:19:fc:d4:3c:b7:c1:e2: 89:86:43:24:9a:75:fc:b2:eb:3c:58:c3:c8:1a:45:d9:e9:f2: cf:70:5b:07:15:be:6a:de:f6:c9:cf:57:69:83:4f:58:ae:4b: 9d:d8:98:64:7f:9e:26:3a:21:e5:ed:47:70:ee:56:33:c7:8c: 4b:58:b5:16:8e:04:92:6e:c1:9a:c8:f6:3c:0f:f1:3e:c4:d1: b5:fd:36:f6:83:3c:36:48:68:0d:12:98:ee:00:48:40:f7:e7: d0:27:66:d8:27:5d:16:b2:9e:f3:0a:96:b1:01:96:40:9a:59: 60:0e:09:40:b6:17:c3:db:a6:1d:fb:e3:29:04:76:2f:3c:ae: 18:ea:16:cc:b9:c3:11:c2:70:71:96:98:45:23:36:cc:71:c8: 72:b4:62:15:a0:3f:f0:21:a0:a3:9c:72:23:ad:58:97:6b:52: e5:2b:af:13:5b:11:7a:e9:85:5f:06:fe:ce:37:d9:8f:d9:dd: 14:a5:e5:b5:3f:bc:66:42:05:f7:9b:4f:35:07:47:21:45:bf: ca:5b:94:75 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBz1l5ygMqY0PZOiFg/tePQTwyrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjBaFw0yNzA2MDQwNzEyMjBaMDMxMTAvBgNV BAMTKDc1RUNGRjYyMjFCMDcwODQ2Q0Y1RjNENTY1NjQ2Mzg3RjE3MTAzM0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtANP4TQUOopQVUaaZd72mE4ni oJyHyXE0d5a/JFNDzCgxaVBTdU/RTVSx78atpzZCdRQgajNq8Cj415O38Hi50w52 TjZMRNZaPL7OahNjSucqcDemIUhnBndD3U4HCynHKmocYq4Bv+Lg4Sf8Y+FnmRYI VDmNlwNiQSDT9UncDVw4xkIjPOtm2JoOT0cNbLOpipUZbCmn1+CkH6eO5nTP79Wz WDysBB1JA3YHhKWhfEJNCu61bffLpdkbGPF2MNWWqdnTK2IL/VoNAy6PS5wtauDq oVjOyzScm6o0iX6KSahO8bVbLdWQxLrLGGUhoeeZum96jFCPAlDGqlyFQSljAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdez/YiGwcIRs9fPVZWRjh/FxAzowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzkxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLswDQYJKoZIhvcNAQELBQADggEBAMyz BYct+veSt5UMRdiudJTMaX3h03Z57zsPN+QPV8CuIRIxbAy68SQRLEYLRkTVGfzU PLfB4omGQySadfyy6zxYw8gaRdnp8s9wWwcVvmre9snPV2mDT1iuS53YmGR/niY6 IeXtR3DuVjPHjEtYtRaOBJJuwZrI9jwP8T7E0bX9NvaDPDZIaA0SmO4ASED359An ZtgnXRaynvMKlrEBlkCaWWAOCUC2F8Pbph374ykEdi88rhjqFsy5wxHCcHGWmEUj NsxxyHK0YhWgP/AhoKOcciOtWJdrUuUrrxNbEXrphV8G/s432Y/Z3RSl5bU/vGZC BfebTzUHRyFFv8pblHU= -----END CERTIFICATE-----Generated at Fri Jun 12 07:02:47 2026 by rpki-client