$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200840.roa File: AS200840.roa (raw, json) Hash identifier: su/IbV2IQdaI+UXEzBy3kETo4RznNRLnUOuMVS/tbQY= Subject key identifier: E0:D7:D2:CD:22:C3:3E:A8:74:B1:ED:DA:ED:C1:F3:0B:28:65:85:B5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 663F2C91F3DE553332E1D950B804876968715E7A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200840.roa Signing time: Fri 04 Jul 2025 06:53:22 +0000 ROA not before: Fri 04 Jul 2025 06:48:22 +0000 ROA not after: Fri 03 Jul 2026 06:53:22 +0000 asID: 200840 IP address blocks: 2a0a:6040:c400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:3f:2c:91:f3:de:55:33:32:e1:d9:50:b8:04:87:69:68:71:5e:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:22 2025 GMT Not After : Jul 3 06:53:22 2026 GMT Subject: CN=E0D7D2CD22C33EA874B1EDDAEDC1F30B286585B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c9:78:d8:fc:6e:e1:56:38:0e:55:42:5e:1e: f5:a6:92:11:de:54:c2:dd:70:bf:ab:cd:de:04:7d: 2f:f9:07:3f:14:07:92:29:89:9d:6a:7d:b5:a0:43: 02:0d:cd:b7:6c:7e:84:9c:4b:0f:1b:29:e7:5d:bd: 95:e9:1e:b2:83:f4:0d:55:65:18:fe:56:db:6c:c6: d8:d3:2a:cf:51:a1:c3:08:ec:38:7e:d8:85:2f:d7: 70:1e:62:7a:4e:26:67:66:68:a8:c5:f8:72:46:05: 63:33:fe:18:a4:62:d0:4b:7f:05:c1:3b:04:ca:6b: 84:14:7e:af:20:6a:27:b4:bb:fc:9c:98:8b:b1:0e: 4f:e8:e8:03:73:d8:d0:64:de:82:ed:84:c8:a0:c9: 63:8a:d5:8b:1e:69:24:9b:be:d8:b5:cb:a3:d0:e6: f1:1b:5d:a9:36:da:86:ff:29:f6:08:82:82:e5:0d: 5a:c1:e2:55:a9:e3:6d:88:b0:ce:c6:3d:36:54:89: 6b:36:30:d7:0c:5b:26:a3:72:6e:a4:95:52:7e:c8: e5:17:6c:8e:2e:68:8b:75:23:0f:94:ea:f2:70:4f: 2f:e0:cd:f0:3e:c0:48:cf:11:51:7f:f1:41:cc:dc: 38:a7:fa:3d:0b:3a:2b:67:76:a2:75:bc:b2:da:a5: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:D7:D2:CD:22:C3:3E:A8:74:B1:ED:DA:ED:C1:F3:0B:28:65:85:B5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c400::/40 Signature Algorithm: sha256WithRSAEncryption 39:5e:9f:3d:88:57:aa:ae:55:cd:11:9c:5e:cc:a6:7f:4c:5a: 07:05:83:a9:90:2c:58:e1:71:c2:36:30:ff:8a:48:71:df:13: b3:93:7e:9d:52:3e:de:33:54:c1:b9:bc:87:88:9e:3f:35:4d: 6a:e3:15:09:3d:2d:dc:f5:ee:3b:4e:4e:ce:16:66:da:09:24: d8:9c:d1:3c:25:fa:12:8b:9e:c5:da:b6:14:10:fb:2e:b8:e2: 8a:08:e9:24:95:d3:29:b1:6f:11:ba:a6:8c:d2:62:e7:b9:5c: 69:1e:7b:46:f3:96:77:8f:84:20:3c:a1:e4:c5:ed:3c:d2:7d: d0:f6:52:f7:24:fa:3c:b1:ee:25:30:0c:2c:c2:f7:42:45:af: e9:b4:77:9c:d0:02:f0:db:53:eb:e4:4a:74:56:56:ad:b0:7b: 97:0e:49:e5:e6:97:66:75:eb:ab:10:a7:74:1f:ba:9f:7b:94: d0:4d:f8:46:02:20:d1:a6:d0:4d:bb:d1:14:f8:b8:07:c4:a0: 59:63:13:58:1f:ab:19:fa:6d:aa:1e:ee:90:90:ad:77:69:47: 7e:76:22:af:06:1f:19:7c:cb:db:15:13:ca:21:21:2b:c5:b7: 44:c2:6d:d7:39:7c:a7:4c:9e:88:6f:8a:76:39:4d:1a:38:a8: b0:33:5f:c8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZj8skfPeVTMy4dlQuASHaWhxXnowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjJaFw0yNjA3MDMwNjUzMjJaMDMxMTAvBgNV BAMTKEUwRDdEMkNEMjJDMzNFQTg3NEIxRUREQUVEQzFGMzBCMjg2NTg1QjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNyXjY/G7hVjgOVUJeHvWmkhHe VMLdcL+rzd4EfS/5Bz8UB5IpiZ1qfbWgQwINzbdsfoScSw8bKeddvZXpHrKD9A1V ZRj+VttsxtjTKs9RocMI7Dh+2IUv13AeYnpOJmdmaKjF+HJGBWMz/hikYtBLfwXB OwTKa4QUfq8gaie0u/ycmIuxDk/o6ANz2NBk3oLthMigyWOK1YseaSSbvti1y6PQ 5vEbXak22ob/KfYIgoLlDVrB4lWp422IsM7GPTZUiWs2MNcMWyajcm6klVJ+yOUX bI4uaIt1Iw+U6vJwTy/gzfA+wEjPEVF/8UHM3Din+j0LOitndqJ1vLLapaTvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4NfSzSLDPqh0se3a7cHzCyhlhbUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMQwDQYJKoZIhvcNAQELBQADggEBADle nz2IV6quVc0RnF7Mpn9MWgcFg6mQLFjhccI2MP+KSHHfE7OTfp1SPt4zVMG5vIeI nj81TWrjFQk9Ldz17jtOTs4WZtoJJNic0Twl+hKLnsXathQQ+y644ooI6SSV0ymx bxG6pozSYue5XGkee0bzlnePhCA8oeTF7TzSfdD2Uvck+jyx7iUwDCzC90JFr+m0 d5zQAvDbU+vkSnRWVq2we5cOSeXml2Z166sQp3Qfup97lNBN+EYCINGm0E270RT4 uAfEoFljE1gfqxn6baoe7pCQrXdpR352Iq8GHxl8y9sVE8ohISvFt0TCbdc5fKdM nohvinY5TRo4qLAzX8g= -----END CERTIFICATE-----Generated at Sat Jul 5 03:49:02 2025 by rpki-client