$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200853.roa File: AS200853.roa (raw, json) Hash identifier: Esdr7yOZPBiXuabz7Aw3NFQrlY8xzGGXBFSn7+4nbWs= Subject key identifier: 71:7D:A8:F9:4D:8A:69:31:A5:FC:94:CF:E9:89:2D:0B:A5:11:96:04 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3BF79A6629DFC71E85766B3F4E89E2C906513DCF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200853.roa Signing time: Fri 04 Jul 2025 06:53:09 +0000 ROA not before: Fri 04 Jul 2025 06:48:09 +0000 ROA not after: Fri 03 Jul 2026 06:53:09 +0000 asID: 200853 IP address blocks: 2a0a:6040:e00::/40 maxlen: 48 2a0a:6040:c600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:f7:9a:66:29:df:c7:1e:85:76:6b:3f:4e:89:e2:c9:06:51:3d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:09 2025 GMT Not After : Jul 3 06:53:09 2026 GMT Subject: CN=717DA8F94D8A6931A5FC94CFE9892D0BA5119604 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:49:8b:a0:7a:cd:af:ef:22:b6:a3:a5:68:44: d6:54:cd:67:f7:d0:13:6c:d3:a3:fc:e0:10:54:f7: 66:11:1e:e0:4f:3e:9d:77:5c:1a:8b:2b:b2:f9:48: 74:11:98:81:74:da:15:25:8b:0a:38:e2:ab:d4:e3: bb:f7:09:42:22:21:36:44:52:7a:10:33:91:70:70: d3:f2:a0:c9:06:d5:fd:35:67:80:3a:9c:e3:e2:6c: 1c:d9:7b:a5:0c:b0:96:c9:42:b9:2d:fb:41:af:c8: 2d:bd:40:0d:6b:ea:39:2c:8f:95:54:c4:5a:3c:3f: 49:01:30:a4:38:80:fb:94:3c:65:9f:0e:76:92:86: d9:f1:c3:7f:53:73:0d:0b:4b:21:4c:2b:95:26:6c: e7:c3:50:71:5f:70:06:4c:5c:e7:19:15:eb:70:99: a7:9f:d8:2f:9e:0c:d2:9a:5d:70:e7:da:7e:fd:20: 28:a2:b9:66:ff:86:61:05:35:7a:56:da:c5:26:e8: a3:de:82:27:3c:93:41:41:a0:cf:cf:28:28:3e:22: d2:37:72:a4:25:66:1b:d3:83:1c:24:d2:67:55:c2: a1:a8:67:67:a8:ea:df:74:03:c2:10:c1:e4:1f:55: 04:93:3b:fc:65:1f:cd:e9:37:f8:73:05:69:29:f0: 9c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7D:A8:F9:4D:8A:69:31:A5:FC:94:CF:E9:89:2D:0B:A5:11:96:04 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200853.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e00::/40 2a0a:6040:c600::/40 Signature Algorithm: sha256WithRSAEncryption c4:a4:c5:ed:45:58:30:b0:23:d6:2e:25:8d:1c:e6:ec:d8:22: fb:7a:95:55:4e:ba:69:ae:76:1f:68:73:f0:1f:b6:14:ae:82: 34:d5:c6:31:e1:82:99:d7:01:45:eb:e5:8c:66:cc:80:e8:47: 4d:15:87:1a:66:30:ff:b7:20:91:2e:8e:f3:84:12:10:b9:a3: ee:97:89:8b:f9:37:46:8b:b5:74:54:65:8f:75:bf:a4:f4:43: 42:4e:07:6c:d8:5f:c8:ec:cf:56:c0:15:a5:8d:d5:c9:8f:a8: 41:f2:0f:2f:7f:e3:b0:b9:52:50:0c:07:f1:27:4f:26:42:67: bb:ce:a8:38:07:62:fd:f4:ec:a5:ca:82:c6:6f:4f:b0:04:d5: 87:6b:9b:60:d4:19:26:83:1b:d4:bd:3d:9c:d8:66:8b:f5:f6: 4d:4c:3b:13:6c:d9:2b:ba:23:db:df:c5:52:e2:cc:7e:bf:54: 5b:26:93:d2:7c:86:0a:52:42:9f:19:5e:41:17:e0:8b:f9:75: e3:f6:06:1b:ec:d7:16:cb:10:0a:db:00:f8:c2:ac:87:1a:a4: 5b:eb:6a:af:f6:91:0e:00:75:29:a4:2a:89:e4:90:9c:a4:04: 53:8e:96:85:33:13:08:10:a9:09:58:fe:53:73:4e:0a:cf:da: 34:7d:08:61 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUO/eaZinfxx6Fdms/ToniyQZRPc8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDlaFw0yNjA3MDMwNjUzMDlaMDMxMTAvBgNV BAMTKDcxN0RBOEY5NEQ4QTY5MzFBNUZDOTRDRkU5ODkyRDBCQTUxMTk2MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbSYuges2v7yK2o6VoRNZUzWf3 0BNs06P84BBU92YRHuBPPp13XBqLK7L5SHQRmIF02hUliwo44qvU47v3CUIiITZE UnoQM5FwcNPyoMkG1f01Z4A6nOPibBzZe6UMsJbJQrkt+0GvyC29QA1r6jksj5VU xFo8P0kBMKQ4gPuUPGWfDnaShtnxw39Tcw0LSyFMK5UmbOfDUHFfcAZMXOcZFetw maef2C+eDNKaXXDn2n79ICiiuWb/hmEFNXpW2sUm6KPegic8k0FBoM/PKCg+ItI3 cqQlZhvTgxwk0mdVwqGoZ2eo6t90A8IQweQfVQSTO/xlH83pN/hzBWkp8JxJAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUcX2o+U2KaTGl/JTP6YktC6URlgQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODUzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQA4DBgAqCmBAxjANBgkqhkiG9w0BAQsF AAOCAQEAxKTF7UVYMLAj1i4ljRzm7Ngi+3qVVU66aa52H2hz8B+2FK6CNNXGMeGC mdcBRevljGbMgOhHTRWHGmYw/7cgkS6O84QSELmj7peJi/k3Rou1dFRlj3W/pPRD Qk4HbNhfyOzPVsAVpY3VyY+oQfIPL3/jsLlSUAwH8SdPJkJnu86oOAdi/fTspcqC xm9PsATVh2ubYNQZJoMb1L09nNhmi/X2TUw7E2zZK7oj29/FUuLMfr9UWyaT0nyG ClJCnxleQRfgi/l14/YGG+zXFssQCtsA+MKshxqkW+tqr/aRDgB1KaQqieSQnKQE U46WhTMTCBCpCVj+U3NOCs/aNH0IYQ== -----END CERTIFICATE-----Generated at Sat Jul 5 03:53:40 2025 by rpki-client