$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200882.roa File: AS200882.roa (raw, json) Hash identifier: LnblJNBZiNEaEY0wso2XkAU8x5/3qPaUNTZNpoh1khM= Subject key identifier: C2:81:FD:FC:FF:5A:77:C7:96:3D:F7:F2:A8:8D:B3:16:C9:57:7C:08 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 042AA2ECC9E04933050969711A7983E1E9E7B2B7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200882.roa Signing time: Fri 04 Jul 2025 06:53:17 +0000 ROA not before: Fri 04 Jul 2025 06:48:17 +0000 ROA not after: Fri 03 Jul 2026 06:53:17 +0000 asID: 200882 IP address blocks: 2a0a:6040:e600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:2a:a2:ec:c9:e0:49:33:05:09:69:71:1a:79:83:e1:e9:e7:b2:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:17 2025 GMT Not After : Jul 3 06:53:17 2026 GMT Subject: CN=C281FDFCFF5A77C7963DF7F2A88DB316C9577C08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:27:bb:63:75:4d:57:b1:bf:e5:f2:a2:41:db: 3c:6f:08:db:ac:df:ae:e3:0c:ab:97:a3:c1:f2:78: 7f:9f:fd:fd:71:70:26:cd:57:4d:19:55:68:07:eb: ce:6e:17:5d:3a:eb:2f:61:57:34:52:d6:18:f8:d8: 36:05:14:14:f8:53:6b:25:d7:34:bd:53:33:b8:b0: ef:07:4b:7d:a3:ca:30:7b:b8:a8:91:f3:5d:36:b0: 96:a8:cc:d8:5e:73:0f:b1:2d:fb:f1:a8:66:1c:14: 15:d3:cd:40:58:60:fd:8b:8c:bd:5c:2a:80:db:d7: e6:2c:2f:88:01:53:37:1a:82:3f:db:86:3d:23:95: 91:1e:d9:a5:9d:c5:09:14:0b:6d:6d:b7:f3:62:a9: e9:b3:a0:c1:40:bd:80:18:d6:e9:6a:61:29:f1:50: a7:ee:1c:a8:4c:a2:1f:9a:38:cc:83:31:5f:62:9d: 77:a9:a6:42:ce:35:94:d5:14:bd:8c:79:46:58:d2: 35:ba:39:ac:31:4c:b6:e7:1a:d6:4c:05:e2:c8:d3: e0:53:94:c7:19:2d:b0:f8:b9:4d:18:36:84:9f:ae: ee:ae:94:3c:0a:7d:30:1f:14:72:40:a7:84:36:2a: ab:a1:c9:1e:8f:8e:60:51:06:cf:16:36:5c:5e:67: c9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:81:FD:FC:FF:5A:77:C7:96:3D:F7:F2:A8:8D:B3:16:C9:57:7C:08 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200882.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e600::/40 Signature Algorithm: sha256WithRSAEncryption cc:40:d9:2e:bb:af:ab:38:ac:9b:ab:ab:10:f1:4c:9a:9f:ac: 8d:a3:c9:56:22:fc:9e:f1:85:76:6c:d6:fb:d4:de:c0:9a:96: 68:6c:b3:0d:49:33:b4:38:bf:1f:da:bd:1f:4a:73:4d:b5:a6: b9:f2:18:93:2a:a4:7b:15:fa:e5:a0:e5:76:4f:e7:4b:a4:6a: 69:ba:1d:b6:16:e7:9b:f1:62:1b:09:72:fb:e8:c4:e1:ca:79: 5b:15:f8:ee:16:ea:0c:38:31:fe:cb:7f:f4:ae:e7:da:05:29: 1d:03:58:f6:f3:d5:27:0a:c1:5c:61:56:69:c2:04:3f:9b:58: 4e:60:a1:d0:ef:c4:7f:80:f3:0c:b2:35:0e:06:0c:c6:04:2a: 93:f9:36:1c:98:a3:28:4a:43:e8:3c:66:74:cd:9a:58:59:29: b1:9c:0c:86:d6:2a:38:31:32:23:c4:55:72:f0:12:1c:8b:36: 68:be:70:ea:49:7f:4e:5a:55:83:50:cf:e4:f5:fa:40:aa:6a: 4f:5b:27:74:93:aa:1e:94:aa:d2:84:9e:11:af:dd:e0:ce:41: e5:1e:41:1c:9d:4d:d6:bb:2e:93:3d:3a:4d:92:dc:ec:8a:ea: 82:ff:2b:26:ee:95:97:fd:31:37:5e:dc:e2:fc:7a:67:ad:f5: da:1e:34:b9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBCqi7MngSTMFCWlxGnmD4ennsrcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTdaFw0yNjA3MDMwNjUzMTdaMDMxMTAvBgNV BAMTKEMyODFGREZDRkY1QTc3Qzc5NjNERjdGMkE4OERCMzE2Qzk1NzdDMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChJ7tjdU1Xsb/l8qJB2zxvCNus 367jDKuXo8HyeH+f/f1xcCbNV00ZVWgH685uF1066y9hVzRS1hj42DYFFBT4U2sl 1zS9UzO4sO8HS32jyjB7uKiR8102sJaozNhecw+xLfvxqGYcFBXTzUBYYP2LjL1c KoDb1+YsL4gBUzcagj/bhj0jlZEe2aWdxQkUC21tt/NiqemzoMFAvYAY1ulqYSnx UKfuHKhMoh+aOMyDMV9inXeppkLONZTVFL2MeUZY0jW6OawxTLbnGtZMBeLI0+BT lMcZLbD4uU0YNoSfru6ulDwKfTAfFHJAp4Q2KquhyR6PjmBRBs8WNlxeZ8kJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwoH9/P9ad8eWPffyqI2zFslXfAgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODgyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOYwDQYJKoZIhvcNAQELBQADggEBAMxA 2S67r6s4rJurqxDxTJqfrI2jyVYi/J7xhXZs1vvU3sCalmhssw1JM7Q4vx/avR9K c021prnyGJMqpHsV+uWg5XZP50ukamm6HbYW55vxYhsJcvvoxOHKeVsV+O4W6gw4 Mf7Lf/Su59oFKR0DWPbz1ScKwVxhVmnCBD+bWE5godDvxH+A8wyyNQ4GDMYEKpP5 NhyYoyhKQ+g8ZnTNmlhZKbGcDIbWKjgxMiPEVXLwEhyLNmi+cOpJf05aVYNQz+T1 +kCqak9bJ3STqh6UqtKEnhGv3eDOQeUeQRydTda7LpM9Ok2S3OyK6oL/KybulZf9 MTde3OL8emet9doeNLk= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:31 2025 by rpki-client