$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200885.roa File: AS200885.roa (raw, json) Hash identifier: sy/lF5gGbXucd2exL7N5MZx5SP4Zf73+AJ7uDnDf7UM= Subject key identifier: C5:F5:9A:19:B0:5D:A4:48:23:68:05:C2:4F:B3:0D:E5:89:A7:77:23 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5E1EFE3D61D0EBAAED44FE4BBBC322BAE74C433F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200885.roa Signing time: Fri 04 Jul 2025 06:52:59 +0000 ROA not before: Fri 04 Jul 2025 06:47:59 +0000 ROA not after: Fri 03 Jul 2026 06:52:59 +0000 asID: 200885 IP address blocks: 2a0a:6040:ea00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:1e:fe:3d:61:d0:eb:aa:ed:44:fe:4b:bb:c3:22:ba:e7:4c:43:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:59 2025 GMT Not After : Jul 3 06:52:59 2026 GMT Subject: CN=C5F59A19B05DA448236805C24FB30DE589A77723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:29:67:e4:90:7e:37:44:dd:ed:1e:65:09:39: ad:ce:6e:96:1e:d3:4d:e8:04:4a:fa:08:2a:9c:1f: ee:12:99:ab:6c:2d:d5:0d:9b:8c:46:00:b1:7f:60: a4:23:65:5b:b6:c0:13:db:46:e1:1f:63:4e:a5:b7: 91:44:65:62:1a:4c:f6:39:b7:ec:5a:48:ce:0f:e2: 10:f1:3a:aa:78:fe:6a:4d:27:7b:70:55:a2:05:13: c9:a9:1c:45:bd:1f:45:a8:f0:b2:41:bd:da:bf:ac: a3:e2:e9:8e:7c:b6:06:d2:77:dd:44:55:1b:93:3c: a5:56:11:ed:cd:14:22:0f:e1:39:ca:1f:a9:37:c1: d8:5d:75:56:ae:11:a1:e9:7c:08:05:5f:12:9c:25: dc:23:79:e9:e7:e2:aa:09:f6:6a:9f:8f:32:3b:6e: 8f:47:9f:65:67:2b:ee:b1:fb:68:5b:ad:97:a8:c3: 31:ab:c8:66:c6:f6:f4:66:21:2d:8b:da:d4:74:77: b0:fc:80:6d:dd:02:16:5d:04:70:37:21:a3:27:49: 11:75:12:49:65:29:73:8b:91:04:b6:fa:1d:4a:0b: a0:5f:9c:8f:68:6e:a9:1b:0e:30:83:7b:17:bb:e0: 97:6c:5b:ea:47:50:55:fc:32:fc:fa:42:88:3c:3a: 45:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F5:9A:19:B0:5D:A4:48:23:68:05:C2:4F:B3:0D:E5:89:A7:77:23 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200885.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ea00::/40 Signature Algorithm: sha256WithRSAEncryption 6a:40:b1:84:2c:07:5a:14:e7:3c:ac:43:39:fc:8d:d7:29:42: 7b:f9:0c:8b:37:e6:43:6f:ca:b9:d8:97:f6:a8:5a:99:e6:a2: 99:55:c3:ae:3c:06:b1:c3:78:85:d1:af:5f:a5:a5:20:02:e0: 6f:d4:74:8d:65:7a:89:70:d9:62:3b:d7:e8:2f:cf:79:eb:52: 96:f7:ec:76:f6:df:0f:79:90:e1:a0:eb:9e:b6:59:49:2d:2e: 07:1e:52:41:13:8b:b6:b7:6a:63:85:3e:35:48:49:e8:df:31: 7e:7a:ae:ec:41:09:0b:86:06:22:89:b7:ab:3c:a9:02:f3:c8: 07:cb:92:98:c7:aa:87:a7:18:02:2f:2f:d0:e5:08:79:76:cf: f5:f2:62:a2:44:a4:05:52:86:ed:5d:d6:32:f1:d3:06:09:75: 59:4b:16:e3:f1:30:db:2c:24:8c:9f:16:6e:a7:92:4f:fc:18: d5:a2:1b:ca:97:6b:0a:29:e1:0f:86:da:81:39:2c:c2:cb:70: d9:e6:66:4b:19:ff:de:3c:8a:dd:a6:29:bb:bc:f4:5e:d8:e0: 50:90:9a:66:2e:4c:59:70:0d:f9:72:17:3a:ce:9f:a1:dd:2d: f0:8a:8a:32:28:40:f7:0c:c6:42:75:b4:4f:09:66:90:bb:95: a2:28:50:37 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXh7+PWHQ66rtRP5Lu8MiuudMQz8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTlaFw0yNjA3MDMwNjUyNTlaMDMxMTAvBgNV BAMTKEM1RjU5QTE5QjA1REE0NDgyMzY4MDVDMjRGQjMwREU1ODlBNzc3MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZKWfkkH43RN3tHmUJOa3ObpYe 003oBEr6CCqcH+4SmatsLdUNm4xGALF/YKQjZVu2wBPbRuEfY06lt5FEZWIaTPY5 t+xaSM4P4hDxOqp4/mpNJ3twVaIFE8mpHEW9H0Wo8LJBvdq/rKPi6Y58tgbSd91E VRuTPKVWEe3NFCIP4TnKH6k3wdhddVauEaHpfAgFXxKcJdwjeenn4qoJ9mqfjzI7 bo9Hn2VnK+6x+2hbrZeowzGryGbG9vRmIS2L2tR0d7D8gG3dAhZdBHA3IaMnSRF1 EkllKXOLkQS2+h1KC6BfnI9obqkbDjCDexe74JdsW+pHUFX8Mvz6Qog8OkW1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxfWaGbBdpEgjaAXCT7MN5YmndyMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODg1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOowDQYJKoZIhvcNAQELBQADggEBAGpA sYQsB1oU5zysQzn8jdcpQnv5DIs35kNvyrnYl/aoWpnmoplVw648BrHDeIXRr1+l pSAC4G/UdI1leolw2WI71+gvz3nrUpb37Hb23w95kOGg6562WUktLgceUkETi7a3 amOFPjVISejfMX56ruxBCQuGBiKJt6s8qQLzyAfLkpjHqoenGAIvL9DlCHl2z/Xy YqJEpAVShu1d1jLx0wYJdVlLFuPxMNssJIyfFm6nkk/8GNWiG8qXawop4Q+G2oE5 LMLLcNnmZksZ/948it2mKbu89F7Y4FCQmmYuTFlwDflyFzrOn6HdLfCKijIoQPcM xkJ1tE8JZpC7laIoUDc= -----END CERTIFICATE-----Generated at Sat Jul 5 04:05:53 2025 by rpki-client