$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200907.roa File: AS200907.roa (raw, json) Hash identifier: zII53iAJeJ7Qmx12gNhTyHr0n/k5AQCwUNZ/bh1lf3A= Subject key identifier: 9E:60:C5:81:F8:54:AC:07:03:B7:68:BD:E4:2F:5C:E5:B3:40:A7:B0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 27CDF4B265EC346824656804A3C68A717776C67C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200907.roa Signing time: Fri 04 Jul 2025 06:53:27 +0000 ROA not before: Fri 04 Jul 2025 06:48:27 +0000 ROA not after: Fri 03 Jul 2026 06:53:27 +0000 asID: 200907 IP address blocks: 2a0a:6040:e100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:cd:f4:b2:65:ec:34:68:24:65:68:04:a3:c6:8a:71:77:76:c6:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:27 2025 GMT Not After : Jul 3 06:53:27 2026 GMT Subject: CN=9E60C581F854AC0703B768BDE42F5CE5B340A7B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:72:8d:25:5a:4e:c0:f7:69:90:6e:cf:0d:9b: b6:93:e0:b5:63:66:43:50:67:57:46:f9:fb:04:75: bf:d4:73:0b:53:4f:29:8b:0d:e2:37:28:e0:2e:4c: 25:b9:93:2d:d5:9c:3c:8e:75:f1:77:57:70:10:c5: 42:9a:8e:3a:22:b6:0e:9e:ba:44:89:86:9b:a1:9c: 18:61:68:5e:bd:df:b6:37:15:df:5a:3c:22:c9:a6: 5a:c4:6f:e9:89:cd:93:d3:66:e1:70:7e:e7:52:4d: 9f:8e:09:02:e5:0b:63:ec:9e:e8:bc:82:bf:c2:90: 90:0c:8d:47:80:5d:16:a4:af:dc:32:37:af:33:ab: be:df:fc:4e:53:2e:29:37:c8:1e:58:92:6c:40:22: fc:d7:cc:22:34:d1:d8:6d:88:ae:6b:75:2d:13:68: dc:86:57:05:a8:a4:8f:c7:30:73:f4:43:8e:8b:0e: 07:fc:f8:c3:51:5e:25:bc:fe:1a:5e:19:a1:96:8f: f7:6f:ff:19:78:9c:4b:7a:66:fa:9a:54:5c:4a:9a: b1:43:5f:df:50:b0:f8:cd:75:02:38:d3:44:ce:80: 66:a5:b7:b8:eb:c5:5f:bf:85:8b:91:d4:c9:85:4a: 36:a6:ad:38:2b:33:a9:54:8f:f3:26:d5:e5:59:03: fa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:60:C5:81:F8:54:AC:07:03:B7:68:BD:E4:2F:5C:E5:B3:40:A7:B0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200907.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e100::/40 Signature Algorithm: sha256WithRSAEncryption a8:37:0c:92:fc:ad:1d:2b:bf:f6:4b:af:09:8d:37:19:c0:25: 7d:08:fa:71:70:81:ec:c8:89:5a:9b:df:61:24:41:cb:08:15: 2b:1f:b1:e2:8d:1b:02:1c:3a:2d:1b:2e:93:dd:4b:f2:ee:c6: 84:36:b0:c4:11:4c:7d:ed:89:27:03:92:2b:ba:32:29:2c:7c: cb:6e:93:57:de:e3:7b:d6:62:1c:01:3e:0f:b3:ce:2f:11:21: 36:59:8c:54:24:ba:a9:e9:70:1c:2a:c5:08:66:ea:e3:6f:52: 35:1f:85:03:da:fa:43:34:c5:bd:54:bd:c3:2c:8a:75:d4:1b: 69:e1:38:77:f4:28:25:d9:71:0e:ca:67:f7:25:2f:37:7d:ee: 66:a7:36:40:3b:4e:9e:b7:5d:d2:eb:07:ad:ab:15:da:cd:02: c1:d7:ee:eb:7a:20:18:03:91:bd:89:f1:82:80:a7:fd:33:15: 6c:4d:31:33:8d:b4:d2:d6:0c:94:2c:6f:75:98:dc:79:84:94: 17:ec:12:95:5e:a7:bf:ca:71:d5:62:ec:8c:ef:0b:5f:f2:f0: f8:5b:34:1a:a0:9f:e9:58:51:85:d7:74:ae:30:1f:d0:ab:da: 78:df:32:4e:4c:58:53:78:fe:91:54:0a:e9:d2:1e:d7:1b:08: 55:29:21:e1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJ830smXsNGgkZWgEo8aKcXd2xnwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjdaFw0yNjA3MDMwNjUzMjdaMDMxMTAvBgNV BAMTKDlFNjBDNTgxRjg1NEFDMDcwM0I3NjhCREU0MkY1Q0U1QjM0MEE3QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBco0lWk7A92mQbs8Nm7aT4LVj ZkNQZ1dG+fsEdb/UcwtTTymLDeI3KOAuTCW5ky3VnDyOdfF3V3AQxUKajjoitg6e ukSJhpuhnBhhaF6937Y3Fd9aPCLJplrEb+mJzZPTZuFwfudSTZ+OCQLlC2Psnui8 gr/CkJAMjUeAXRakr9wyN68zq77f/E5TLik3yB5YkmxAIvzXzCI00dhtiK5rdS0T aNyGVwWopI/HMHP0Q46LDgf8+MNRXiW8/hpeGaGWj/dv/xl4nEt6ZvqaVFxKmrFD X99QsPjNdQI400TOgGalt7jrxV+/hYuR1MmFSjamrTgrM6lUj/Mm1eVZA/oZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUnmDFgfhUrAcDt2i95C9c5bNAp7AwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOEwDQYJKoZIhvcNAQELBQADggEBAKg3 DJL8rR0rv/ZLrwmNNxnAJX0I+nFwgezIiVqb32EkQcsIFSsfseKNGwIcOi0bLpPd S/LuxoQ2sMQRTH3tiScDkiu6MiksfMtuk1fe43vWYhwBPg+zzi8RITZZjFQkuqnp cBwqxQhm6uNvUjUfhQPa+kM0xb1UvcMsinXUG2nhOHf0KCXZcQ7KZ/clLzd97man NkA7Tp63XdLrB62rFdrNAsHX7ut6IBgDkb2J8YKAp/0zFWxNMTONtNLWDJQsb3WY 3HmElBfsEpVep7/KcdVi7IzvC1/y8PhbNBqgn+lYUYXXdK4wH9Cr2njfMk5MWFN4 /pFUCunSHtcbCFUpIeE= -----END CERTIFICATE-----Generated at Sat Jul 5 03:45:39 2025 by rpki-client