$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200936.roa File: AS200936.roa (raw, json) Hash identifier: n8rU+ZiXbx43XqKbhQgOInp9oP3r21oZuBSJWkJVTQY= Subject key identifier: 9F:71:07:DE:8E:9E:A1:5B:0C:7E:16:E0:9A:08:80:C0:AC:92:44:23 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1B313BFE796E5C047E83901E3EEAFD0BD6F7B4DC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200936.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 200936 IP address blocks: 2a0a:6040:d600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:31:3b:fe:79:6e:5c:04:7e:83:90:1e:3e:ea:fd:0b:d6:f7:b4:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=9F7107DE8E9EA15B0C7E16E09A0880C0AC924423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e4:c8:e3:0d:f3:97:90:92:22:ea:41:b5:6e: 2d:3a:3d:19:6c:93:a7:dd:e0:0b:b2:1f:ce:9b:25: 09:73:dc:df:5a:73:8b:28:2b:7a:01:10:09:95:35: 6e:94:c8:16:6a:ab:f1:e2:e4:66:76:c9:1c:c2:0f: 25:99:50:54:30:95:a9:de:ad:4e:43:ca:d3:c8:a2: c5:60:7b:b7:59:fb:ba:69:6d:26:0d:15:59:e5:35: 9b:8e:67:a7:a0:17:ed:1b:de:ae:e0:a0:23:45:01: f1:7a:32:80:42:e9:22:b8:9e:4f:10:b6:b0:69:79: 18:e1:6a:2b:36:61:a0:a2:75:e6:bd:ed:eb:8c:97: 4f:76:c2:2f:ef:9d:49:ec:a2:89:90:7c:60:e3:12: a0:d9:13:67:78:78:ae:0b:5e:3f:a1:c1:e5:0c:e4: 25:50:32:03:bb:49:ac:d6:c0:78:9a:6f:39:ae:f0: 61:2a:df:55:cd:05:5e:db:8e:15:6e:ae:1f:dd:c5: 04:83:d0:c8:1d:c1:1c:11:ef:eb:b3:40:3d:54:fe: 1c:a0:e2:5f:02:d1:a3:48:d2:37:a8:2c:7f:92:3e: a1:46:18:66:62:57:ef:d9:ae:ac:9e:fe:30:d0:db: d6:01:1c:b1:e5:d0:0e:f7:bd:30:4f:28:cc:a4:e6: ef:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:71:07:DE:8E:9E:A1:5B:0C:7E:16:E0:9A:08:80:C0:AC:92:44:23 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d600::/40 Signature Algorithm: sha256WithRSAEncryption 6b:b9:f4:30:d7:4e:66:e2:33:72:9b:0b:da:08:61:d1:ca:60: 1c:b4:ff:eb:d9:d6:18:85:52:30:ff:52:3e:5c:08:2d:67:87: 06:ec:7c:d2:69:0e:0b:14:8b:27:73:44:5d:99:6a:9a:e2:a2: d4:0a:07:8b:31:ec:88:43:5e:f0:f2:4b:d1:07:fa:64:4c:eb: 32:c2:3b:36:c1:fa:12:ca:a4:6b:b1:2c:5f:19:4d:84:26:fa: 3d:47:74:5d:5f:74:db:45:f7:3b:c3:a0:c2:e2:5b:cb:ae:3d: a4:c1:db:ed:f0:49:9e:46:ef:1a:1a:ae:81:b8:4e:be:90:8a: 7a:6b:f8:57:d5:a5:7d:91:49:1f:44:0f:ac:ba:fb:9e:ac:23: 56:1f:d8:23:0c:a5:7a:9a:1c:38:8f:07:bf:87:3c:b6:c4:b5: d8:cb:f3:1a:02:40:bf:c2:b1:87:46:ab:8f:ac:73:67:f1:02: 7e:89:a7:3d:da:01:42:0e:01:2f:0b:da:c7:ad:22:f3:80:1d: af:5e:07:9d:60:51:a8:e5:a5:fe:37:86:39:a9:36:51:08:c5: 4f:42:38:1c:59:55:71:13:b9:d9:f2:80:af:f8:1c:5a:28:1c: c3:18:33:eb:60:08:75:16:12:22:f0:c7:17:1b:06:fa:c0:91: c0:99:e7:9b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGzE7/nluXAR+g5AePur9C9b3tNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDlGNzEwN0RFOEU5RUExNUIwQzdFMTZFMDlBMDg4MEMwQUM5MjQ0MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO5MjjDfOXkJIi6kG1bi06PRls k6fd4AuyH86bJQlz3N9ac4soK3oBEAmVNW6UyBZqq/Hi5GZ2yRzCDyWZUFQwlane rU5DytPIosVge7dZ+7ppbSYNFVnlNZuOZ6egF+0b3q7goCNFAfF6MoBC6SK4nk8Q trBpeRjhais2YaCidea97euMl092wi/vnUnsoomQfGDjEqDZE2d4eK4LXj+hweUM 5CVQMgO7SazWwHiabzmu8GEq31XNBV7bjhVurh/dxQSD0MgdwRwR7+uzQD1U/hyg 4l8C0aNI0jeoLH+SPqFGGGZiV+/Zrqye/jDQ29YBHLHl0A73vTBPKMyk5u8RAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUn3EH3o6eoVsMfhbgmgiAwKySRCMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNYwDQYJKoZIhvcNAQELBQADggEBAGu5 9DDXTmbiM3KbC9oIYdHKYBy0/+vZ1hiFUjD/Uj5cCC1nhwbsfNJpDgsUiydzRF2Z apriotQKB4sx7IhDXvDyS9EH+mRM6zLCOzbB+hLKpGuxLF8ZTYQm+j1HdF1fdNtF 9zvDoMLiW8uuPaTB2+3wSZ5G7xoaroG4Tr6Qinpr+FfVpX2RSR9ED6y6+56sI1Yf 2CMMpXqaHDiPB7+HPLbEtdjL8xoCQL/CsYdGq4+sc2fxAn6Jpz3aAUIOAS8L2set IvOAHa9eB51gUajlpf43hjmpNlEIxU9COBxZVXETudnygK/4HFooHMMYM+tgCHUW EiLwxxcbBvrAkcCZ55s= -----END CERTIFICATE-----Generated at Sat Jul 5 06:06:12 2025 by rpki-client