$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200949.roa File: AS200949.roa (raw, json) Hash identifier: hLyCENNl4E9jM+szrnIY7CvcJbd0XaaDc7qBY71H7KA= Subject key identifier: BF:FC:28:E3:2E:FD:F8:6E:F9:02:15:CC:38:FE:B2:F9:11:54:DF:45 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 32A0405036CE1F49E54BB35FB4678DF23400C1C5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200949.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 200949 IP address blocks: 2a0a:6040:d800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:a0:40:50:36:ce:1f:49:e5:4b:b3:5f:b4:67:8d:f2:34:00:c1:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=BFFC28E32EFDF86EF90215CC38FEB2F91154DF45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8c:eb:d8:58:b5:0f:d3:c6:8c:cd:21:47:d4: 88:20:55:e0:8f:26:5b:6b:ce:12:ec:8b:bc:40:80: a5:5b:54:f7:d1:bd:30:f2:33:11:e3:89:4c:15:9d: 2b:17:48:01:00:3e:84:5e:51:7b:1c:2d:c3:bb:78: 09:1b:e8:19:45:fe:3a:76:8e:c4:8d:03:be:70:0a: b1:37:5b:aa:c9:c4:ef:8d:e5:55:95:e0:a9:ac:77: b2:14:2c:ed:cb:c7:d2:2e:22:af:df:8c:40:50:f5: 89:0d:62:8f:56:54:8b:c0:19:74:79:75:6b:b8:81: 49:5b:b1:dd:81:e8:9d:28:fc:56:62:3e:2e:f8:cb: 92:1f:41:70:c4:11:b3:9e:4d:53:7d:d8:8f:06:4c: fe:c9:04:28:70:1c:26:0f:81:49:6b:25:86:06:48: 12:b9:aa:1a:f3:55:f7:1e:a9:d2:92:24:fc:c4:e4: c0:1d:45:49:e4:6c:fd:9f:da:d3:9f:9f:42:a0:4b: 76:77:0e:97:0c:a3:b4:a6:9f:76:f7:12:8a:33:fe: 5e:45:c1:1a:d4:bc:91:d4:e3:21:ce:d2:b0:8e:55: b8:52:76:9e:ff:ca:a2:f9:d1:10:52:83:dc:3f:96: 6c:f0:df:53:fb:70:26:f0:99:46:20:00:4e:ad:77: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:FC:28:E3:2E:FD:F8:6E:F9:02:15:CC:38:FE:B2:F9:11:54:DF:45 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200949.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d800::/40 Signature Algorithm: sha256WithRSAEncryption 07:bc:f6:39:cc:f0:9d:2d:6f:31:71:2a:3b:5c:90:09:2b:7d: 19:c7:8a:2f:3f:99:c6:ad:14:01:2f:f9:97:3f:75:e5:13:94: 4d:2b:d8:bd:0b:83:c6:68:32:96:e3:7a:8a:75:d1:99:a0:07: b4:df:1e:3a:c8:79:c4:db:68:6d:63:90:6a:f7:dc:1a:b1:da: e9:f1:0b:34:e7:ab:e3:35:b4:e6:c2:6c:17:36:aa:58:eb:86: e7:ce:cf:6b:c8:27:1e:42:7b:ce:c0:fc:b1:02:57:fc:21:f9: 8c:1e:ce:75:68:52:78:6d:c5:dd:96:47:fb:aa:56:fc:0c:af: de:4d:c4:9c:ce:2b:00:79:e7:5b:b7:da:95:b3:c2:db:a3:cc: 43:1f:0e:d8:bd:15:ec:b2:0e:aa:af:c5:00:cc:18:d9:20:17: d7:3c:a1:8a:12:e7:3d:e8:be:dd:fb:ac:6e:fa:07:50:04:2a: 9c:ed:bb:6d:bd:16:98:15:1f:ba:b7:27:42:8a:98:d5:ef:1e: b0:2f:45:68:55:ae:94:04:a2:19:07:ef:0e:c4:a8:45:50:63: 70:8f:c0:04:8d:5a:87:83:ca:ea:0f:7b:39:1b:3e:78:25:66: 44:d4:e6:ee:bc:7b:04:72:b3:76:44:05:87:2f:90:ca:14:e6: 98:d6:8d:80 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMqBAUDbOH0nlS7NftGeN8jQAwcUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKEJGRkMyOEUzMkVGREY4NkVGOTAyMTVDQzM4RkVCMkY5MTE1NERGNDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmjOvYWLUP08aMzSFH1IggVeCP JltrzhLsi7xAgKVbVPfRvTDyMxHjiUwVnSsXSAEAPoReUXscLcO7eAkb6BlF/jp2 jsSNA75wCrE3W6rJxO+N5VWV4Kmsd7IULO3Lx9IuIq/fjEBQ9YkNYo9WVIvAGXR5 dWu4gUlbsd2B6J0o/FZiPi74y5IfQXDEEbOeTVN92I8GTP7JBChwHCYPgUlrJYYG SBK5qhrzVfceqdKSJPzE5MAdRUnkbP2f2tOfn0KgS3Z3DpcMo7Smn3b3Eooz/l5F wRrUvJHU4yHO0rCOVbhSdp7/yqL50RBSg9w/lmzw31P7cCbwmUYgAE6td8t3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUv/wo4y79+G75AhXMOP6y+RFU30UwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNgwDQYJKoZIhvcNAQELBQADggEBAAe8 9jnM8J0tbzFxKjtckAkrfRnHii8/mcatFAEv+Zc/deUTlE0r2L0Lg8ZoMpbjeop1 0ZmgB7TfHjrIecTbaG1jkGr33Bqx2unxCzTnq+M1tObCbBc2qljrhufOz2vIJx5C e87A/LECV/wh+YweznVoUnhtxd2WR/uqVvwMr95NxJzOKwB551u32pWzwtujzEMf Dti9FeyyDqqvxQDMGNkgF9c8oYoS5z3ovt37rG76B1AEKpztu229FpgVH7q3J0KK mNXvHrAvRWhVrpQEohkH7w7EqEVQY3CPwASNWoeDyuoPezkbPnglZkTU5u68ewRy s3ZEBYcvkMoU5pjWjYA= -----END CERTIFICATE-----Generated at Sat Jul 5 04:03:39 2025 by rpki-client