$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200959.roa File: AS200959.roa (raw, json) Hash identifier: /+5fjzROcdU6gdCswGkibHfMh5bc1CStvMVeYq0vXDo= Subject key identifier: 32:1B:8B:51:45:37:BB:43:D1:D0:59:6C:A8:FC:12:F8:7B:4C:CF:03 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1673D5E2BB143FCFAC18EA47F03A1C1D0A57B299 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200959.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 200959 IP address blocks: 2a0a:6040:6c00::/40 maxlen: 48 2a0a:6040:e500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:73:d5:e2:bb:14:3f:cf:ac:18:ea:47:f0:3a:1c:1d:0a:57:b2:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=321B8B514537BB43D1D0596CA8FC12F87B4CCF03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e8:b6:2f:04:04:2a:b3:af:74:6d:9d:bf:54: 85:4f:5e:5a:c1:30:18:b9:c2:2d:59:5e:80:55:1c: 69:d4:24:11:65:1f:26:92:40:c8:c1:b2:7a:47:82: d3:58:ed:3f:57:26:14:bb:ec:c0:94:1b:10:f8:ae: b3:64:55:1b:7c:a0:63:bb:b6:49:5e:e9:f1:85:ad: 97:07:9b:1e:74:91:28:98:67:9b:44:86:ca:28:b0: a8:f8:13:a1:2b:5c:72:76:9a:bc:aa:a9:f3:74:c4: 94:98:da:61:00:52:2d:c7:d2:3c:c1:e6:e4:ad:2a: 93:33:0c:cf:28:04:40:9f:1b:4c:6d:19:d3:be:62: 92:a1:25:68:d0:fb:ae:33:c7:d0:24:12:ec:a8:b4: 04:10:ce:88:0b:9d:55:2b:87:a1:7e:35:9b:c3:51: e8:73:9e:f9:ef:07:4b:74:63:d4:af:55:18:c2:e8: 56:1c:ba:7d:60:d1:fd:b8:bc:a7:8d:53:a7:ff:22: ce:25:30:4a:4d:ee:26:cc:d1:0c:88:24:51:cd:e1: 96:b9:88:a2:f0:2f:01:93:34:76:40:99:ce:90:98: a4:9e:76:c9:e4:68:88:c9:e0:5e:f1:75:cf:0b:10: 15:4f:3e:85:e0:c3:c4:4a:f9:b7:ec:34:ee:2a:0e: 77:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1B:8B:51:45:37:BB:43:D1:D0:59:6C:A8:FC:12:F8:7B:4C:CF:03 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200959.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6c00::/40 2a0a:6040:e500::/40 Signature Algorithm: sha256WithRSAEncryption a0:e0:07:c4:bb:2d:c9:4a:10:18:58:b4:58:ca:58:ed:f2:de: 30:ab:bf:6a:32:6b:72:9c:9a:b7:3e:9b:8a:57:89:d0:7b:a9: c0:a5:e6:a6:65:ed:52:9c:47:cd:e7:ef:3f:78:79:b0:ad:d4: 17:fa:e6:c0:92:b9:ec:15:41:c6:c9:0c:b0:d3:ca:1a:c6:07: f6:4c:c5:04:70:00:5e:5b:7b:16:86:96:a2:11:1d:cf:11:3d: 13:bb:b6:c3:48:55:e1:31:15:71:71:25:54:b2:0b:4b:89:51: 30:b5:0b:72:37:90:98:a5:bb:a5:84:61:75:6c:83:0e:f5:73: 1d:81:6d:c1:84:6b:e5:d3:59:21:a8:99:0a:7f:21:ea:58:f9: b1:5a:78:ac:0c:d0:22:a5:8c:58:6d:72:72:45:14:ed:76:56: 9a:74:6e:c4:7e:61:96:5c:0e:b2:f3:43:03:8d:12:d8:f9:1c: 6f:8a:db:a2:55:22:e8:56:13:76:1a:11:0d:f9:0b:35:13:bb: 74:9a:d6:00:6f:02:31:b0:2b:44:8a:5f:11:07:66:47:60:32: 4e:d6:f0:be:bd:03:82:20:91:ff:25:6e:66:57:a7:95:38:07: a4:48:2b:75:88:fa:fd:37:f6:56:40:ae:6b:09:20:ff:4e:37: 7b:e2:e5:5b -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUFnPV4rsUP8+sGOpH8DocHQpXspkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKDMyMUI4QjUxNDUzN0JCNDNEMUQwNTk2Q0E4RkMxMkY4N0I0Q0NGMDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD6LYvBAQqs690bZ2/VIVPXlrB MBi5wi1ZXoBVHGnUJBFlHyaSQMjBsnpHgtNY7T9XJhS77MCUGxD4rrNkVRt8oGO7 tkle6fGFrZcHmx50kSiYZ5tEhsoosKj4E6ErXHJ2mryqqfN0xJSY2mEAUi3H0jzB 5uStKpMzDM8oBECfG0xtGdO+YpKhJWjQ+64zx9AkEuyotAQQzogLnVUrh6F+NZvD UehznvnvB0t0Y9SvVRjC6FYcun1g0f24vKeNU6f/Is4lMEpN7ibM0QyIJFHN4Za5 iKLwLwGTNHZAmc6QmKSedsnkaIjJ4F7xdc8LEBVPPoXgw8RK+bfsNO4qDnepAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUMhuLUUU3u0PR0FlsqPwS+HtMzwMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTU5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQGwDBgAqCmBA5TANBgkqhkiG9w0BAQsF AAOCAQEAoOAHxLstyUoQGFi0WMpY7fLeMKu/ajJrcpyatz6bileJ0HupwKXmpmXt UpxHzefvP3h5sK3UF/rmwJK57BVBxskMsNPKGsYH9kzFBHAAXlt7FoaWohEdzxE9 E7u2w0hV4TEVcXElVLILS4lRMLULcjeQmKW7pYRhdWyDDvVzHYFtwYRr5dNZIaiZ Cn8h6lj5sVp4rAzQIqWMWG1yckUU7XZWmnRuxH5hllwOsvNDA40S2Pkcb4rbolUi 6FYTdhoRDfkLNRO7dJrWAG8CMbArRIpfEQdmR2AyTtbwvr0DgiCR/yVuZlenlTgH pEgrdYj6/Tf2VkCuawkg/043e+LlWw== -----END CERTIFICATE-----Generated at Sat Jul 5 03:47:28 2025 by rpki-client