$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200968.roa File: AS200968.roa (raw, json) Hash identifier: CnXzvi4z2JSF0mbAVwg3+Vnwg/MNVkkWxBc0enTNoOE= Subject key identifier: 67:12:37:F3:8B:30:D6:0C:28:D5:47:B2:E9:7C:1F:00:3D:D0:A1:BC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: CC9606D7A9A69700FBBB8D5ABE57AEE5FB1EC6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200968.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 200968 IP address blocks: 2a0a:6040:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: cc:96:06:d7:a9:a6:97:00:fb:bb:8d:5a:be:57:ae:e5:fb:1e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=671237F38B30D60C28D547B2E97C1F003DD0A1BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:78:da:a1:3c:4f:e5:a3:f7:2b:0e:34:4b:a1: d9:55:0e:87:25:31:9b:74:82:0a:b5:d1:56:b4:b1: 35:57:cb:6d:93:74:25:f1:56:c9:0a:91:86:2b:e0: e4:5a:04:63:19:46:45:21:bb:19:63:f8:5f:ac:2d: b6:27:7e:63:58:06:72:7d:20:bd:ef:83:13:48:69: 59:19:a7:ec:e0:1e:cd:db:5d:54:f9:7e:84:ba:42: cb:29:d0:d8:be:7a:9d:ca:3e:73:49:eb:23:f2:e0: cd:22:b1:8c:c2:94:f3:21:fa:14:a8:13:06:09:f0: 71:ee:07:b6:cc:81:2b:60:8a:56:44:86:a6:21:c8: 48:7c:5c:35:95:22:f1:f6:ff:e3:04:96:d5:5a:fb: ca:6f:1d:b7:c8:f8:65:85:99:7d:4a:8a:0a:86:f5: 5d:42:80:d4:02:d2:45:2e:82:b3:dc:1e:f1:59:ca: 6d:f4:f6:76:72:25:86:8d:4d:f7:df:80:8e:35:f6: e9:d1:7f:e9:25:60:f4:8d:3e:e6:6c:6e:c8:a7:4d: e2:7d:a9:2e:5d:f4:d4:1f:ee:32:f3:d2:2d:e3:47: 24:1c:1d:63:5c:a0:ed:a6:f0:74:17:9a:96:d3:70: 46:b9:74:fa:e6:9b:35:77:92:11:b1:3f:67:7d:d6: e3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:12:37:F3:8B:30:D6:0C:28:D5:47:B2:E9:7C:1F:00:3D:D0:A1:BC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f100::/40 Signature Algorithm: sha256WithRSAEncryption a1:6b:47:73:15:f6:ae:fb:60:ba:4e:3c:04:6b:28:ff:c1:4f: 67:a7:7d:25:78:50:54:f0:76:41:b0:23:cd:7c:48:70:27:09: 28:b8:d7:bf:30:e2:03:f4:b3:bd:35:3a:2b:ee:47:8b:78:41: 85:18:56:c4:fd:ac:6b:9f:f2:79:be:ff:10:e2:2a:c2:41:a3: d7:87:43:32:ba:e1:14:1b:7e:e2:99:c9:4f:c4:b0:44:59:d5: d6:2d:ee:80:02:3c:6c:f9:7e:b9:bb:ba:22:46:09:86:7f:c8: a1:f6:e8:fb:21:48:65:b4:c6:1b:47:a1:7a:26:b4:08:d8:20: 1a:f8:66:32:94:5c:0d:12:cc:8e:7d:d0:ff:bd:e9:45:1b:b0: 3d:22:1b:29:bc:10:4c:ef:ad:6d:e9:28:e6:de:b3:a7:2b:12: e3:5d:b3:7e:fe:5c:86:97:94:00:b8:01:1b:65:ee:6e:1f:08: cf:e8:9a:c6:5a:a3:0e:00:0d:1c:ad:c0:c6:86:71:f1:d9:02: fd:77:df:df:b5:ed:b9:11:d0:d2:9e:93:fd:7a:0e:62:55:c9: d7:aa:4a:20:99:e2:66:00:02:57:a1:01:d5:08:a7:bc:62:f0: 33:48:72:8f:82:ad:b8:53:5b:e5:92:60:02:4f:a2:88:11:d6: 1f:48:00:8d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAMyWBtepppcA+7uNWr5XruX7HsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDY3MTIzN0YzOEIzMEQ2MEMyOEQ1NDdCMkU5N0MxRjAwM0REMEExQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCeNqhPE/lo/crDjRLodlVDocl MZt0ggq10Va0sTVXy22TdCXxVskKkYYr4ORaBGMZRkUhuxlj+F+sLbYnfmNYBnJ9 IL3vgxNIaVkZp+zgHs3bXVT5foS6Qssp0Ni+ep3KPnNJ6yPy4M0isYzClPMh+hSo EwYJ8HHuB7bMgStgilZEhqYhyEh8XDWVIvH2/+MEltVa+8pvHbfI+GWFmX1KigqG 9V1CgNQC0kUugrPcHvFZym309nZyJYaNTfffgI419unRf+klYPSNPuZsbsinTeJ9 qS5d9NQf7jLz0i3jRyQcHWNcoO2m8HQXmpbTcEa5dPrmmzV3khGxP2d91uNjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZxI384sw1gwo1Uey6XwfAD3QobwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPEwDQYJKoZIhvcNAQELBQADggEBAKFr R3MV9q77YLpOPARrKP/BT2enfSV4UFTwdkGwI818SHAnCSi4178w4gP0s701Oivu R4t4QYUYVsT9rGuf8nm+/xDiKsJBo9eHQzK64RQbfuKZyU/EsERZ1dYt7oACPGz5 frm7uiJGCYZ/yKH26PshSGW0xhtHoXomtAjYIBr4ZjKUXA0SzI590P+96UUbsD0i Gym8EEzvrW3pKObes6crEuNds37+XIaXlAC4ARtl7m4fCM/omsZaow4ADRytwMaG cfHZAv1339+17bkR0NKek/16DmJVydeqSiCZ4mYAAlehAdUIp7xi8DNIco+CrbhT W+WSYAJPoogR1h9IAI0= -----END CERTIFICATE-----Generated at Sat Jul 5 06:06:22 2025 by rpki-client