$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200969.roa File: AS200969.roa (raw, json) Hash identifier: 0OtAZIy3FpTJ3BN/yII85SavFVUaH3f/gELyHUp6IEc= Subject key identifier: 52:C4:5F:42:51:FA:A2:8F:30:E4:3B:D9:4D:A7:04:9F:D1:77:65:95 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0FA6A780AA55F14B764FB71D99391E9F3C319A8A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200969.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 200969 IP address blocks: 2a0a:6040:f400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:a6:a7:80:aa:55:f1:4b:76:4f:b7:1d:99:39:1e:9f:3c:31:9a:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=52C45F4251FAA28F30E43BD94DA7049FD1776595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:bb:fc:db:af:7f:8a:99:8c:8b:fe:a6:be:c4: 8a:9a:bc:41:55:b3:f0:5f:b9:e3:3e:bb:d7:91:8d: 6e:91:c8:30:6e:42:06:53:65:ae:ba:d2:f7:c8:98: 99:3e:3f:13:94:0c:a7:aa:58:66:a8:36:08:cc:08: 88:d5:63:16:84:0a:3d:57:b3:12:c1:0b:8d:b8:f8: 8a:f1:61:90:f9:dc:18:f5:59:e2:57:7b:1f:6e:b5: 96:7e:80:6d:df:3c:21:6d:ed:7f:51:66:9d:a5:d5: cf:f4:c6:f9:09:92:59:e3:21:84:04:16:b6:a7:fe: 18:1f:da:55:29:00:d6:69:23:51:58:76:c5:2a:37: 1c:48:c9:31:00:80:59:db:58:35:96:af:d3:da:3d: 68:97:0f:4b:0c:e5:30:ce:20:85:87:37:93:3a:cc: 60:5c:08:00:05:24:57:4d:ee:8d:f1:0b:73:e7:da: 87:4b:0c:19:eb:6f:43:16:fd:7a:7a:a2:c4:c6:b5: 0d:af:60:27:d0:2b:25:34:96:2c:d7:2b:ca:a4:6c: 44:1e:93:f1:90:c5:80:a8:60:2c:ea:99:a2:49:96: 71:e8:ee:ff:60:f4:d1:3d:5a:3d:5e:58:c2:49:31: 19:18:06:3b:40:26:78:e9:36:3f:b5:a8:d1:f1:db: 91:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C4:5F:42:51:FA:A2:8F:30:E4:3B:D9:4D:A7:04:9F:D1:77:65:95 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200969.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f400::/40 Signature Algorithm: sha256WithRSAEncryption 1f:2d:90:c8:56:4e:83:d7:37:01:6b:3a:0a:14:26:09:47:c1: 35:34:46:dd:2c:57:75:0f:df:d2:39:b5:58:8e:c1:e3:74:80: dc:de:1a:db:4a:e1:71:2d:79:b8:99:9e:7a:ce:af:a4:23:ae: d1:64:86:66:f3:83:ce:71:81:62:93:dd:45:40:09:dc:da:42: a8:46:76:3c:74:fa:16:d1:15:36:20:4e:b6:d5:32:99:e8:60: a8:9b:88:c3:07:60:c9:c8:a8:82:f0:46:87:f5:40:09:bd:92: 05:63:e7:72:8a:04:70:2f:7f:84:e9:10:00:c6:da:09:1e:0c: 02:0d:39:ac:a8:b2:da:23:74:b2:29:30:ad:d9:9c:85:62:75: 6c:c6:65:9e:4c:db:b7:ee:e3:ee:d4:b5:9d:32:a0:35:2d:e2: 8d:da:10:26:28:33:81:25:2f:2a:0c:fd:ae:82:b8:11:65:21: eb:1e:74:57:4a:9e:fa:c5:cd:7d:bf:bb:56:19:8d:14:7c:5a: 14:98:c5:a7:4e:1d:48:3e:2d:a0:1d:e9:c7:6c:ad:ae:74:f8: 05:f2:63:1e:e2:89:63:3c:2b:49:57:f9:dc:06:35:b0:c4:83: b3:7a:ff:6d:b5:40:34:26:68:b1:42:47:40:7f:71:27:b0:cc: 1c:03:cc:cf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUD6angKpV8Ut2T7cdmTkenzwxmoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDUyQzQ1RjQyNTFGQUEyOEYzMEU0M0JEOTREQTcwNDlGRDE3NzY1OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqu/zbr3+KmYyL/qa+xIqavEFV s/BfueM+u9eRjW6RyDBuQgZTZa660vfImJk+PxOUDKeqWGaoNgjMCIjVYxaECj1X sxLBC424+IrxYZD53Bj1WeJXex9utZZ+gG3fPCFt7X9RZp2l1c/0xvkJklnjIYQE Fran/hgf2lUpANZpI1FYdsUqNxxIyTEAgFnbWDWWr9PaPWiXD0sM5TDOIIWHN5M6 zGBcCAAFJFdN7o3xC3Pn2odLDBnrb0MW/Xp6osTGtQ2vYCfQKyU0lizXK8qkbEQe k/GQxYCoYCzqmaJJlnHo7v9g9NE9Wj1eWMJJMRkYBjtAJnjpNj+1qNHx25GDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUsRfQlH6oo8w5DvZTacEn9F3ZZUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPQwDQYJKoZIhvcNAQELBQADggEBAB8t kMhWToPXNwFrOgoUJglHwTU0Rt0sV3UP39I5tViOweN0gNzeGttK4XEtebiZnnrO r6QjrtFkhmbzg85xgWKT3UVACdzaQqhGdjx0+hbRFTYgTrbVMpnoYKibiMMHYMnI qILwRof1QAm9kgVj53KKBHAvf4TpEADG2gkeDAINOayostojdLIpMK3ZnIVidWzG ZZ5M27fu4+7UtZ0yoDUt4o3aECYoM4ElLyoM/a6CuBFlIesedFdKnvrFzX2/u1YZ jRR8WhSYxadOHUg+LaAd6cdsra50+AXyYx7iiWM8K0lX+dwGNbDEg7N6/221QDQm aLFCR0B/cSewzBwDzM8= -----END CERTIFICATE-----Generated at Sat Jul 5 03:52:39 2025 by rpki-client