$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200975.roa File: AS200975.roa (raw, json) Hash identifier: ZIlO2UKHOQcCrDQRo/ehxNtgWqHxo/IiYKPRh6JblMo= Subject key identifier: 60:14:89:98:5A:C6:66:B6:A0:2A:F2:1C:59:9A:BA:9E:24:F6:BD:A0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 616BB7B6D235213BE4782E3066DD3EB11ED4BDB3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200975.roa Signing time: Fri 04 Jul 2025 06:53:13 +0000 ROA not before: Fri 04 Jul 2025 06:48:13 +0000 ROA not after: Fri 03 Jul 2026 06:53:13 +0000 asID: 200975 IP address blocks: 2a0a:6040:f500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:6b:b7:b6:d2:35:21:3b:e4:78:2e:30:66:dd:3e:b1:1e:d4:bd:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:13 2025 GMT Not After : Jul 3 06:53:13 2026 GMT Subject: CN=601489985AC666B6A02AF21C599ABA9E24F6BDA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4a:1f:ce:76:9f:bd:da:cc:02:5d:68:69:87: b4:b2:8f:3c:d0:2b:91:ba:13:80:29:83:a2:fd:0e: 3c:cd:bf:cd:32:4f:eb:83:df:cb:e1:b3:58:2e:c2: 58:27:38:01:30:6d:7a:79:29:5b:8c:2d:ad:53:9b: c2:10:06:05:88:1a:c2:89:a4:a0:80:bf:c9:11:aa: d3:53:79:e2:44:da:93:85:58:44:96:d1:9c:cc:15: 86:15:b3:e6:51:f3:cb:8e:f6:6c:8a:89:87:b7:0d: 51:0d:d0:2d:c2:8a:bc:bc:33:ff:e4:22:ed:e1:fd: 93:3e:5e:f7:98:fa:0c:19:1f:a5:3b:b3:dd:6f:ad: 98:27:aa:55:14:7e:a0:6e:2e:ca:42:f0:4a:60:98: 24:63:39:99:e6:91:ae:a3:c5:be:1e:d3:22:86:c2: 1c:27:80:15:3e:ea:2a:7e:68:79:30:ac:48:ea:bb: 3d:c7:0f:3f:4c:01:e7:4b:d6:88:90:df:ea:b0:7e: 2f:7c:01:1c:47:ee:38:d3:d8:ff:53:19:e0:9d:cd: 7a:18:52:da:69:02:d0:09:b8:73:bb:79:df:13:d5: cf:f3:d0:23:5a:33:61:0c:0f:fe:ea:7c:e6:0b:1d: da:44:c4:d7:9c:82:db:ee:c7:d0:9f:df:50:27:2c: 3c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:14:89:98:5A:C6:66:B6:A0:2A:F2:1C:59:9A:BA:9E:24:F6:BD:A0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200975.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f500::/40 Signature Algorithm: sha256WithRSAEncryption 74:b6:96:d8:88:25:18:df:3f:5c:cb:a6:0a:b4:3e:38:f9:78: 4a:0f:de:3f:0f:be:83:d1:42:84:78:aa:d7:31:1b:8d:6e:39: 49:c8:56:49:d9:be:89:5a:b9:b1:4c:ae:e7:3c:d8:df:45:a7: 9d:7e:d3:33:fa:43:fe:18:70:c2:1a:36:e9:ae:ca:cf:b9:f6: a3:fc:3b:35:60:ed:44:08:d4:4e:c0:d5:16:a9:ae:37:cb:96: 57:03:52:f8:42:c5:e5:5b:05:e5:d1:ef:3a:4b:0b:f4:53:1c: 5b:8f:09:d1:98:d7:62:4d:c7:e0:55:ea:33:ea:48:21:83:9d: 35:ea:69:f6:dd:c5:c2:b2:dd:08:d3:85:5c:a1:91:d7:65:77: 94:06:0e:ce:d0:af:88:e1:ab:7d:d3:61:c8:00:19:48:83:93: ce:85:1b:50:3f:4a:5d:f3:da:c8:58:f0:42:11:bc:a2:f4:ec: e3:a2:f6:8e:3b:d0:ff:29:fc:4b:a4:d8:c2:63:5d:77:bd:f1: 13:3b:7f:0b:59:ae:ba:8c:1a:8a:a9:b1:3a:32:48:78:ab:c0: 64:3d:1d:17:72:75:ec:2d:3f:24:c0:21:ba:be:a2:88:82:47: 49:b9:9c:fe:22:fc:d9:1f:a3:97:fa:18:99:ce:bc:7e:b1:85: bc:ba:f0:c4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYWu3ttI1ITvkeC4wZt0+sR7UvbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTNaFw0yNjA3MDMwNjUzMTNaMDMxMTAvBgNV BAMTKDYwMTQ4OTk4NUFDNjY2QjZBMDJBRjIxQzU5OUFCQTlFMjRGNkJEQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGSh/Odp+92swCXWhph7SyjzzQ K5G6E4Apg6L9DjzNv80yT+uD38vhs1guwlgnOAEwbXp5KVuMLa1Tm8IQBgWIGsKJ pKCAv8kRqtNTeeJE2pOFWESW0ZzMFYYVs+ZR88uO9myKiYe3DVEN0C3Ciry8M//k Iu3h/ZM+XveY+gwZH6U7s91vrZgnqlUUfqBuLspC8EpgmCRjOZnmka6jxb4e0yKG whwngBU+6ip+aHkwrEjquz3HDz9MAedL1oiQ3+qwfi98ARxH7jjT2P9TGeCdzXoY UtppAtAJuHO7ed8T1c/z0CNaM2EMD/7qfOYLHdpExNecgtvux9Cf31AnLDxhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYBSJmFrGZragKvIcWZq6niT2vaAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPUwDQYJKoZIhvcNAQELBQADggEBAHS2 ltiIJRjfP1zLpgq0Pjj5eEoP3j8PvoPRQoR4qtcxG41uOUnIVknZvolaubFMruc8 2N9Fp51+0zP6Q/4YcMIaNumuys+59qP8OzVg7UQI1E7A1RaprjfLllcDUvhCxeVb BeXR7zpLC/RTHFuPCdGY12JNx+BV6jPqSCGDnTXqafbdxcKy3QjThVyhkddld5QG Ds7Qr4jhq33TYcgAGUiDk86FG1A/Sl3z2shY8EIRvKL07OOi9o470P8p/Euk2MJj XXe98RM7fwtZrrqMGoqpsToySHirwGQ9HRdydewtPyTAIbq+ooiCR0m5nP4i/Nkf o5f6GJnOvH6xhby68MQ= -----END CERTIFICATE-----Generated at Sat Jul 5 06:07:05 2025 by rpki-client