$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200172.roa File: AS200172.roa (raw, json) Hash identifier: KSqmJqewaKghx1D2UcAHJ0r+LOMYtYGHU8PguzdMjRk= Subject key identifier: 90:49:AB:84:BE:22:FE:A8:9E:A3:3E:FE:CE:30:91:DB:93:4D:15:F2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2C4DD53B5FCD5D512BA19673E8700B4C66335F31 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200172.roa Signing time: Fri 05 Jun 2026 07:12:10 +0000 ROA not before: Fri 05 Jun 2026 07:07:10 +0000 ROA not after: Fri 04 Jun 2027 07:12:10 +0000 asID: 200172 IP address blocks: 2a0a:6040:2600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:4d:d5:3b:5f:cd:5d:51:2b:a1:96:73:e8:70:0b:4c:66:33:5f:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:10 2026 GMT Not After : Jun 4 07:12:10 2027 GMT Subject: CN=9049AB84BE22FEA89EA33EFECE3091DB934D15F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d4:4d:be:a0:b6:41:70:e2:35:2c:af:3f:37: 43:0d:99:c5:d6:18:bf:6a:48:9b:c4:e3:61:56:34: db:d3:f4:47:2c:be:84:cb:06:a9:d6:5a:a5:8a:f1: d3:1b:b2:28:d4:c3:a9:e1:fd:07:40:ae:ea:e6:7a: f0:e9:8c:ec:c2:b2:9c:81:04:09:2b:32:41:d8:bd: 05:c9:2f:e6:44:ee:c6:e1:93:ea:4a:a4:f3:6e:a8: 46:51:f8:bf:2f:da:2f:6d:c0:34:b2:39:4b:0c:26: f3:a3:b0:50:2d:60:0d:d5:69:cb:8e:0c:07:5d:32: bf:56:96:ae:ed:19:19:f9:ff:86:c4:41:ad:ca:7c: 05:7f:79:06:01:62:4d:b1:23:81:16:d7:91:d8:8f: 19:3e:2a:e5:69:c5:65:78:2b:e1:13:a5:a5:d5:8f: 03:5f:4b:73:c0:9a:f0:12:6f:3e:33:0d:71:fe:f3: c7:47:d0:45:d8:c9:90:d3:61:41:82:6f:e6:0f:1a: 53:3d:07:b6:88:29:8d:62:b4:37:ae:db:f4:27:63: cb:6f:e9:5e:32:c4:e3:df:b0:dc:55:d5:6f:cb:c3: 10:a7:81:58:64:f2:43:31:a6:85:1d:78:ae:37:4f: b6:0d:47:1a:0d:e3:45:31:4d:9e:e7:d6:73:12:01: 9c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:49:AB:84:BE:22:FE:A8:9E:A3:3E:FE:CE:30:91:DB:93:4D:15:F2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200172.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2600::/40 Signature Algorithm: sha256WithRSAEncryption 25:b0:f9:7f:94:35:2a:c1:76:81:14:91:14:23:b2:16:ad:65: 7b:6c:03:72:1f:7e:b6:3d:54:e0:d7:33:64:27:47:f1:01:f4: 9e:dd:57:b5:63:f4:7d:46:6f:9e:98:a6:16:b0:67:40:c5:a1: 2a:ce:9e:7c:d2:25:ee:8c:96:b7:3f:5b:c6:e2:cf:1c:20:d4: fc:a3:d7:43:f2:61:3e:5e:3a:fd:da:0b:7c:af:fd:a7:17:f8: 25:3d:c2:fe:56:97:6f:3b:54:4e:a8:77:a2:25:9f:f1:8b:a7: 42:bd:42:92:10:35:a3:27:a4:f9:f5:e0:a8:5a:92:16:d6:ba: 0b:c7:55:98:b5:12:d9:4c:b6:0d:0d:f3:38:5f:01:3f:96:51: 7d:cf:d9:00:d1:e8:84:54:a8:c8:ee:79:dd:49:cb:df:d3:32: 3c:f9:1a:4c:c2:7f:48:86:83:07:b6:37:b2:1f:6d:02:82:0e: fc:bb:2c:a9:18:b4:34:e1:2e:bd:85:64:83:7b:58:05:54:e4: f0:72:e9:6f:5b:2b:99:07:41:ff:4f:2c:0e:37:d3:26:60:09: be:e4:8c:30:f5:97:8a:5c:b8:3e:95:ee:3e:ef:59:4f:7d:60: c6:bb:00:12:6f:fe:40:fe:fc:55:b3:f4:f0:9c:9d:35:b4:70: 6b:00:53:63 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULE3VO1/NXVEroZZz6HALTGYzXzEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTBaFw0yNzA2MDQwNzEyMTBaMDMxMTAvBgNV BAMTKDkwNDlBQjg0QkUyMkZFQTg5RUEzM0VGRUNFMzA5MURCOTM0RDE1RjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx1E2+oLZBcOI1LK8/N0MNmcXW GL9qSJvE42FWNNvT9EcsvoTLBqnWWqWK8dMbsijUw6nh/QdArurmevDpjOzCspyB BAkrMkHYvQXJL+ZE7sbhk+pKpPNuqEZR+L8v2i9twDSyOUsMJvOjsFAtYA3VacuO DAddMr9Wlq7tGRn5/4bEQa3KfAV/eQYBYk2xI4EW15HYjxk+KuVpxWV4K+ETpaXV jwNfS3PAmvASbz4zDXH+88dH0EXYyZDTYUGCb+YPGlM9B7aIKY1itDeu2/QnY8tv 6V4yxOPfsNxV1W/LwxCngVhk8kMxpoUdeK43T7YNRxoN40UxTZ7n1nMSAZyDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUkEmrhL4i/qieoz7+zjCR25NNFfIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMTcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCYwDQYJKoZIhvcNAQELBQADggEBACWw +X+UNSrBdoEUkRQjshatZXtsA3IffrY9VODXM2QnR/EB9J7dV7Vj9H1Gb56Yphaw Z0DFoSrOnnzSJe6Mlrc/W8bizxwg1Pyj10PyYT5eOv3aC3yv/acX+CU9wv5Wl287 VE6od6Iln/GLp0K9QpIQNaMnpPn14KhakhbWugvHVZi1EtlMtg0N8zhfAT+WUX3P 2QDR6IRUqMjued1Jy9/TMjz5GkzCf0iGgwe2N7IfbQKCDvy7LKkYtDThLr2FZIN7 WAVU5PBy6W9bK5kHQf9PLA430yZgCb7kjDD1l4pcuD6V7j7vWU99YMa7ABJv/kD+ /FWz9PCcnTW0cGsAU2M= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:03 2026 by rpki-client