$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200201.roa File: AS200201.roa (raw, json) Hash identifier: Yy6MJD+IRDGJi+2AqstWK49E73fZn9HQw7ywyVrXtsE= Subject key identifier: FD:A0:29:A8:B3:13:2E:46:DA:5D:77:AB:B0:C1:1D:EC:53:6E:0F:DB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7C54EE8D7B741B0C8CC3EF533EF9896DB75BD0CF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200201.roa Signing time: Fri 05 Jun 2026 07:12:14 +0000 ROA not before: Fri 05 Jun 2026 07:07:14 +0000 ROA not after: Fri 04 Jun 2027 07:12:14 +0000 asID: 200201 IP address blocks: 2a0a:6040:4600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:54:ee:8d:7b:74:1b:0c:8c:c3:ef:53:3e:f9:89:6d:b7:5b:d0:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:14 2026 GMT Not After : Jun 4 07:12:14 2027 GMT Subject: CN=FDA029A8B3132E46DA5D77ABB0C11DEC536E0FDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e6:63:d1:21:e8:23:24:58:29:5d:80:eb:11: 7e:f8:3b:7b:cc:2b:5d:29:73:e1:ad:7d:d1:a3:d8: 28:0f:46:ee:74:85:d5:ca:e1:cf:47:63:b4:d5:f6: 1e:c3:98:a2:05:d6:be:4b:4e:53:fd:52:68:1b:07: 88:d6:e5:6d:04:dd:d8:9a:ca:57:49:4c:d6:33:e4: 3b:6d:71:0a:21:2a:9c:17:b1:78:c2:76:6f:17:6e: 6c:58:a9:cc:73:3f:b3:eb:ce:fc:50:63:93:5a:0b: 9a:5d:ea:c1:4d:35:fd:01:2c:81:7b:12:a6:63:da: c3:4c:a8:f0:f0:3a:8f:f9:97:b0:73:66:97:50:3f: 6b:b2:40:98:e9:e8:f6:af:a7:2f:bb:70:bc:9f:33: 27:77:80:d0:0f:8d:d2:1f:20:d0:32:44:30:62:a2: 8d:2c:56:a6:0f:bc:80:89:47:bc:34:35:39:f9:19: fd:f7:fa:63:51:c0:24:bf:5b:7a:92:e4:08:3c:60: ad:02:37:e8:40:97:ee:db:a2:8d:9d:3a:d7:11:b0: 23:30:bf:09:00:66:dc:33:68:2e:37:8c:60:51:ca: 8b:2f:03:cb:3e:80:60:3c:14:fb:56:b1:50:74:0f: c8:20:7c:13:c0:1a:3a:5d:67:bb:75:b4:8f:a5:82: d5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A0:29:A8:B3:13:2E:46:DA:5D:77:AB:B0:C1:1D:EC:53:6E:0F:DB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4600::/40 Signature Algorithm: sha256WithRSAEncryption d8:89:97:31:6c:6a:0d:5b:64:02:4c:f4:9b:d7:37:5c:59:50: d1:0f:ae:41:1f:f1:f5:3d:5e:9f:50:ad:c4:03:89:3e:06:d2: da:fc:44:29:c7:7e:2a:f4:97:ba:32:ac:15:d4:63:f0:a3:6d: a8:e4:cd:50:a4:c5:19:d4:49:5d:3f:0c:98:3f:00:5f:7f:63: 40:70:0c:2d:1f:9e:a1:2d:40:04:26:56:59:64:6a:3d:52:e2: 90:98:9c:75:f7:59:90:3c:32:66:3b:8b:88:08:f6:25:44:2d: 9f:6a:37:1d:fd:aa:ba:b3:a0:cb:78:72:61:6e:76:ca:2d:94: fe:9c:b0:57:63:b6:45:d6:ee:b3:c1:6b:e2:34:d4:2e:9b:c3: 6e:62:90:6a:54:58:27:70:b5:cd:4f:85:2d:e5:1a:04:b9:33: 5f:34:40:46:62:27:03:0c:35:6d:7a:cc:2c:cb:10:59:a2:c6: 04:6b:f0:c8:57:e7:02:91:92:ac:5f:f9:ae:ff:01:67:48:eb: 29:c1:cc:d9:14:ac:ec:9d:93:4e:d7:69:74:76:9e:57:9f:09: be:76:71:68:c5:9a:2e:1f:98:30:8f:7d:96:bf:12:81:24:0b: f1:b7:53:03:13:dc:52:f1:07:30:3c:f2:db:09:94:b7:31:b2: cf:5e:a8:67 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfFTujXt0GwyMw+9TPvmJbbdb0M8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTRaFw0yNzA2MDQwNzEyMTRaMDMxMTAvBgNV BAMTKEZEQTAyOUE4QjMxMzJFNDZEQTVENzdBQkIwQzExREVDNTM2RTBGREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO5mPRIegjJFgpXYDrEX74O3vM K10pc+GtfdGj2CgPRu50hdXK4c9HY7TV9h7DmKIF1r5LTlP9UmgbB4jW5W0E3dia yldJTNYz5DttcQohKpwXsXjCdm8XbmxYqcxzP7PrzvxQY5NaC5pd6sFNNf0BLIF7 EqZj2sNMqPDwOo/5l7BzZpdQP2uyQJjp6Pavpy+7cLyfMyd3gNAPjdIfINAyRDBi oo0sVqYPvICJR7w0NTn5Gf33+mNRwCS/W3qS5Ag8YK0CN+hAl+7boo2dOtcRsCMw vwkAZtwzaC43jGBRyosvA8s+gGA8FPtWsVB0D8ggfBPAGjpdZ7t1tI+lgtVtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/aApqLMTLkbaXXersMEd7FNuD9swHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEYwDQYJKoZIhvcNAQELBQADggEBANiJ lzFsag1bZAJM9JvXN1xZUNEPrkEf8fU9Xp9QrcQDiT4G0tr8RCnHfir0l7oyrBXU Y/CjbajkzVCkxRnUSV0/DJg/AF9/Y0BwDC0fnqEtQAQmVllkaj1S4pCYnHX3WZA8 MmY7i4gI9iVELZ9qNx39qrqzoMt4cmFudsotlP6csFdjtkXW7rPBa+I01C6bw25i kGpUWCdwtc1PhS3lGgS5M180QEZiJwMMNW16zCzLEFmixgRr8MhX5wKRkqxf+a7/ AWdI6ynBzNkUrOydk07XaXR2nlefCb52cWjFmi4fmDCPfZa/EoEkC/G3UwMT3FLx BzA88tsJlLcxss9eqGc= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:26 2026 by rpki-client