$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200230.roa File: AS200230.roa (raw, json) Hash identifier: XNrB/L+KT9wb+wrmXug+t1dhw2SOUzSJ/NRccTH+obw= Subject key identifier: D6:3D:BF:3F:13:36:E1:ED:3F:8F:3B:BF:7B:B3:C7:40:51:18:F9:37 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 52A5ECC289E952FE4D2B7091A0717F50CB572B35 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200230.roa Signing time: Fri 05 Jun 2026 07:12:45 +0000 ROA not before: Fri 05 Jun 2026 07:07:45 +0000 ROA not after: Fri 04 Jun 2027 07:12:45 +0000 asID: 200230 IP address blocks: 2a0a:6040:3b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:a5:ec:c2:89:e9:52:fe:4d:2b:70:91:a0:71:7f:50:cb:57:2b:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:45 2026 GMT Not After : Jun 4 07:12:45 2027 GMT Subject: CN=D63DBF3F1336E1ED3F8F3BBF7BB3C7405118F937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:63:86:7c:7d:4e:5a:03:19:0b:71:2f:5e:5d: 26:fa:42:c1:79:23:10:41:8a:c8:2b:97:80:b7:5d: c3:b3:cf:f5:3e:e4:1e:d9:f8:98:b8:f6:4b:27:3a: fa:8b:c0:a3:24:fd:77:90:36:7f:80:c7:3e:62:17: c4:9c:78:1c:18:fa:0d:c2:03:9a:49:52:6a:d1:f6: e0:ec:db:be:a4:5a:a3:f1:3d:67:06:ff:d5:fe:9d: fb:4b:3d:89:a0:8a:b7:b5:de:97:69:f7:04:c6:90: 49:b1:32:ef:57:79:4f:57:b8:6b:e7:cf:45:97:bc: ed:e0:d8:2e:93:ab:7d:97:d2:a6:df:af:ec:47:dc: ad:47:68:f3:2a:3d:42:7a:b7:74:15:9c:1d:aa:97: 3e:d7:c1:e6:1e:c1:80:aa:b8:82:1a:d0:82:f1:b8: 73:1c:f4:61:cc:3d:98:66:68:36:99:31:f6:3c:04: 1c:ab:cf:37:cd:4b:31:fe:16:2c:cf:bf:3b:88:c9: b9:a2:d2:68:ed:f4:55:eb:5e:4f:1b:06:57:57:a8: 93:bc:18:91:d7:67:fa:92:fb:cc:a4:db:16:bb:81: 0e:fb:55:9d:3a:12:03:de:d3:e9:6f:56:69:97:76: a9:b7:84:0e:d1:53:30:a0:ba:79:12:bc:7c:55:5a: 3d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3D:BF:3F:13:36:E1:ED:3F:8F:3B:BF:7B:B3:C7:40:51:18:F9:37 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200230.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3b00::/40 Signature Algorithm: sha256WithRSAEncryption 3e:2e:f7:3e:84:8b:f0:45:51:38:e3:4c:3b:9e:2e:f2:07:d8: cd:73:e4:17:67:18:b2:c2:35:b2:66:72:ed:9d:86:f4:52:53: 99:8a:b5:66:1d:5f:92:d1:7b:a0:2f:59:0d:ca:38:02:23:86: c1:62:35:af:0b:12:11:84:3d:93:c2:e8:25:96:ea:28:14:02: 75:fa:4d:1e:f9:71:3c:87:3f:e5:77:f0:cd:ff:4e:59:c1:ab: 30:eb:24:a5:9b:45:28:d2:2d:b1:d0:75:81:82:02:dc:87:2b: 01:9f:99:39:dd:9e:37:34:0d:b6:de:69:12:90:17:69:37:fd: 6f:8e:cb:96:d1:ae:fa:85:6e:ba:65:e5:a0:1a:f4:9a:c1:b6: 64:d3:85:7f:b6:7a:aa:f0:78:f8:40:ee:a3:6a:eb:9a:a7:4e: 67:9c:da:fb:ff:ec:2b:1b:cc:f3:6c:cd:4a:0e:dd:b8:89:7d: 43:9e:3e:be:fd:1f:55:1e:69:26:b8:75:63:5b:1e:5c:20:42: a8:5b:05:25:d2:31:53:85:a2:0c:45:ae:bb:7f:8d:70:51:e7: bc:93:dd:4c:03:5c:46:c1:58:d9:e7:f0:88:b7:3d:cd:04:f8: ed:0f:c1:22:5a:06:5b:17:60:35:d4:c1:85:63:68:6f:3d:28: fa:6a:1c:9d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUqXswonpUv5NK3CRoHF/UMtXKzUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDVaFw0yNzA2MDQwNzEyNDVaMDMxMTAvBgNV BAMTKEQ2M0RCRjNGMTMzNkUxRUQzRjhGM0JCRjdCQjNDNzQwNTExOEY5MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFY4Z8fU5aAxkLcS9eXSb6QsF5 IxBBisgrl4C3XcOzz/U+5B7Z+Ji49ksnOvqLwKMk/XeQNn+Axz5iF8SceBwY+g3C A5pJUmrR9uDs276kWqPxPWcG/9X+nftLPYmgire13pdp9wTGkEmxMu9XeU9XuGvn z0WXvO3g2C6Tq32X0qbfr+xH3K1HaPMqPUJ6t3QVnB2qlz7XweYewYCquIIa0ILx uHMc9GHMPZhmaDaZMfY8BByrzzfNSzH+FizPvzuIybmi0mjt9FXrXk8bBldXqJO8 GJHXZ/qS+8yk2xa7gQ77VZ06EgPe0+lvVmmXdqm3hA7RUzCgunkSvHxVWj2rAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1j2/PxM24e0/jzu/e7PHQFEY+TcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDswDQYJKoZIhvcNAQELBQADggEBAD4u 9z6Ei/BFUTjjTDueLvIH2M1z5BdnGLLCNbJmcu2dhvRSU5mKtWYdX5LRe6AvWQ3K OAIjhsFiNa8LEhGEPZPC6CWW6igUAnX6TR75cTyHP+V38M3/TlnBqzDrJKWbRSjS LbHQdYGCAtyHKwGfmTndnjc0DbbeaRKQF2k3/W+Oy5bRrvqFbrpl5aAa9JrBtmTT hX+2eqrwePhA7qNq65qnTmec2vv/7CsbzPNszUoO3biJfUOePr79H1UeaSa4dWNb HlwgQqhbBSXSMVOFogxFrrt/jXBR57yT3UwDXEbBWNnn8Ii3Pc0E+O0PwSJaBlsX YDXUwYVjaG89KPpqHJ0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:26 2026 by rpki-client