$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200234.roa File: AS200234.roa (raw, json) Hash identifier: Oy+fxUzQNYxMUokL9tAk6N59A3tcgkoSOfpzbvNkHZo= Subject key identifier: 58:B6:5D:A7:9A:F4:31:6F:56:11:FA:D8:78:88:28:C7:27:0E:8D:7E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 032EE27327741D5AE52520DCF85320F03C77830B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200234.roa Signing time: Fri 05 Jun 2026 07:12:37 +0000 ROA not before: Fri 05 Jun 2026 07:07:37 +0000 ROA not after: Fri 04 Jun 2027 07:12:37 +0000 asID: 200234 IP address blocks: 2a0a:6040:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:2e:e2:73:27:74:1d:5a:e5:25:20:dc:f8:53:20:f0:3c:77:83:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:37 2026 GMT Not After : Jun 4 07:12:37 2027 GMT Subject: CN=58B65DA79AF4316F5611FAD8788828C7270E8D7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:bf:d5:e1:b4:4e:d9:a1:78:5f:36:3d:db:a7: d3:b0:ee:fe:cf:cf:94:80:74:ef:1b:07:58:be:d9: 73:0f:3a:b7:ea:2c:3f:0e:99:20:63:3e:d5:69:22: ac:84:a0:95:1f:0b:ad:85:6d:61:04:22:9b:f5:bc: b0:41:60:c3:26:47:3e:4a:19:c4:68:34:f3:91:87: dd:24:04:9b:60:b9:5b:d1:8b:84:15:fb:a3:1f:ed: 3f:37:df:98:5b:0c:d2:e5:61:1f:b1:57:57:61:fd: a3:ef:d2:d0:fb:cf:af:80:f9:e6:23:fa:bb:26:f9: e2:b2:f7:a8:06:22:b1:dc:69:76:99:8c:c7:06:54: 46:55:42:6d:6f:7f:44:37:60:82:6e:08:bf:02:fc: 64:11:cb:c4:13:d8:2a:c8:d9:81:f6:9c:f5:82:f8: 15:16:1d:90:3f:d7:b9:38:4f:72:3b:00:40:e9:0a: f2:b5:a8:74:44:a9:e6:95:3f:8b:9d:56:a5:aa:76: 6b:78:1e:34:cd:c5:13:1c:bc:a7:de:14:80:0c:f0: 6a:9c:42:5a:21:0e:40:f1:d8:99:c5:65:82:ff:6f: f0:61:10:c2:45:5b:18:68:47:c0:b8:52:6f:d6:29: 95:84:f8:ca:61:ce:c0:3b:b0:d9:41:ef:8f:d8:78: 55:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B6:5D:A7:9A:F4:31:6F:56:11:FA:D8:78:88:28:C7:27:0E:8D:7E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3600::/40 Signature Algorithm: sha256WithRSAEncryption b6:60:1a:09:85:70:87:bd:2b:9d:cc:c5:2f:45:40:cd:c7:24: b9:ee:32:3a:56:b0:b9:bb:82:97:5f:ac:e7:dd:b9:19:aa:3f: 0f:ba:22:63:fd:74:a2:3c:1a:d6:2e:70:59:45:2b:d5:6a:84: 4b:73:a1:2e:5d:f7:cb:8c:c0:35:ff:1b:04:5f:a8:e6:61:e3: eb:1d:93:5b:be:83:42:c5:be:7c:bc:98:d6:45:47:5b:d4:54: 44:2c:83:96:a6:a0:6b:d6:5a:1f:ab:48:6b:15:e6:e2:38:9e: 8f:64:d0:b0:8f:f1:09:a5:14:08:20:11:71:65:cf:84:55:3a: 6d:5a:ba:4d:96:5f:0d:fe:d1:37:0d:20:ec:12:5f:b5:ce:1e: a3:55:91:ba:3d:db:1e:ed:f4:dc:b1:84:7e:78:a3:63:9f:d8: 16:e0:56:fe:0b:a5:ae:a7:39:f6:08:ea:ea:67:be:65:4a:fe: 78:58:b6:39:23:78:66:49:83:7d:e6:80:5d:fb:fb:2a:8b:a3: c7:fa:12:29:36:6d:ab:c3:7f:89:2a:ce:12:03:eb:8e:c1:03: 39:23:50:64:2a:ce:9e:26:e6:a8:81:5b:3d:aa:b9:b9:b6:b2: 2d:80:bf:2a:3c:d2:86:48:78:d0:bf:0e:0d:94:18:47:70:18: 7c:55:f8:3b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAy7icyd0HVrlJSDc+FMg8Dx3gwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzdaFw0yNzA2MDQwNzEyMzdaMDMxMTAvBgNV BAMTKDU4QjY1REE3OUFGNDMxNkY1NjExRkFEODc4ODgyOEM3MjcwRThEN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3v9XhtE7ZoXhfNj3bp9Ow7v7P z5SAdO8bB1i+2XMPOrfqLD8OmSBjPtVpIqyEoJUfC62FbWEEIpv1vLBBYMMmRz5K GcRoNPORh90kBJtguVvRi4QV+6Mf7T8335hbDNLlYR+xV1dh/aPv0tD7z6+A+eYj +rsm+eKy96gGIrHcaXaZjMcGVEZVQm1vf0Q3YIJuCL8C/GQRy8QT2CrI2YH2nPWC +BUWHZA/17k4T3I7AEDpCvK1qHREqeaVP4udVqWqdmt4HjTNxRMcvKfeFIAM8Gqc QlohDkDx2JnFZYL/b/BhEMJFWxhoR8C4Um/WKZWE+MphzsA7sNlB74/YeFXVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWLZdp5r0MW9WEfrYeIgoxycOjX4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDYwDQYJKoZIhvcNAQELBQADggEBALZg GgmFcIe9K53MxS9FQM3HJLnuMjpWsLm7gpdfrOfduRmqPw+6ImP9dKI8GtYucFlF K9VqhEtzoS5d98uMwDX/GwRfqOZh4+sdk1u+g0LFvny8mNZFR1vUVEQsg5amoGvW Wh+rSGsV5uI4no9k0LCP8QmlFAggEXFlz4RVOm1auk2WXw3+0TcNIOwSX7XOHqNV kbo92x7t9NyxhH54o2Of2BbgVv4Lpa6nOfYI6upnvmVK/nhYtjkjeGZJg33mgF37 +yqLo8f6Eik2bavDf4kqzhID647BAzkjUGQqzp4m5qiBWz2qubm2si2Avyo80oZI eNC/Dg2UGEdwGHxV+Ds= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:03 2026 by rpki-client