$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200255.roa File: AS200255.roa (raw, json) Hash identifier: GepR4uG5uGLfwq2AECHE1QcJpJczGEFS3hVqbyRRf/w= Subject key identifier: A7:86:44:E8:40:AF:15:EF:04:14:3D:2E:AE:B2:FF:97:66:77:AE:A2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3C28A5DB56182EE6E9215D986A0D1629BBD4947F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200255.roa Signing time: Fri 05 Jun 2026 07:12:25 +0000 ROA not before: Fri 05 Jun 2026 07:07:25 +0000 ROA not after: Fri 04 Jun 2027 07:12:25 +0000 asID: 200255 IP address blocks: 2a0a:6040:bf00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:28:a5:db:56:18:2e:e6:e9:21:5d:98:6a:0d:16:29:bb:d4:94:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:25 2026 GMT Not After : Jun 4 07:12:25 2027 GMT Subject: CN=A78644E840AF15EF04143D2EAEB2FF976677AEA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9f:d4:a2:77:01:a1:16:5b:a7:11:84:80:da: 18:8f:fd:b5:56:50:4a:3d:d2:f0:6d:82:6f:64:f8: 64:22:f7:bc:4e:e9:5e:a1:0b:fb:66:77:2e:3c:96: d7:4b:ef:d3:6c:e2:c8:3f:15:aa:4c:5e:0d:8e:72: ab:83:54:f6:ee:32:38:0d:ab:36:b1:f4:57:3f:00: fe:12:d2:f7:24:d5:fc:47:a3:d6:7f:d1:be:36:87: 23:11:7d:55:86:7a:e4:a6:b7:a4:70:c7:9c:86:2e: 5f:9b:b9:87:2d:75:a4:1b:b6:fb:4e:d0:6f:5d:2b: e4:c7:56:ef:73:f8:06:e9:b3:6c:1f:d5:ef:cf:85: e5:e5:bf:09:59:eb:bb:a4:d3:7b:90:95:94:46:82: 8a:f7:02:3b:df:98:ca:5a:5f:e7:22:9c:0f:3c:8b: a1:4a:7b:15:85:24:9d:f8:1e:52:0c:f7:d0:2f:f3: 65:9e:0e:76:59:14:af:ef:a8:a0:13:43:ba:df:a1: 15:14:1c:14:a4:c7:be:27:eb:c3:6e:d1:82:eb:8d: cb:c5:03:17:60:f0:96:e4:5c:29:37:42:1c:d2:e7: eb:08:f4:c5:0e:f9:66:2c:ff:59:27:f9:d7:9e:3f: 68:fc:1a:17:58:5b:64:1c:48:f3:26:7c:7d:57:fa: 97:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:86:44:E8:40:AF:15:EF:04:14:3D:2E:AE:B2:FF:97:66:77:AE:A2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200255.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bf00::/40 Signature Algorithm: sha256WithRSAEncryption df:b6:5b:dc:9f:c2:45:6a:53:c0:13:e8:a5:fa:ef:4b:b9:f0: 6f:39:c8:37:51:70:68:fd:56:02:25:76:64:1f:e1:27:19:8a: 43:7e:ae:9f:2b:7c:f3:d4:4d:a5:38:36:2b:8b:68:92:26:c7: f6:c5:21:94:08:e0:ca:3e:ce:50:11:93:9b:f3:fb:d5:43:4c: b7:7d:b1:1e:18:2c:5b:2c:b7:10:4b:60:36:27:a6:bc:b2:4f: 81:df:fd:6c:91:9d:9a:7b:b6:41:29:14:25:e6:f4:cf:6a:2d: c1:6a:f8:cc:d1:f5:ae:b7:a6:26:e1:a9:fb:c2:fc:4a:55:1c: 03:95:cc:b0:23:1f:dc:34:c7:d2:b2:bd:74:24:e2:0d:b4:8e: c3:5c:6e:36:a4:2c:6c:3f:18:5b:60:12:03:fb:55:11:ba:1b: 15:e9:ed:77:44:a4:e9:b0:32:fd:76:33:b0:3f:a6:1a:78:82: 03:37:de:98:02:05:b9:21:09:7e:b4:fc:78:12:42:10:41:a9: 5a:01:77:c5:55:90:76:17:4f:52:3a:5b:94:4f:39:7c:e9:6b: 24:a6:25:2b:90:b8:46:95:41:68:62:dd:f8:b7:2f:a4:e0:e8: 83:e6:9f:c3:08:5f:d8:69:99:32:a0:89:e1:d1:53:7e:44:67: 09:54:43:01 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPCil21YYLubpIV2Yag0WKbvUlH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjVaFw0yNzA2MDQwNzEyMjVaMDMxMTAvBgNV BAMTKEE3ODY0NEU4NDBBRjE1RUYwNDE0M0QyRUFFQjJGRjk3NjY3N0FFQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9n9SidwGhFlunEYSA2hiP/bVW UEo90vBtgm9k+GQi97xO6V6hC/tmdy48ltdL79Ns4sg/FapMXg2OcquDVPbuMjgN qzax9Fc/AP4S0vck1fxHo9Z/0b42hyMRfVWGeuSmt6Rwx5yGLl+buYctdaQbtvtO 0G9dK+THVu9z+Abps2wf1e/PheXlvwlZ67uk03uQlZRGgor3AjvfmMpaX+cinA88 i6FKexWFJJ34HlIM99Av82WeDnZZFK/vqKATQ7rfoRUUHBSkx74n68Nu0YLrjcvF Axdg8JbkXCk3QhzS5+sI9MUO+WYs/1kn+deeP2j8GhdYW2QcSPMmfH1X+pfzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUp4ZE6ECvFe8EFD0urrL/l2Z3rqIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL8wDQYJKoZIhvcNAQELBQADggEBAN+2 W9yfwkVqU8AT6KX670u58G85yDdRcGj9VgIldmQf4ScZikN+rp8rfPPUTaU4NiuL aJImx/bFIZQI4Mo+zlARk5vz+9VDTLd9sR4YLFsstxBLYDYnpryyT4Hf/WyRnZp7 tkEpFCXm9M9qLcFq+MzR9a63pibhqfvC/EpVHAOVzLAjH9w0x9KyvXQk4g20jsNc bjakLGw/GFtgEgP7VRG6GxXp7XdEpOmwMv12M7A/php4ggM33pgCBbkhCX60/HgS QhBBqVoBd8VVkHYXT1I6W5RPOXzpaySmJSuQuEaVQWhi3fi3L6Tg6IPmn8MIX9hp mTKgieHRU35EZwlUQwE= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:15 2026 by rpki-client