$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200255.roa File: AS200255.roa (raw, json) Hash identifier: nkeNu81XIh/uO+wFox0YKyHZ9rn3KHRh8+av+5fxJak= Subject key identifier: 3C:F1:76:AB:2C:F9:52:E4:DA:34:46:D9:E6:50:4C:4A:AB:C0:86:3F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 751E8D93FEE576AE4BBD12F9CE75E2FBD2031D7B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200255.roa Signing time: Fri 04 Jul 2025 06:53:00 +0000 ROA not before: Fri 04 Jul 2025 06:48:00 +0000 ROA not after: Fri 03 Jul 2026 06:53:00 +0000 asID: 200255 IP address blocks: 2a0a:6040:bf00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:1e:8d:93:fe:e5:76:ae:4b:bd:12:f9:ce:75:e2:fb:d2:03:1d:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:00 2025 GMT Not After : Jul 3 06:53:00 2026 GMT Subject: CN=3CF176AB2CF952E4DA3446D9E6504C4AABC0863F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:54:06:9e:f8:e7:1b:7a:09:dd:5c:b2:41:fa: c1:79:af:ee:95:91:28:12:79:52:f9:17:fb:23:a4: 69:6e:49:5f:23:ef:8a:96:62:21:95:de:7b:10:14: 30:32:b3:57:83:bf:5a:36:3a:c6:42:90:f1:53:f6: 9e:2d:73:55:df:52:cf:cf:8b:20:71:41:89:3d:a7: c9:08:b5:31:21:78:58:fb:db:ba:d4:74:c6:39:e5: b6:a9:85:8a:cd:f7:45:10:5b:b0:43:09:49:62:9c: 22:89:76:e3:40:09:f6:57:22:a7:25:aa:ad:51:4e: 5b:a3:62:bd:01:6e:89:88:80:03:1b:c0:24:99:3c: 08:a7:8d:3e:30:c9:c1:69:c6:7d:7d:9d:e2:1a:17: 3c:c5:75:c5:f0:dc:86:fa:72:4e:9f:a4:4b:52:7b: cc:f6:fc:de:ca:ae:0a:ac:f3:63:d3:67:2c:08:dc: 5f:d5:0c:b7:91:ec:4d:98:10:cb:2c:d4:21:33:0f: 60:b7:09:77:cf:48:15:06:6f:49:49:95:19:9b:de: 2c:76:47:e8:da:94:1d:4b:c4:83:5a:db:76:06:8e: 61:45:e3:52:c9:34:40:b7:87:40:6d:18:83:46:16: 2c:cc:fc:03:d2:37:ff:88:85:28:82:ab:1e:41:92: aa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F1:76:AB:2C:F9:52:E4:DA:34:46:D9:E6:50:4C:4A:AB:C0:86:3F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200255.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bf00::/40 Signature Algorithm: sha256WithRSAEncryption c1:45:36:d8:e7:ea:0d:4f:6f:e4:e5:98:14:e2:d0:bd:52:34: 2d:4a:73:77:18:a3:2e:90:d3:95:98:d7:44:4e:94:97:fb:79: b2:ed:c8:6e:77:23:f9:79:33:3d:b3:a8:c2:a9:37:0e:68:c0: 29:2a:f9:8e:ef:6a:35:34:81:d0:40:8e:61:8c:53:18:21:1f: 89:6d:7c:ce:52:33:37:6e:35:e8:b1:d9:5b:72:d6:48:6d:e7: 3b:5f:92:d1:f0:7b:98:3a:ea:ab:3e:59:ff:2f:66:fb:da:80: 75:06:d3:09:01:d7:b2:c0:7b:74:e3:3a:49:6f:24:65:0c:d7: 92:45:6c:ce:07:30:86:c0:19:fd:b1:29:ea:1b:98:85:2e:35: d6:0d:63:c9:df:0c:b9:f1:5b:c0:fb:e5:25:a4:f8:d2:32:47: a2:df:44:35:32:81:19:f6:0a:75:4f:94:c7:e9:45:c3:55:16: 07:3f:ea:91:6c:6c:d1:bf:c0:26:d4:44:c1:06:1f:a8:aa:ec: d5:2e:fc:57:ec:5f:ab:bf:74:42:00:6e:bd:91:85:1b:9c:98: c3:a9:df:52:d0:13:77:a0:7b:b4:2e:c2:13:20:0b:8a:21:fb: 23:37:e3:56:03:0f:62:cf:2a:f0:9a:cb:fb:00:44:90:32:1b: c9:aa:29:f8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdR6Nk/7ldq5LvRL5znXi+9IDHXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDBaFw0yNjA3MDMwNjUzMDBaMDMxMTAvBgNV BAMTKDNDRjE3NkFCMkNGOTUyRTREQTM0NDZEOUU2NTA0QzRBQUJDMDg2M0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcVAae+OcbegndXLJB+sF5r+6V kSgSeVL5F/sjpGluSV8j74qWYiGV3nsQFDAys1eDv1o2OsZCkPFT9p4tc1XfUs/P iyBxQYk9p8kItTEheFj727rUdMY55baphYrN90UQW7BDCUlinCKJduNACfZXIqcl qq1RTlujYr0BbomIgAMbwCSZPAinjT4wycFpxn19neIaFzzFdcXw3Ib6ck6fpEtS e8z2/N7Krgqs82PTZywI3F/VDLeR7E2YEMss1CEzD2C3CXfPSBUGb0lJlRmb3ix2 R+jalB1LxINa23YGjmFF41LJNEC3h0BtGINGFizM/APSN/+IhSiCqx5BkqqPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPPF2qyz5UuTaNEbZ5lBMSqvAhj8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL8wDQYJKoZIhvcNAQELBQADggEBAMFF Ntjn6g1Pb+TlmBTi0L1SNC1Kc3cYoy6Q05WY10ROlJf7ebLtyG53I/l5Mz2zqMKp Nw5owCkq+Y7vajU0gdBAjmGMUxghH4ltfM5SMzduNeix2Vty1kht5ztfktHwe5g6 6qs+Wf8vZvvagHUG0wkB17LAe3TjOklvJGUM15JFbM4HMIbAGf2xKeobmIUuNdYN Y8nfDLnxW8D75SWk+NIyR6LfRDUygRn2CnVPlMfpRcNVFgc/6pFsbNG/wCbURMEG H6iq7NUu/FfsX6u/dEIAbr2RhRucmMOp31LQE3ege7QuwhMgC4oh+yM341YDD2LP KvCay/sARJAyG8mqKfg= -----END CERTIFICATE-----Generated at Mon Aug 4 15:59:25 2025 by rpki-client