$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200256.roa File: AS200256.roa (raw, json) Hash identifier: Ta41avcVI0x8jRiC8kRtuC977ZBCbXiHHIEd1pPoVD4= Subject key identifier: D7:16:44:1A:79:55:59:25:5E:84:C3:73:C9:92:99:F0:3F:CC:F5:3E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 67C0CA7C8C2FF0598E15FA0B34516067D324F5A8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200256.roa Signing time: Fri 05 Jun 2026 07:12:29 +0000 ROA not before: Fri 05 Jun 2026 07:07:29 +0000 ROA not after: Fri 04 Jun 2027 07:12:29 +0000 asID: 200256 IP address blocks: 2a0a:6040:2d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:c0:ca:7c:8c:2f:f0:59:8e:15:fa:0b:34:51:60:67:d3:24:f5:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:29 2026 GMT Not After : Jun 4 07:12:29 2027 GMT Subject: CN=D716441A795559255E84C373C99299F03FCCF53E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:76:71:d9:2c:5e:cb:af:7d:3d:67:74:5b: a8:e0:0b:56:d8:c2:6c:cd:69:c2:80:86:bf:8b:a7: 6a:96:e6:de:e0:1c:41:83:6a:37:1e:0a:16:7d:03: 07:cd:ac:00:b7:53:a2:3e:80:a2:fd:ae:22:7b:b3: 22:82:5f:b7:1e:9a:9c:a4:99:47:62:07:e4:a6:e9: 8c:52:52:eb:98:cf:c8:26:b5:da:f6:09:fd:4a:d8: 00:d0:b6:58:52:1d:7f:ab:1a:0b:a4:65:1a:cf:2c: e9:10:85:31:11:5f:de:df:c6:d8:4f:40:97:c1:b5: 5a:1a:9b:d4:29:3e:75:d0:f9:f6:da:8b:69:82:f6: e5:00:4c:4e:25:49:44:5c:c3:1a:94:38:f7:bd:8d: 53:57:89:69:a7:9e:18:40:1b:00:e8:47:b3:86:44: 86:e5:a0:64:cf:da:6c:d3:7b:45:5b:7f:0d:1a:bb: ae:1b:67:e7:19:da:9c:f3:08:98:10:af:46:42:aa: 36:dd:f0:a8:8d:77:e9:13:96:bd:d2:43:64:ca:1c: 37:74:39:71:1f:47:e6:ea:0f:e2:02:df:61:c2:8e: aa:c3:cb:a8:b2:43:43:21:8b:8a:be:39:46:07:c1: 12:94:73:ad:62:ed:5c:17:74:59:07:b6:c5:12:7c: 6f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:16:44:1A:79:55:59:25:5E:84:C3:73:C9:92:99:F0:3F:CC:F5:3E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200256.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2d00::/40 Signature Algorithm: sha256WithRSAEncryption 49:4a:e8:c3:ff:6e:b3:d0:c1:9b:9d:d7:9d:e1:bc:c8:96:b1: df:68:01:fa:de:ab:2c:76:ad:f2:a6:9c:8e:99:a6:a2:1c:3e: fe:84:60:58:1e:fa:54:20:bb:08:fd:98:88:ce:f4:47:ad:8c: 91:51:14:7b:e8:ac:78:c4:6a:3f:3e:9b:f7:76:74:22:e1:a7: 7f:93:be:3b:8c:c4:39:40:9c:57:17:2f:11:c2:73:3a:96:be: 5b:f9:8b:a2:3a:48:58:41:bb:c5:0c:f6:fc:19:a9:3a:c8:af: c0:10:2c:51:f5:52:64:c2:79:cb:2d:43:a2:cc:45:4b:0e:c9: c0:13:3c:c6:f1:ba:c0:99:cc:bc:8c:b3:be:62:94:48:f5:3e: 08:16:4e:7a:c3:f4:8e:f0:a5:26:9d:fa:ba:4c:17:21:ea:d9: 5b:30:7f:54:37:00:e0:2e:88:30:c8:34:a4:13:ba:45:07:f7: 7e:7a:89:96:66:d0:33:fc:a0:30:7c:c4:68:7a:b7:a7:4c:8d: 4e:45:a7:02:09:f1:bd:c5:ee:96:e8:7e:29:ea:bd:ef:d8:40: e9:79:ba:76:0f:55:82:ac:9b:c1:20:0d:91:64:e5:e1:45:d3: 35:4b:17:c7:6f:9d:97:4a:19:c0:6b:8d:be:63:27:94:e8:91: 87:8e:c2:60 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ8DKfIwv8FmOFfoLNFFgZ9Mk9agwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjlaFw0yNzA2MDQwNzEyMjlaMDMxMTAvBgNV BAMTKEQ3MTY0NDFBNzk1NTU5MjU1RTg0QzM3M0M5OTI5OUYwM0ZDQ0Y1M0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRznZx2Sxey699PWd0W6jgC1bY wmzNacKAhr+Lp2qW5t7gHEGDajceChZ9AwfNrAC3U6I+gKL9riJ7syKCX7cempyk mUdiB+Sm6YxSUuuYz8gmtdr2Cf1K2ADQtlhSHX+rGgukZRrPLOkQhTERX97fxthP QJfBtVoam9QpPnXQ+fbai2mC9uUATE4lSURcwxqUOPe9jVNXiWmnnhhAGwDoR7OG RIbloGTP2mzTe0Vbfw0au64bZ+cZ2pzzCJgQr0ZCqjbd8KiNd+kTlr3SQ2TKHDd0 OXEfR+bqD+IC32HCjqrDy6iyQ0Mhi4q+OUYHwRKUc61i7VwXdFkHtsUSfG/vAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1xZEGnlVWSVehMNzyZKZ8D/M9T4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjU2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQC0wDQYJKoZIhvcNAQELBQADggEBAElK 6MP/brPQwZud153hvMiWsd9oAfreqyx2rfKmnI6ZpqIcPv6EYFge+lQguwj9mIjO 9EetjJFRFHvorHjEaj8+m/d2dCLhp3+TvjuMxDlAnFcXLxHCczqWvlv5i6I6SFhB u8UM9vwZqTrIr8AQLFH1UmTCecstQ6LMRUsOycATPMbxusCZzLyMs75ilEj1PggW TnrD9I7wpSad+rpMFyHq2Vswf1Q3AOAuiDDINKQTukUH9356iZZm0DP8oDB8xGh6 t6dMjU5FpwIJ8b3F7pbofinqve/YQOl5unYPVYKsm8EgDZFk5eFF0zVLF8dvnZdK GcBrjb5jJ5TokYeOwmA= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:10 2026 by rpki-client