$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200263.roa File: AS200263.roa (raw, json) Hash identifier: LiqvWrzMpVDujfms5Y1vSwE+cGETvF0hupcpl6KRHIk= Subject key identifier: BF:E4:70:88:A9:B9:96:AC:5A:DF:01:7A:0C:12:79:CD:3E:6C:72:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 50C03BB6870266D37411785935F17CBAC7ACA5B3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200263.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 200263 IP address blocks: 2a0a:6040:2b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:c0:3b:b6:87:02:66:d3:74:11:78:59:35:f1:7c:ba:c7:ac:a5:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=BFE47088A9B996AC5ADF017A0C1279CD3E6C7293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6f:05:c5:3e:c6:0c:4a:42:d9:08:17:0b:ac: 13:76:11:5d:38:ec:71:72:6e:d6:78:24:2c:ae:68: 65:f3:20:7d:9d:5b:ad:71:04:39:1f:9f:a6:76:ec: cc:04:4a:af:f6:0a:b1:0d:56:b0:c9:96:1e:c1:e8: d3:59:bf:5a:7d:6e:f4:71:85:73:14:8b:c9:db:3d: 8d:ae:19:f3:e4:4a:35:65:9a:d6:50:2a:c7:6f:07: 32:35:bc:cc:d6:47:81:fe:50:1a:ba:48:06:e1:7e: 0b:06:0b:15:44:23:e9:cb:be:b4:b5:30:f1:5f:ec: c9:be:12:e4:88:c7:36:34:3c:ef:4d:63:77:52:e8: 47:0f:9f:65:ec:ca:86:89:b9:4b:e1:4e:16:03:3f: c6:aa:7d:b4:54:39:bc:ff:e6:4d:12:72:80:a6:32: 2d:91:00:be:a2:b7:84:09:74:09:b3:ba:48:ef:98: e0:89:3b:c0:38:16:fd:79:2e:b7:22:57:8c:1a:80: ba:91:1a:a0:55:37:b8:df:6e:a2:20:3e:8d:ef:8a: a2:6b:32:02:26:19:d9:05:3d:22:20:71:d7:29:d7: 09:07:5a:9d:d2:bd:f8:b2:a4:43:71:63:c1:42:e3: da:39:f6:5d:8c:91:17:41:77:e6:63:d5:c3:b3:17: 5e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:E4:70:88:A9:B9:96:AC:5A:DF:01:7A:0C:12:79:CD:3E:6C:72:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200263.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2b00::/40 Signature Algorithm: sha256WithRSAEncryption 96:56:14:ad:60:f0:0e:ac:f0:59:9b:8e:77:4d:02:2f:50:6f: c1:96:54:1c:f5:82:bf:38:ab:17:f8:c5:15:41:cb:1b:1a:76: b2:ae:c5:07:f1:c8:e2:a0:a2:1f:0b:a7:4d:56:6e:64:f9:40: 88:cd:ae:51:3e:33:84:ee:35:a0:5c:78:b0:2b:15:2c:1b:48: e8:42:3f:71:7e:30:cb:b9:74:66:b3:4b:67:f2:a4:99:c7:ad: 12:4d:13:df:6a:cd:7a:c2:e5:5c:08:a4:a2:b6:8b:5e:06:85: 5a:9d:80:93:c1:49:bc:d6:84:39:c2:f8:f3:d2:04:56:ca:13: 7b:f6:fd:2f:8b:53:07:15:aa:dc:99:e6:88:da:b2:58:d0:ce: 84:78:c1:c1:0a:76:c9:0b:a5:26:dc:83:9b:52:9b:14:fa:6d: 1f:f8:3b:5e:ee:fb:16:0b:4e:92:1f:24:7d:0d:ac:df:e1:43: 31:58:e9:7f:40:8b:07:4a:2b:47:67:26:2a:e5:9b:94:19:a1: a9:49:0e:0d:68:eb:5d:33:c7:7a:0d:80:b9:3b:06:bc:e4:a3: 9e:8e:84:74:ff:16:97:d3:cf:a7:f7:60:0a:50:a5:40:e5:6b: a3:5f:da:61:d6:2c:ff:bc:1c:4b:b0:38:ef:89:f2:36:74:70: a5:fb:83:7e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUMA7tocCZtN0EXhZNfF8usespbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKEJGRTQ3MDg4QTlCOTk2QUM1QURGMDE3QTBDMTI3OUNEM0U2QzcyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgbwXFPsYMSkLZCBcLrBN2EV04 7HFybtZ4JCyuaGXzIH2dW61xBDkfn6Z27MwESq/2CrENVrDJlh7B6NNZv1p9bvRx hXMUi8nbPY2uGfPkSjVlmtZQKsdvBzI1vMzWR4H+UBq6SAbhfgsGCxVEI+nLvrS1 MPFf7Mm+EuSIxzY0PO9NY3dS6EcPn2XsyoaJuUvhThYDP8aqfbRUObz/5k0ScoCm Mi2RAL6it4QJdAmzukjvmOCJO8A4Fv15LrciV4wagLqRGqBVN7jfbqIgPo3viqJr MgImGdkFPSIgcdcp1wkHWp3SvfiypENxY8FC49o59l2MkRdBd+Zj1cOzF173AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUv+RwiKm5lqxa3wF6DBJ5zT5scpMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjYzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCswDQYJKoZIhvcNAQELBQADggEBAJZW FK1g8A6s8FmbjndNAi9Qb8GWVBz1gr84qxf4xRVByxsadrKuxQfxyOKgoh8Lp01W bmT5QIjNrlE+M4TuNaBceLArFSwbSOhCP3F+MMu5dGazS2fypJnHrRJNE99qzXrC 5VwIpKK2i14GhVqdgJPBSbzWhDnC+PPSBFbKE3v2/S+LUwcVqtyZ5ojasljQzoR4 wcEKdskLpSbcg5tSmxT6bR/4O17u+xYLTpIfJH0NrN/hQzFY6X9AiwdKK0dnJirl m5QZoalJDg1o610zx3oNgLk7Brzko56OhHT/FpfTz6f3YApQpUDla6Nf2mHWLP+8 HEuwOO+J8jZ0cKX7g34= -----END CERTIFICATE-----Generated at Wed Nov 5 14:53:28 2025 by rpki-client