$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200268.roa File: AS200268.roa (raw, json) Hash identifier: rV+Y9RgFuZiPCQ9RYnAKAeU8ErFE935Tdojc38U+Q9w= Subject key identifier: 1F:77:E2:35:A9:EB:8D:1B:54:42:C5:22:38:8B:94:34:54:11:55:F0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6BFC496EF8DD216804927B63D60BF03129C4003A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200268.roa Signing time: Fri 05 Jun 2026 07:12:35 +0000 ROA not before: Fri 05 Jun 2026 07:07:35 +0000 ROA not after: Fri 04 Jun 2027 07:12:35 +0000 asID: 200268 IP address blocks: 2a0a:6040:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:fc:49:6e:f8:dd:21:68:04:92:7b:63:d6:0b:f0:31:29:c4:00:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:35 2026 GMT Not After : Jun 4 07:12:35 2027 GMT Subject: CN=1F77E235A9EB8D1B5442C522388B9434541155F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:38:eb:21:1a:1d:79:ee:76:27:29:91:5b:95: d9:41:b0:41:dd:31:9d:cc:c8:07:ba:db:ff:46:b2: f5:10:e6:71:d5:f9:3b:11:ca:3a:3c:c2:e2:92:6c: db:d4:a7:8e:a7:40:e9:0d:bc:05:ae:b8:d7:4f:61: 99:ac:c4:2e:3e:59:3b:2c:c2:0b:1c:df:ae:59:c4: f6:e6:80:ca:b9:a8:d0:c3:5e:92:19:1b:58:9f:86: 10:29:a6:5b:9f:fd:19:4f:36:7c:9a:44:7b:a8:ea: 35:20:04:01:8e:44:c4:e0:6e:47:e2:1c:83:34:92: 7e:de:d6:2f:10:ca:90:a7:86:b2:22:27:3e:1e:a7: 74:57:fc:1d:ab:19:fe:30:ef:fc:3c:51:15:b2:89: 26:3f:e6:4c:8c:c4:77:dc:f3:da:bf:92:d0:7d:ef: 52:c7:99:6b:a8:72:85:d7:c3:df:28:74:cf:ec:98: 3d:5e:d2:93:fa:49:99:4d:4c:9b:cf:b1:9d:74:86: 65:11:d3:5f:b7:4e:9b:ff:15:f6:78:81:b9:eb:22: 1f:e5:b3:d1:ae:da:49:b1:ef:51:39:78:ec:a3:91: c9:1e:b7:e5:8e:17:dd:0a:e2:8a:08:28:cb:9f:39: a7:b9:de:11:b1:fe:d1:e2:f3:b1:01:18:f5:29:75: 22:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:77:E2:35:A9:EB:8D:1B:54:42:C5:22:38:8B:94:34:54:11:55:F0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200268.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 76:41:65:d6:b7:53:5a:3f:07:2c:a5:bb:d7:43:09:3f:3a:c1: 5a:e9:ed:c4:7d:72:cd:45:fc:82:dc:6a:3d:4c:ed:8a:d1:f6: ac:b7:a9:4a:c2:2d:fe:b6:4c:80:d0:12:22:bd:65:8a:f4:44: 1c:44:98:d5:c6:a3:a1:a9:e0:08:b3:8e:ca:39:9c:c2:2d:60: a6:21:a2:21:ef:98:ed:cf:16:5f:52:d6:84:03:99:3c:31:ad: d3:9d:02:5d:40:65:9c:f6:0f:02:63:b1:14:d9:df:f5:66:97: cb:0e:27:32:ec:a9:1e:33:e1:88:2b:f3:5a:47:2e:55:c9:6e: 75:a2:98:19:9b:d4:b3:13:12:77:dc:c6:b7:70:4a:c4:45:94: 02:c8:98:63:d6:f0:61:a5:5e:76:20:1a:2f:f3:0a:c4:ce:e1: 04:e4:49:80:07:de:fd:01:27:ae:56:e4:65:fe:e8:a0:e4:db: cc:63:30:7e:96:4e:68:fa:55:e6:e8:78:eb:57:0e:10:1d:f0: 63:a2:63:22:d2:e2:45:8a:b2:bb:0b:a2:4a:0b:9e:36:0e:ae: 77:ee:56:83:99:58:fa:6d:a5:55:94:6d:2c:92:42:61:f3:2b: 1d:f4:4a:94:8c:88:86:83:72:b4:c5:d8:c2:cc:60:84:9e:3c: 0a:84:ad:f5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUa/xJbvjdIWgEkntj1gvwMSnEADowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzVaFw0yNzA2MDQwNzEyMzVaMDMxMTAvBgNV BAMTKDFGNzdFMjM1QTlFQjhEMUI1NDQyQzUyMjM4OEI5NDM0NTQxMTU1RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYOOshGh157nYnKZFbldlBsEHd MZ3MyAe62/9GsvUQ5nHV+TsRyjo8wuKSbNvUp46nQOkNvAWuuNdPYZmsxC4+WTss wgsc365ZxPbmgMq5qNDDXpIZG1ifhhAppluf/RlPNnyaRHuo6jUgBAGORMTgbkfi HIM0kn7e1i8QypCnhrIiJz4ep3RX/B2rGf4w7/w8URWyiSY/5kyMxHfc89q/ktB9 71LHmWuocoXXw98odM/smD1e0pP6SZlNTJvPsZ10hmUR01+3Tpv/FfZ4gbnrIh/l s9Gu2kmx71E5eOyjkcket+WOF90K4ooIKMufOae53hGx/tHi87EBGPUpdSJzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUH3fiNanrjRtUQsUiOIuUNFQRVfAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBswDQYJKoZIhvcNAQELBQADggEBAHZB Zda3U1o/Byylu9dDCT86wVrp7cR9cs1F/ILcaj1M7YrR9qy3qUrCLf62TIDQEiK9 ZYr0RBxEmNXGo6Gp4Aizjso5nMItYKYhoiHvmO3PFl9S1oQDmTwxrdOdAl1AZZz2 DwJjsRTZ3/Vml8sOJzLsqR4z4Ygr81pHLlXJbnWimBmb1LMTEnfcxrdwSsRFlALI mGPW8GGlXnYgGi/zCsTO4QTkSYAH3v0BJ65W5GX+6KDk28xjMH6WTmj6VeboeOtX DhAd8GOiYyLS4kWKsrsLokoLnjYOrnfuVoOZWPptpVWUbSySQmHzKx30SpSMiIaD crTF2MLMYISePAqErfU= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:59 2026 by rpki-client