$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200307.roa File: AS200307.roa (raw, json) Hash identifier: IxRjWMKqMr/TYQ8IHvhsHC810Y50Wc0hlDy5yKjOj9M= Subject key identifier: 43:FB:6C:D0:74:17:91:83:58:9E:AE:09:D2:43:2A:37:F0:BA:C2:C5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2B936D83F9A763FC64E9B3F1F87B4736A4B49C16 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200307.roa Signing time: Fri 05 Jun 2026 07:12:36 +0000 ROA not before: Fri 05 Jun 2026 07:07:36 +0000 ROA not after: Fri 04 Jun 2027 07:12:36 +0000 asID: 200307 IP address blocks: 2a0a:6040:ac00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:93:6d:83:f9:a7:63:fc:64:e9:b3:f1:f8:7b:47:36:a4:b4:9c:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:36 2026 GMT Not After : Jun 4 07:12:36 2027 GMT Subject: CN=43FB6CD074179183589EAE09D2432A37F0BAC2C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:d6:d1:00:5f:85:cb:7f:c9:99:77:85:dd: a1:8a:7a:4a:b6:d7:ec:3c:c2:2a:7c:8a:91:45:83: c9:80:f4:c2:5c:2e:11:75:03:b9:68:29:cf:e8:36: d0:80:49:d6:5e:d5:44:d8:b7:1e:29:a9:b2:af:9c: b7:d0:57:f8:f1:e5:b3:3e:c7:81:68:86:37:93:9c: 33:d2:f5:e1:18:4f:ea:27:e9:bf:f4:5e:0f:c9:fe: f3:fd:f9:d3:9c:db:39:f7:73:3a:4f:fe:f7:23:d4: b6:59:d1:4e:cf:73:df:e5:36:0a:e2:13:3b:b1:37: bd:16:b0:49:ee:3e:88:85:10:3f:ef:1e:da:da:c9: f4:55:b1:bb:f6:ca:0e:dd:42:f4:cc:a4:45:7e:80: e2:e6:1a:d8:6e:31:79:c7:22:2c:8d:da:fd:bb:c4: e4:97:ca:e7:8c:e4:86:f5:2f:1a:0d:4f:97:3f:26: 9b:53:d3:26:9b:fa:90:a1:ec:d3:cd:2d:bc:76:b4: 5d:e5:fa:40:68:1e:0b:50:c0:1c:ae:ed:06:e7:64: c8:ba:5e:cf:e9:65:ca:83:26:80:04:94:ff:0c:d2: ce:46:69:2a:a7:3f:73:3e:f8:4e:83:3b:9d:46:6f: 8e:89:65:f9:d4:06:60:d4:63:f5:30:0d:a8:cd:3b: 98:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FB:6C:D0:74:17:91:83:58:9E:AE:09:D2:43:2A:37:F0:BA:C2:C5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200307.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ac00::/40 Signature Algorithm: sha256WithRSAEncryption ac:d1:42:d2:99:b4:b7:7d:72:b0:c7:f5:e6:64:fc:e7:c6:60: d6:b7:3d:29:2a:00:b2:d1:3d:64:8e:ec:bc:87:c1:88:87:7b: 62:fb:e3:94:71:62:0d:2d:9f:ed:8f:c7:03:89:76:b8:53:07: f2:d8:06:37:02:c2:81:4e:ca:d7:ec:5a:88:52:8d:ee:60:1c: 53:f7:9a:ae:13:96:ca:a4:7c:15:14:de:82:20:79:54:2f:b5: e3:79:0c:7f:4d:fe:12:4c:8e:fb:bd:8c:d1:9c:de:da:b3:c3: 4c:5f:f3:e0:b9:d7:e2:81:6a:e4:4c:49:63:64:c4:85:5b:b9: fb:53:cc:64:8d:d9:d7:90:18:82:34:18:8d:b9:13:31:b2:f4: 40:30:f8:0d:94:a6:6b:b6:74:04:82:22:3c:e8:e6:99:a3:8f: 62:f9:46:7a:fa:33:7c:47:81:9d:bf:c8:b4:d8:ff:bc:91:81: 08:d8:49:49:ae:e5:3d:ea:41:64:d9:a5:94:bf:1b:aa:bb:21: 26:cf:b1:35:12:7c:6b:72:69:fa:1b:6b:a1:fc:b7:60:1e:e9: 39:03:27:07:fa:d6:da:73:e1:63:24:76:8f:99:cf:74:f9:e4: 77:ec:a8:43:15:e6:0f:34:ac:6f:75:4e:13:3d:6f:64:0e:c5: ef:20:4a:77 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUK5Ntg/mnY/xk6bPx+HtHNqS0nBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzZaFw0yNzA2MDQwNzEyMzZaMDMxMTAvBgNV BAMTKDQzRkI2Q0QwNzQxNzkxODM1ODlFQUUwOUQyNDMyQTM3RjBCQUMyQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC2NbRAF+Fy3/JmXeF3aGKekq2 1+w8wip8ipFFg8mA9MJcLhF1A7loKc/oNtCASdZe1UTYtx4pqbKvnLfQV/jx5bM+ x4FohjeTnDPS9eEYT+on6b/0Xg/J/vP9+dOc2zn3czpP/vcj1LZZ0U7Pc9/lNgri EzuxN70WsEnuPoiFED/vHtrayfRVsbv2yg7dQvTMpEV+gOLmGthuMXnHIiyN2v27 xOSXyueM5Ib1LxoNT5c/JptT0yab+pCh7NPNLbx2tF3l+kBoHgtQwByu7QbnZMi6 Xs/pZcqDJoAElP8M0s5GaSqnP3M++E6DO51Gb46JZfnUBmDUY/UwDajNO5jdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQ/ts0HQXkYNYnq4J0kMqN/C6wsUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKwwDQYJKoZIhvcNAQELBQADggEBAKzR QtKZtLd9crDH9eZk/OfGYNa3PSkqALLRPWSO7LyHwYiHe2L745RxYg0tn+2PxwOJ drhTB/LYBjcCwoFOytfsWohSje5gHFP3mq4TlsqkfBUU3oIgeVQvteN5DH9N/hJM jvu9jNGc3tqzw0xf8+C51+KBauRMSWNkxIVbuftTzGSN2deQGII0GI25EzGy9EAw +A2Upmu2dASCIjzo5pmjj2L5Rnr6M3xHgZ2/yLTY/7yRgQjYSUmu5T3qQWTZpZS/ G6q7ISbPsTUSfGtyafoba6H8t2Ae6TkDJwf61tpz4WMkdo+Zz3T55HfsqEMV5g80 rG91ThM9b2QOxe8gSnc= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:02 2026 by rpki-client