$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200326.roa File: AS200326.roa (raw, json) Hash identifier: zwyH6OxoUUd4ZY+qN50tuFjufeOnxne8Af0ca1Lgt5s= Subject key identifier: BC:F1:9D:5A:79:E1:3D:10:61:40:3F:6E:DC:B8:E3:F3:78:E7:AC:F2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 390488C67AF432F6B80B61D86FDDF4E24D3B60E2 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200326.roa Signing time: Fri 05 Jun 2026 07:12:48 +0000 ROA not before: Fri 05 Jun 2026 07:07:48 +0000 ROA not after: Fri 04 Jun 2027 07:12:48 +0000 asID: 200326 IP address blocks: 2a0a:6040:a500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:04:88:c6:7a:f4:32:f6:b8:0b:61:d8:6f:dd:f4:e2:4d:3b:60:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:48 2026 GMT Not After : Jun 4 07:12:48 2027 GMT Subject: CN=BCF19D5A79E13D1061403F6EDCB8E3F378E7ACF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:8e:4f:94:96:95:26:9f:c4:de:08:70:f7: 30:67:c1:ee:6d:f1:a6:e7:1e:ae:d4:ae:f6:c0:e6: 53:68:3a:4a:c6:ec:37:5b:0c:0f:72:e7:5a:5e:14: f1:23:d3:a9:5d:63:58:d3:2d:05:02:9e:d6:fe:fd: 20:a7:51:ee:89:2e:40:a2:d3:36:c3:2c:48:8f:3e: 11:2e:2e:33:66:65:86:a9:ab:a3:cc:85:4f:73:75: cd:33:77:43:8a:d4:66:69:b1:da:71:cb:62:49:0f: 1d:4e:6f:85:bd:42:af:74:ea:c3:9e:b2:33:a3:e8: 05:87:dd:10:d4:9f:d5:39:a5:b6:0c:a6:98:92:dc: a5:19:fc:d2:9c:0a:a8:e6:93:2e:33:62:0f:2a:5c: 98:13:60:04:f3:e8:e3:1d:fc:d8:b8:e6:63:1e:ee: 16:65:30:17:3b:6b:fe:b7:fe:2c:68:45:d0:53:3d: b8:2e:34:f5:5c:e5:15:5b:47:e7:96:68:f4:ab:e3: 2d:42:56:14:04:55:77:cc:11:74:2f:60:af:2b:58: dc:f5:04:4a:08:de:bc:00:34:2a:12:3b:d6:49:ab: f3:48:e7:95:df:7c:a6:f3:fe:05:3d:77:31:81:1f: cb:83:5b:3c:c5:e1:73:df:36:4f:35:dd:06:a1:85: 3f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F1:9D:5A:79:E1:3D:10:61:40:3F:6E:DC:B8:E3:F3:78:E7:AC:F2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a500::/40 Signature Algorithm: sha256WithRSAEncryption 9f:5c:9c:53:71:7b:ab:95:b5:88:cb:a7:92:6e:65:bc:bd:c6: 04:ae:9b:a8:d2:04:d6:6f:db:af:37:29:47:72:91:2c:ef:c8: a4:c0:98:2b:62:7e:f4:05:72:3c:57:f9:28:ba:32:9f:f6:e8: b6:79:68:ed:6c:38:04:67:38:6e:81:b8:08:48:5d:a7:ec:ed: 3e:5a:b6:3e:f0:09:6b:10:a4:58:e1:91:ca:97:cd:4d:49:16: 60:66:90:76:c7:30:d7:13:c7:fe:79:ec:64:dc:85:e2:1f:c9: 74:72:ca:23:2f:3e:2a:a0:91:ce:dd:73:f7:ae:77:78:c5:60: 65:4c:30:f2:b8:0e:46:61:ba:cb:8a:4c:86:2b:f3:6f:b3:75: ff:51:bd:d5:6a:95:5e:a4:db:b2:f6:05:65:81:f7:00:98:35: 95:d3:2f:fd:36:41:e9:10:8a:bc:b8:e9:b6:ca:c0:c8:53:e9: 5b:4c:32:c2:ff:40:7f:8b:67:8a:b8:44:2d:dd:61:d5:dd:2e: c9:15:34:ff:89:30:79:a6:ec:bc:a5:3d:b5:b9:01:9b:5f:9c: dd:e1:bb:f3:08:2e:0f:01:76:08:24:88:f0:0d:d2:10:54:bf: 81:0f:7b:22:f0:62:d9:92:cb:f3:51:9a:ab:1c:86:8d:cf:9f: 95:37:82:b8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOQSIxnr0Mva4C2HYb9304k07YOIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDhaFw0yNzA2MDQwNzEyNDhaMDMxMTAvBgNV BAMTKEJDRjE5RDVBNzlFMTNEMTA2MTQwM0Y2RURDQjhFM0YzNzhFN0FDRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH4o5PlJaVJp/E3ghw9zBnwe5t 8abnHq7UrvbA5lNoOkrG7DdbDA9y51peFPEj06ldY1jTLQUCntb+/SCnUe6JLkCi 0zbDLEiPPhEuLjNmZYapq6PMhU9zdc0zd0OK1GZpsdpxy2JJDx1Ob4W9Qq906sOe sjOj6AWH3RDUn9U5pbYMppiS3KUZ/NKcCqjmky4zYg8qXJgTYATz6OMd/Ni45mMe 7hZlMBc7a/63/ixoRdBTPbguNPVc5RVbR+eWaPSr4y1CVhQEVXfMEXQvYK8rWNz1 BEoI3rwANCoSO9ZJq/NI55XffKbz/gU9dzGBH8uDWzzF4XPfNk813QahhT8bAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvPGdWnnhPRBhQD9u3Ljj83jnrPIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKUwDQYJKoZIhvcNAQELBQADggEBAJ9c nFNxe6uVtYjLp5JuZby9xgSum6jSBNZv2683KUdykSzvyKTAmCtifvQFcjxX+Si6 Mp/26LZ5aO1sOARnOG6BuAhIXafs7T5atj7wCWsQpFjhkcqXzU1JFmBmkHbHMNcT x/557GTcheIfyXRyyiMvPiqgkc7dc/eud3jFYGVMMPK4DkZhusuKTIYr82+zdf9R vdVqlV6k27L2BWWB9wCYNZXTL/02QekQiry46bbKwMhT6VtMMsL/QH+LZ4q4RC3d YdXdLskVNP+JMHmm7LylPbW5AZtfnN3hu/MILg8BdggkiPAN0hBUv4EPeyLwYtmS y/NRmqscho3Pn5U3grg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:23 2026 by rpki-client