$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200329.roa File: AS200329.roa (raw, json) Hash identifier: jzAsGvgaXXF9JLWYlfi6o98SAjC0BHY9agXnOANxhTg= Subject key identifier: C7:38:E5:A5:28:40:3D:11:D5:87:FF:61:AB:A6:4E:B7:23:34:4D:39 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 03EA583446E68A5F36D4FAF21AEF00BD5A708EA1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200329.roa Signing time: Fri 05 Jun 2026 07:12:39 +0000 ROA not before: Fri 05 Jun 2026 07:07:39 +0000 ROA not after: Fri 04 Jun 2027 07:12:39 +0000 asID: 200329 IP address blocks: 2a0a:6040:b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ea:58:34:46:e6:8a:5f:36:d4:fa:f2:1a:ef:00:bd:5a:70:8e:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:39 2026 GMT Not After : Jun 4 07:12:39 2027 GMT Subject: CN=C738E5A528403D11D587FF61ABA64EB723344D39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:cf:22:b1:89:87:91:5e:21:ca:99:a3:9c:71: bd:06:ac:12:3a:22:c3:4a:d6:11:8f:d3:ed:90:18: 26:67:54:77:52:20:7c:af:c1:e1:7e:b2:ca:ec:7a: 01:83:bf:4a:0e:e7:de:26:b0:55:77:5b:b6:2b:ca: 31:8a:b3:fd:2d:74:1f:b5:86:27:03:1b:0f:49:7a: b9:08:be:f8:12:d0:60:4d:cc:c0:7c:92:f9:55:b3: bd:10:f1:64:0a:27:7b:e9:6c:fa:cb:df:40:34:b6: f5:db:1b:7c:96:36:20:d9:ca:5c:c0:bf:ed:d5:5b: 88:da:d1:c5:44:42:bd:13:62:df:91:56:f0:5d:ac: 18:c8:94:5f:a6:6e:fc:bd:34:60:b9:89:ae:62:87: f2:1b:a3:cb:8f:b5:f5:24:ea:d3:c8:65:e7:5e:ea: 41:5a:3b:49:98:9d:66:be:bb:0f:3c:26:76:66:02: ce:83:3c:4e:e6:ef:29:45:d6:5e:fc:6b:9d:08:3e: 02:ff:57:7c:03:f3:3f:81:a5:fe:b6:25:d4:99:ae: 76:36:cb:47:47:13:01:de:3c:36:4a:39:00:3c:af: 04:b1:fc:83:85:a5:31:f9:f7:ed:80:fe:1d:ce:b0: 7c:56:6f:fa:4b:c5:4f:47:87:ab:e0:ea:a5:7a:da: 90:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:38:E5:A5:28:40:3D:11:D5:87:FF:61:AB:A6:4E:B7:23:34:4D:39 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200329.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b00::/40 Signature Algorithm: sha256WithRSAEncryption 79:89:33:30:c6:7c:2b:ae:fb:ab:20:1e:50:c4:d4:e0:09:9b: b6:fc:e9:2f:d7:2d:42:43:94:d3:c5:18:d6:a5:00:1d:da:fc: 8e:53:06:ed:21:f0:4a:58:dd:6a:ff:18:ff:37:c6:1b:2f:a6: 58:a9:97:23:69:b0:06:7f:1f:6f:56:32:fc:a2:9d:d8:91:49: 9d:9b:fe:32:7f:9a:24:51:e5:d9:07:be:63:9f:6e:bb:2e:c5: 5e:57:49:d2:37:34:fb:8c:1c:2b:b1:0e:82:5d:ee:7d:86:0b: 59:c6:2f:c8:8f:15:bd:62:b1:a1:7d:7a:c2:41:3e:41:48:be: 1d:5f:2f:8a:f2:5d:f2:d6:dd:e2:31:c0:da:71:f1:da:ad:60: a5:5d:59:b8:00:4c:53:c7:68:36:c2:6b:1e:ea:17:d1:9b:ec: 37:4d:0e:e3:d2:66:f2:6d:1d:c8:5d:76:a8:09:5e:8c:ce:a9: 62:aa:41:ed:f1:de:e1:bb:04:88:02:bb:ac:4c:ef:45:cb:66: 5b:b9:57:c3:3e:57:9e:9c:97:30:ef:53:69:ef:69:4c:72:07: ca:07:0f:01:11:3e:f5:0c:16:33:59:77:bf:3b:ed:68:14:9e: cc:30:8d:19:7e:1b:18:09:5d:e4:a2:2e:20:84:17:21:d1:7d: c8:8e:2a:df -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUA+pYNEbmil821PryGu8AvVpwjqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzlaFw0yNzA2MDQwNzEyMzlaMDMxMTAvBgNV BAMTKEM3MzhFNUE1Mjg0MDNEMTFENTg3RkY2MUFCQTY0RUI3MjMzNDREMzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzzyKxiYeRXiHKmaOccb0GrBI6 IsNK1hGP0+2QGCZnVHdSIHyvweF+ssrsegGDv0oO594msFV3W7YryjGKs/0tdB+1 hicDGw9JerkIvvgS0GBNzMB8kvlVs70Q8WQKJ3vpbPrL30A0tvXbG3yWNiDZylzA v+3VW4ja0cVEQr0TYt+RVvBdrBjIlF+mbvy9NGC5ia5ih/Ibo8uPtfUk6tPIZede 6kFaO0mYnWa+uw88JnZmAs6DPE7m7ylF1l78a50IPgL/V3wD8z+Bpf62JdSZrnY2 y0dHEwHePDZKOQA8rwSx/IOFpTH59+2A/h3OsHxWb/pLxU9Hh6vg6qV62pAPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxzjlpShAPRHVh/9hq6ZOtyM0TTkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAswDQYJKoZIhvcNAQELBQADggEBAHmJ MzDGfCuu+6sgHlDE1OAJm7b86S/XLUJDlNPFGNalAB3a/I5TBu0h8EpY3Wr/GP83 xhsvpliplyNpsAZ/H29WMvyindiRSZ2b/jJ/miRR5dkHvmOfbrsuxV5XSdI3NPuM HCuxDoJd7n2GC1nGL8iPFb1isaF9esJBPkFIvh1fL4ryXfLW3eIxwNpx8dqtYKVd WbgATFPHaDbCax7qF9Gb7DdNDuPSZvJtHchddqgJXozOqWKqQe3x3uG7BIgCu6xM 70XLZlu5V8M+V56clzDvU2nvaUxyB8oHDwERPvUMFjNZd7877WgUnswwjRl+GxgJ XeSiLiCEFyHRfciOKt8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:25 2026 by rpki-client