$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200335.roa File: AS200335.roa (raw, json) Hash identifier: CKwRygRBu3ssIZ2MipSKFOi9/eHt80p0Z4hwckHTavY= Subject key identifier: 6B:54:4F:EA:4C:5D:34:F5:C0:71:91:86:CF:6E:D7:F6:0B:D6:06:C4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5F91E1F776BFBD68AED3872948D82064058297F8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200335.roa Signing time: Fri 05 Jun 2026 07:12:09 +0000 ROA not before: Fri 05 Jun 2026 07:07:09 +0000 ROA not after: Fri 04 Jun 2027 07:12:09 +0000 asID: 200335 IP address blocks: 2a0a:6040:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:91:e1:f7:76:bf:bd:68:ae:d3:87:29:48:d8:20:64:05:82:97:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:09 2026 GMT Not After : Jun 4 07:12:09 2027 GMT Subject: CN=6B544FEA4C5D34F5C0719186CF6ED7F60BD606C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:35:eb:21:a5:2a:d2:33:a5:1c:55:88:07:30: 9d:62:35:cc:ca:c9:a3:56:e8:c3:b1:4b:e2:85:29: 18:9e:4e:23:4b:f1:61:f0:f7:6c:d3:61:6e:74:17: 1d:15:31:82:6e:0c:cf:26:12:73:48:05:27:82:ec: ef:87:eb:19:4c:d4:3f:ea:c7:db:c0:36:4e:78:66: 80:14:e0:2d:85:0e:da:d6:fc:9f:36:88:f6:62:7f: a8:7d:0f:4b:8e:be:6f:65:71:59:b4:d6:fc:0a:8f: c3:71:3d:8f:ce:0a:58:ae:a3:d2:d9:8d:be:bd:16: c6:05:b6:8a:12:cd:ae:0a:69:20:fb:a4:ca:38:b3: d0:0a:28:fa:bf:a2:c1:71:86:33:09:dc:e9:4f:8b: 66:2c:22:54:11:8f:cc:0f:ee:1b:7c:c2:ec:08:28: e1:c4:8d:01:d3:0e:2f:89:77:e7:81:e8:cd:1e:7a: ba:43:73:13:82:8a:5d:7f:b3:9a:ef:57:e5:25:54: b0:6d:a7:6a:34:7d:6a:eb:c8:08:58:10:39:92:05: d8:58:94:36:a9:c6:64:f7:e0:7b:ae:14:45:5d:fc: 9a:f2:d0:1e:f6:3b:e5:28:0d:07:9f:71:ac:70:a4: 8d:15:06:03:e6:b8:bf:06:5b:01:fd:e4:f8:12:41: 33:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:54:4F:EA:4C:5D:34:F5:C0:71:91:86:CF:6E:D7:F6:0B:D6:06:C4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200335.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3100::/40 Signature Algorithm: sha256WithRSAEncryption 31:d6:b2:53:8c:29:94:0a:31:7f:f1:c4:f7:bb:92:de:9b:b6: 4d:52:85:c0:87:ec:3d:f3:c0:23:af:8f:11:af:2d:9d:46:f1: c9:cc:e1:d3:a8:64:15:dc:6f:3c:18:49:c7:cf:ef:ab:96:6b: 8e:96:eb:b2:d9:a6:3e:f2:b2:d2:1e:bd:7a:81:63:53:d1:eb: 6d:33:50:bf:e0:3d:ee:fc:6e:14:1b:0e:06:2d:c4:70:56:4f: 15:27:d7:1b:da:de:21:96:5f:2a:9d:b2:73:f2:0b:e7:63:a8: 5d:83:6a:fa:12:58:74:93:8f:67:a9:5d:3b:d8:25:de:f1:4b: 26:4a:47:29:6c:11:4a:2c:4f:ec:42:2d:65:d4:3a:b5:15:70: aa:f0:d0:77:6c:c2:b8:80:27:29:00:0a:5d:47:34:a1:45:dd: 87:f0:ff:7f:17:5d:cf:f7:5e:79:4a:64:53:99:07:0f:9c:d0: d0:cc:7c:fb:e1:2e:ec:26:76:5a:85:26:3e:af:14:31:9b:6c: bc:32:42:1b:62:15:2a:a7:1c:36:29:42:ba:9b:91:31:95:d4: ab:8c:09:b3:d8:f4:a7:43:25:f9:8e:20:e6:24:38:e7:e5:09: 60:71:94:f0:dd:55:df:7b:94:ee:17:33:4f:8f:18:9d:6a:70: b0:af:47:39 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX5Hh93a/vWiu04cpSNggZAWCl/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDlaFw0yNzA2MDQwNzEyMDlaMDMxMTAvBgNV BAMTKDZCNTQ0RkVBNEM1RDM0RjVDMDcxOTE4NkNGNkVEN0Y2MEJENjA2QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzNeshpSrSM6UcVYgHMJ1iNczK yaNW6MOxS+KFKRieTiNL8WHw92zTYW50Fx0VMYJuDM8mEnNIBSeC7O+H6xlM1D/q x9vANk54ZoAU4C2FDtrW/J82iPZif6h9D0uOvm9lcVm01vwKj8NxPY/OCliuo9LZ jb69FsYFtooSza4KaSD7pMo4s9AKKPq/osFxhjMJ3OlPi2YsIlQRj8wP7ht8wuwI KOHEjQHTDi+Jd+eB6M0eerpDcxOCil1/s5rvV+UlVLBtp2o0fWrryAhYEDmSBdhY lDapxmT34HuuFEVd/Jry0B72O+UoDQefcaxwpI0VBgPmuL8GWwH95PgSQTObAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUa1RP6kxdNPXAcZGGz27X9gvWBsQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwMzM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDEwDQYJKoZIhvcNAQELBQADggEBADHW slOMKZQKMX/xxPe7kt6btk1ShcCH7D3zwCOvjxGvLZ1G8cnM4dOoZBXcbzwYScfP 76uWa46W67LZpj7ystIevXqBY1PR620zUL/gPe78bhQbDgYtxHBWTxUn1xva3iGW XyqdsnPyC+djqF2DavoSWHSTj2epXTvYJd7xSyZKRylsEUosT+xCLWXUOrUVcKrw 0HdswriAJykACl1HNKFF3Yfw/38XXc/3XnlKZFOZBw+c0NDMfPvhLuwmdlqFJj6v FDGbbLwyQhtiFSqnHDYpQrqbkTGV1KuMCbPY9KdDJfmOIOYkOOflCWBxlPDdVd97 lO4XM0+PGJ1qcLCvRzk= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:14 2026 by rpki-client