$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200455.roa File: AS200455.roa (raw, json) Hash identifier: WQ6PgBlKD0dEd3s23hKCtRkm7f/V7brBELxmPrvFQKo= Subject key identifier: 17:AF:02:89:1E:13:0F:7F:35:06:67:5E:C4:FC:FB:FA:01:F1:03:EA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 609BB322909D2C173D310292B250B67DD4588705 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200455.roa Signing time: Fri 05 Jun 2026 07:12:10 +0000 ROA not before: Fri 05 Jun 2026 07:07:10 +0000 ROA not after: Fri 04 Jun 2027 07:12:10 +0000 asID: 200455 IP address blocks: 2a0a:6040:400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:9b:b3:22:90:9d:2c:17:3d:31:02:92:b2:50:b6:7d:d4:58:87:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:10 2026 GMT Not After : Jun 4 07:12:10 2027 GMT Subject: CN=17AF02891E130F7F3506675EC4FCFBFA01F103EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:04:e7:28:6d:2d:49:39:e7:d1:99:b2:2b:5b: b3:62:ba:da:c9:91:bc:21:bf:9d:ab:de:c3:b5:54: a1:b1:cf:07:38:15:a6:5d:f0:d4:b4:5f:2f:60:62: af:e1:7b:24:09:70:32:cd:2b:20:7b:10:e5:2a:d5: d6:60:e9:bb:5a:e9:65:77:df:2d:97:7a:e2:21:a1: 7f:f3:67:b4:c5:7f:7d:85:d6:5b:14:91:74:c0:90: 0e:ff:30:b3:44:ca:06:d3:e6:17:ca:f0:92:f1:32: c2:ae:c3:94:b1:3f:f0:f1:5e:f2:a6:9a:e0:fd:3c: f5:f5:c6:1e:ca:23:3f:07:d4:ab:70:91:b0:96:22: f0:8c:a1:ab:b1:c9:66:3c:32:61:83:c0:34:2e:3d: ee:55:c5:e1:55:3f:44:4a:1f:78:02:1f:71:b0:42: cf:c7:1a:31:96:54:7f:00:8b:d1:c9:86:e3:e5:53: 02:0a:26:94:33:fd:98:a9:61:95:ce:f0:aa:0b:35: 27:b4:55:2a:58:9a:ee:1f:dd:46:b8:7e:e6:13:a6: 9b:e5:5f:a4:0a:7a:84:ff:4d:71:d8:a7:f9:36:d8: 8a:48:0c:6e:b0:3e:33:7b:eb:bd:3c:1e:18:41:18: 32:b1:fb:8a:d0:f2:82:aa:eb:fd:09:af:e7:29:1d: 37:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:AF:02:89:1E:13:0F:7F:35:06:67:5E:C4:FC:FB:FA:01:F1:03:EA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200455.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:400::/40 Signature Algorithm: sha256WithRSAEncryption 87:3b:37:39:8e:1d:a4:71:01:24:71:9a:8c:05:a4:a9:22:06: ce:9f:cb:e6:39:9b:03:4e:30:92:d3:fd:34:fa:f1:51:3c:7a: 01:bc:4f:03:f8:e7:10:a4:25:78:b5:9a:85:b8:54:75:38:b4: cd:49:88:77:9c:a9:e6:22:99:b4:7c:e1:04:30:e1:fc:f4:b0: f0:a5:83:23:ae:c9:b6:f0:3a:f1:2b:fa:69:ec:e1:63:cb:18: 41:0f:0b:4e:68:d6:b6:9e:b1:dd:a3:5d:94:3a:6c:72:0c:c4: 52:c0:d5:04:5e:df:91:37:b5:26:ec:e2:e5:69:ec:a2:bc:f3: 8b:5d:f9:c6:87:d8:75:c1:81:50:20:10:02:53:88:e4:35:3a: 31:44:54:a8:ee:ae:53:62:34:46:4d:78:a1:65:86:40:98:bb: 5c:f8:6d:06:e8:61:51:12:e7:2f:48:f6:b7:28:81:26:6e:ba: 57:5b:1c:f2:ec:79:bc:f0:12:90:38:a3:32:21:84:4d:3c:1a: c8:9d:ca:f0:33:63:01:ec:89:46:5e:62:fd:79:ec:97:b1:fd: 6c:92:9d:ca:29:53:87:21:b0:04:bf:4a:90:c6:7a:75:cd:70: e8:a2:fd:ba:72:88:aa:f7:ff:bf:e1:41:a8:b8:a6:bf:23:db: 2d:f5:57:cc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYJuzIpCdLBc9MQKSslC2fdRYhwUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTBaFw0yNzA2MDQwNzEyMTBaMDMxMTAvBgNV BAMTKDE3QUYwMjg5MUUxMzBGN0YzNTA2Njc1RUM0RkNGQkZBMDFGMTAzRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdBOcobS1JOefRmbIrW7NiutrJ kbwhv52r3sO1VKGxzwc4FaZd8NS0Xy9gYq/heyQJcDLNKyB7EOUq1dZg6bta6WV3 3y2XeuIhoX/zZ7TFf32F1lsUkXTAkA7/MLNEygbT5hfK8JLxMsKuw5SxP/DxXvKm muD9PPX1xh7KIz8H1KtwkbCWIvCMoauxyWY8MmGDwDQuPe5VxeFVP0RKH3gCH3Gw Qs/HGjGWVH8Ai9HJhuPlUwIKJpQz/ZipYZXO8KoLNSe0VSpYmu4f3Ua4fuYTppvl X6QKeoT/TXHYp/k22IpIDG6wPjN76708HhhBGDKx+4rQ8oKq6/0Jr+cpHTfNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUF68CiR4TD381BmdexPz7+gHxA+owHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNDU1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAQwDQYJKoZIhvcNAQELBQADggEBAIc7 NzmOHaRxASRxmowFpKkiBs6fy+Y5mwNOMJLT/TT68VE8egG8TwP45xCkJXi1moW4 VHU4tM1JiHecqeYimbR84QQw4fz0sPClgyOuybbwOvEr+mns4WPLGEEPC05o1rae sd2jXZQ6bHIMxFLA1QRe35E3tSbs4uVp7KK884td+caH2HXBgVAgEAJTiOQ1OjFE VKjurlNiNEZNeKFlhkCYu1z4bQboYVES5y9I9rcogSZuuldbHPLsebzwEpA4ozIh hE08GsidyvAzYwHsiUZeYv157Jex/WySncopU4chsAS/SpDGenXNcOii/bpyiKr3 /7/hQai4pr8j2y31V8w= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:15 2026 by rpki-client