$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200535.roa File: AS200535.roa (raw, json) Hash identifier: 3lA5ryLOWIY+Yo32gQaYe5DGSKYHI/GczLV5A1WGq8k= Subject key identifier: 88:FA:C9:6A:97:2D:A0:91:27:E5:2D:EC:20:05:68:13:E2:1A:59:81 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5C604997C1077B6B3539D634316796D15ADEE804 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200535.roa Signing time: Fri 05 Jun 2026 07:12:16 +0000 ROA not before: Fri 05 Jun 2026 07:07:16 +0000 ROA not after: Fri 04 Jun 2027 07:12:16 +0000 asID: 200535 IP address blocks: 2a0a:6040:500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:60:49:97:c1:07:7b:6b:35:39:d6:34:31:67:96:d1:5a:de:e8:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:16 2026 GMT Not After : Jun 4 07:12:16 2027 GMT Subject: CN=88FAC96A972DA09127E52DEC20056813E21A5981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f0:09:ae:e9:0d:69:d6:f3:03:eb:97:c2:6c: 84:84:9c:ac:d3:bc:4b:a2:34:5c:db:da:44:31:ee: 09:30:8b:1a:21:1e:f1:05:47:9d:fc:c8:d2:ce:a4: e4:63:25:af:f8:7a:2c:79:9d:91:d9:6b:6a:f0:cb: c4:1e:0d:b5:6d:94:20:2e:a3:95:3f:bc:5c:42:e9: 5a:49:3b:bb:46:82:ce:80:bb:19:84:4e:9f:00:13: cb:16:82:40:10:66:99:83:72:2c:09:15:74:1a:41: e5:d8:8d:f0:af:57:ed:4f:2a:36:79:34:e6:d5:2d: 96:26:f3:2b:b0:99:44:56:60:ec:6f:08:2a:ef:69: c6:e7:20:71:3e:79:62:93:a2:c9:d9:bc:ec:4b:61: 2c:17:b4:e4:48:1c:a0:58:66:71:9d:2c:a3:cd:a5: 15:4b:9a:47:86:69:e8:b1:7b:07:b5:e4:f3:11:39: a4:73:12:73:cb:3f:9c:c1:62:1b:d8:33:c3:9c:5d: 12:ed:70:98:0a:e9:43:53:05:cc:fc:77:57:3e:e0: 10:46:55:3b:33:e8:32:cc:68:83:ff:52:06:0f:86: 7c:65:a8:a0:4a:7e:6c:f7:ef:e7:45:65:07:57:dd: 19:80:cf:85:1f:d1:41:dc:36:2b:4e:9e:f0:af:22: 5c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:FA:C9:6A:97:2D:A0:91:27:E5:2D:EC:20:05:68:13:E2:1A:59:81 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200535.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:500::/40 Signature Algorithm: sha256WithRSAEncryption a9:86:47:ae:c7:bd:33:64:46:ba:eb:2d:4c:73:9d:83:e6:fa: 1b:c7:8a:67:34:5f:91:cf:18:f7:d3:5a:ae:c3:2f:3c:fd:3d: fc:34:44:e2:e4:e3:2b:7b:92:18:92:9a:09:ee:e8:51:93:c4: a4:94:b8:d9:75:90:b6:1a:94:58:2a:07:32:88:6e:ed:af:af: 5f:64:10:b5:d0:4e:da:83:43:b3:f7:c3:c8:fe:2c:6f:33:67: 03:2c:73:e6:c2:81:50:83:35:bb:9c:d9:f6:16:81:33:d0:4c: 60:5d:40:05:08:46:d5:5b:2d:e5:9e:fc:27:ee:5a:75:6b:2b: 15:0b:f2:b6:39:ac:81:68:57:b7:ff:c7:6f:bc:a3:62:e7:e0: aa:68:f0:f0:85:26:c5:fb:a9:16:ab:c5:d3:0c:01:c5:bd:a1: 6b:19:f2:8e:b4:dc:54:b2:39:3e:e8:d2:69:59:71:a6:53:bc: f3:78:31:57:e0:2f:12:82:88:cf:a9:4d:65:7e:bd:0a:d8:cc: 1d:8c:56:fe:bf:2e:22:3e:da:4d:2e:b4:73:ec:10:8e:b4:bf: 81:c2:25:c3:0d:38:ad:cd:95:51:da:d7:72:73:47:63:ca:8b: e4:72:fd:94:47:4e:99:4e:11:98:35:38:fa:ab:f9:fc:20:d1: 26:d1:78:c5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXGBJl8EHe2s1OdY0MWeW0Vre6AQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTZaFw0yNzA2MDQwNzEyMTZaMDMxMTAvBgNV BAMTKDg4RkFDOTZBOTcyREEwOTEyN0U1MkRFQzIwMDU2ODEzRTIxQTU5ODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ8Amu6Q1p1vMD65fCbISEnKzT vEuiNFzb2kQx7gkwixohHvEFR538yNLOpORjJa/4eix5nZHZa2rwy8QeDbVtlCAu o5U/vFxC6VpJO7tGgs6AuxmETp8AE8sWgkAQZpmDciwJFXQaQeXYjfCvV+1PKjZ5 NObVLZYm8yuwmURWYOxvCCrvacbnIHE+eWKTosnZvOxLYSwXtORIHKBYZnGdLKPN pRVLmkeGaeixewe15PMROaRzEnPLP5zBYhvYM8OcXRLtcJgK6UNTBcz8d1c+4BBG VTsz6DLMaIP/UgYPhnxlqKBKfmz37+dFZQdX3RmAz4Uf0UHcNitOnvCvIlw1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiPrJapctoJEn5S3sIAVoE+IaWYEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAUwDQYJKoZIhvcNAQELBQADggEBAKmG R67HvTNkRrrrLUxznYPm+hvHimc0X5HPGPfTWq7DLzz9Pfw0ROLk4yt7khiSmgnu 6FGTxKSUuNl1kLYalFgqBzKIbu2vr19kELXQTtqDQ7P3w8j+LG8zZwMsc+bCgVCD Nbuc2fYWgTPQTGBdQAUIRtVbLeWe/CfuWnVrKxUL8rY5rIFoV7f/x2+8o2Ln4Kpo 8PCFJsX7qRarxdMMAcW9oWsZ8o603FSyOT7o0mlZcaZTvPN4MVfgLxKCiM+pTWV+ vQrYzB2MVv6/LiI+2k0utHPsEI60v4HCJcMNOK3NlVHa13JzR2PKi+Ry/ZRHTplO EZg1OPqr+fwg0SbReMU= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:14 2026 by rpki-client