$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200545.roa File: AS200545.roa (raw, json) Hash identifier: LW0KzEKhIRjV5bu7XNBY3y9Ts9pnb0dgS59sQE4o7CI= Subject key identifier: 49:46:CE:32:B8:F0:72:6F:7B:3B:A9:8A:37:CA:86:50:8B:04:F9:EB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1F488B5958C0B3DDB2F6754E4150A32431452725 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200545.roa Signing time: Fri 05 Jun 2026 07:12:23 +0000 ROA not before: Fri 05 Jun 2026 07:07:23 +0000 ROA not after: Fri 04 Jun 2027 07:12:23 +0000 asID: 200545 IP address blocks: 2a0a:6040:e900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:48:8b:59:58:c0:b3:dd:b2:f6:75:4e:41:50:a3:24:31:45:27:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:23 2026 GMT Not After : Jun 4 07:12:23 2027 GMT Subject: CN=4946CE32B8F0726F7B3BA98A37CA86508B04F9EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fe:6b:92:6d:66:60:de:cf:8b:ca:cd:60:cc: 40:f2:3b:10:22:72:5d:5e:39:2f:43:94:c1:71:08: 2e:2b:24:b9:c3:b7:c1:4a:79:a3:b7:7d:68:ae:0a: 7a:3d:77:12:1e:92:3e:bc:fa:52:b0:0e:fe:7b:1a: 5c:bb:ad:90:90:b3:83:9e:f3:0a:89:79:48:4a:f8: 29:b0:fe:ff:5c:28:b3:57:bf:40:a1:37:c3:d4:56: e7:03:5c:82:9a:b8:84:69:3c:f5:80:23:49:66:46: e0:9c:70:88:91:3f:06:12:e2:22:1b:d4:68:6a:94: 9b:63:a9:32:32:62:bc:32:86:bc:df:72:00:f9:4b: a2:8c:8b:80:d4:9e:a8:04:1c:f9:76:8c:6f:a7:fa: ce:ce:4c:57:2d:5f:c0:6e:72:4c:67:cc:2d:95:40: ef:de:c9:80:3a:2e:34:7f:3e:fa:97:d2:83:40:60: c2:6f:8f:e0:93:48:bb:c1:61:82:23:ee:d7:a6:6f: fc:5d:07:0d:93:a5:95:c0:74:29:66:8f:a6:85:c8: f5:c6:f2:a8:d2:96:e1:54:4e:3b:1e:ad:c7:e6:01: 59:fa:5f:2b:6f:df:ec:00:b5:c9:42:7f:88:56:d0: 8c:3f:28:3f:5d:2f:8e:2d:ed:29:20:3e:20:07:72: 15:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:46:CE:32:B8:F0:72:6F:7B:3B:A9:8A:37:CA:86:50:8B:04:F9:EB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200545.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e900::/40 Signature Algorithm: sha256WithRSAEncryption 83:18:e2:84:4e:26:17:7a:ab:f0:f6:27:f6:5c:3f:b9:b4:2a: 41:bf:81:8b:d2:7e:2f:3e:64:1f:99:4a:86:1f:6b:6c:b7:fa: a3:a0:5f:e2:4e:48:7e:25:6d:57:9b:29:3e:cc:46:55:ef:a5: d1:d3:78:1e:13:51:ee:0b:8b:fc:06:98:91:72:9b:96:5d:f6: b4:62:25:57:55:1d:25:fb:9a:eb:01:e4:97:68:f0:e6:34:34: a6:75:57:ef:f4:05:de:7d:ba:1d:0d:9d:f0:bc:12:fd:0d:b3: a3:b6:2f:55:11:31:83:93:14:fb:13:f4:fb:20:9d:37:12:a0: f1:b5:f5:2c:40:6b:f7:b4:37:46:69:0a:c8:64:7e:bc:f8:0b: 30:b9:35:c7:11:da:dd:c6:50:93:09:2c:33:06:2c:18:07:05: 9d:c1:6f:b3:8d:0a:2c:b5:c9:48:22:a8:09:0e:69:f0:40:da: 19:55:a9:fd:7d:45:6d:eb:58:c1:c2:6e:23:e5:d9:21:e0:a2: 8f:da:2f:90:46:b6:6e:fc:a4:1e:4a:6f:6d:32:e5:2b:7d:d2: 9b:38:5e:48:62:b5:e7:e8:d5:0b:96:cd:22:01:dd:d8:a6:4c: 20:8b:a9:b3:d5:10:c4:04:d3:27:8d:62:26:d9:09:85:42:b4: e6:74:d8:38 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUH0iLWVjAs92y9nVOQVCjJDFFJyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjNaFw0yNzA2MDQwNzEyMjNaMDMxMTAvBgNV BAMTKDQ5NDZDRTMyQjhGMDcyNkY3QjNCQTk4QTM3Q0E4NjUwOEIwNEY5RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp/muSbWZg3s+Lys1gzEDyOxAi cl1eOS9DlMFxCC4rJLnDt8FKeaO3fWiuCno9dxIekj68+lKwDv57Gly7rZCQs4Oe 8wqJeUhK+Cmw/v9cKLNXv0ChN8PUVucDXIKauIRpPPWAI0lmRuCccIiRPwYS4iIb 1GhqlJtjqTIyYrwyhrzfcgD5S6KMi4DUnqgEHPl2jG+n+s7OTFctX8BuckxnzC2V QO/eyYA6LjR/PvqX0oNAYMJvj+CTSLvBYYIj7temb/xdBw2TpZXAdClmj6aFyPXG 8qjSluFUTjsercfmAVn6Xytv3+wAtclCf4hW0Iw/KD9dL44t7SkgPiAHchUXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSUbOMrjwcm97O6mKN8qGUIsE+eswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTQ1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOkwDQYJKoZIhvcNAQELBQADggEBAIMY 4oROJhd6q/D2J/ZcP7m0KkG/gYvSfi8+ZB+ZSoYfa2y3+qOgX+JOSH4lbVebKT7M RlXvpdHTeB4TUe4Li/wGmJFym5Zd9rRiJVdVHSX7musB5Jdo8OY0NKZ1V+/0Bd59 uh0NnfC8Ev0Ns6O2L1URMYOTFPsT9PsgnTcSoPG19SxAa/e0N0ZpCshkfrz4CzC5 NccR2t3GUJMJLDMGLBgHBZ3Bb7ONCiy1yUgiqAkOafBA2hlVqf19RW3rWMHCbiPl 2SHgoo/aL5BGtm78pB5Kb20y5St90ps4Xkhitefo1QuWzSIB3dimTCCLqbPVEMQE 0yeNYibZCYVCtOZ02Dg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:23 2026 by rpki-client