$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200579.roa File: AS200579.roa (raw, json) Hash identifier: 0RVJ5OruHoCWBrBd90fd508uzQM6NQ6zsn0r+CQp+CA= Subject key identifier: 41:3D:16:FD:60:52:CD:56:74:3F:AF:8C:FE:CB:08:7C:02:12:B1:06 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 37CF41618890FF1CED0194730A558473DCEF52F6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200579.roa Signing time: Fri 05 Jun 2026 07:12:23 +0000 ROA not before: Fri 05 Jun 2026 07:07:23 +0000 ROA not after: Fri 04 Jun 2027 07:12:23 +0000 asID: 200579 IP address blocks: 2a0a:6040:fb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:cf:41:61:88:90:ff:1c:ed:01:94:73:0a:55:84:73:dc:ef:52:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:23 2026 GMT Not After : Jun 4 07:12:23 2027 GMT Subject: CN=413D16FD6052CD56743FAF8CFECB087C0212B106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ae:cc:d9:06:6f:14:e9:15:6f:b2:81:42:d7: da:2d:f9:c1:3a:94:41:c2:92:41:bc:23:73:dc:06: 9e:0a:b2:5d:3b:53:d7:f7:03:60:d2:bb:d7:5d:73: 48:c9:2f:49:7a:75:04:c1:74:c4:b1:d7:00:26:de: ab:29:79:ab:3c:f0:bc:24:d9:1d:a0:9e:b1:5f:03: 33:3f:5a:0e:18:f3:51:19:fe:8a:87:0d:0c:30:44: 42:0c:a2:ee:e6:47:7a:92:51:02:97:41:b9:b0:23: 37:c3:34:1c:29:44:1a:1b:cd:dc:da:76:7e:16:d4: d3:fc:f9:4c:a2:46:c8:db:77:d2:64:a0:b0:e1:19: ae:d3:2f:4a:de:4f:2a:32:e2:dd:d3:32:e9:84:97: fe:f8:ce:f8:1d:61:ec:b3:13:b4:e0:80:a6:1b:e4: 9e:7b:9e:60:85:1b:a5:b0:cb:e2:cd:07:6f:28:df: 44:d2:2b:ce:d7:b8:5e:3c:3e:12:ec:3f:cb:dc:6f: c6:05:fa:ce:f7:8b:f7:a0:99:b9:5e:92:1e:4e:bf: d4:6a:55:5b:ed:09:ec:d4:5c:1e:92:32:5d:09:8c: 27:1c:b1:17:2a:55:e4:5a:ff:21:65:7d:84:d1:d5: 74:10:26:75:10:ba:d7:af:96:1a:2d:e9:51:28:43: 9c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:3D:16:FD:60:52:CD:56:74:3F:AF:8C:FE:CB:08:7C:02:12:B1:06 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200579.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fb00::/40 Signature Algorithm: sha256WithRSAEncryption a3:2f:94:70:7d:49:38:14:23:c2:82:a2:7f:e0:8a:7a:1e:5d: 68:79:aa:6c:9d:c7:02:60:d8:26:4a:14:c3:9d:fe:96:9e:13: 90:9c:63:d5:25:7e:af:d3:8c:7a:09:db:4f:80:62:21:41:fb: 63:fb:cd:39:c9:9b:50:cd:cb:ca:ca:6f:fa:0a:ec:db:9e:d0: 28:ac:34:d8:b6:f6:bd:0a:4b:a8:a2:ed:6a:42:13:1a:b8:5b: 27:ef:29:dc:a9:9a:0e:e0:01:a7:ce:90:b7:40:c9:7d:1e:a7: fa:6d:87:34:e9:f1:7e:75:c0:66:53:60:cc:5e:a5:52:50:e6: bc:fb:6c:f4:bc:b6:26:29:3d:70:39:87:88:ba:a5:4b:61:95: 3e:c0:5d:7e:2d:39:6c:eb:34:2b:29:fa:77:45:63:3a:6a:d0: 10:fc:b8:90:35:c4:d5:a2:9c:22:d2:32:a1:cf:e6:6c:8b:03: 14:26:fa:16:fd:5f:09:ff:f0:4c:7a:35:b7:96:17:76:4e:cc: 08:a2:30:b0:b5:15:02:d0:f2:04:e0:03:30:a9:84:3c:50:e7: f8:15:3d:08:28:55:ad:6f:ff:3c:47:10:b6:ad:59:75:21:49: 91:9f:17:d7:62:0a:9c:82:99:1a:53:cb:cc:9b:f3:68:41:bc: e5:13:af:79 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUN89BYYiQ/xztAZRzClWEc9zvUvYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjNaFw0yNzA2MDQwNzEyMjNaMDMxMTAvBgNV BAMTKDQxM0QxNkZENjA1MkNENTY3NDNGQUY4Q0ZFQ0IwODdDMDIxMkIxMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCrszZBm8U6RVvsoFC19ot+cE6 lEHCkkG8I3PcBp4Ksl07U9f3A2DSu9ddc0jJL0l6dQTBdMSx1wAm3qspeas88Lwk 2R2gnrFfAzM/Wg4Y81EZ/oqHDQwwREIMou7mR3qSUQKXQbmwIzfDNBwpRBobzdza dn4W1NP8+UyiRsjbd9JkoLDhGa7TL0reTyoy4t3TMumEl/74zvgdYeyzE7TggKYb 5J57nmCFG6Wwy+LNB28o30TSK87XuF48PhLsP8vcb8YF+s73i/egmblekh5Ov9Rq VVvtCezUXB6SMl0JjCccsRcqVeRa/yFlfYTR1XQQJnUQutevlhot6VEoQ5wjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQT0W/WBSzVZ0P6+M/ssIfAISsQYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNTc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPswDQYJKoZIhvcNAQELBQADggEBAKMv lHB9STgUI8KCon/ginoeXWh5qmydxwJg2CZKFMOd/paeE5CcY9Ulfq/TjHoJ20+A YiFB+2P7zTnJm1DNy8rKb/oK7Nue0CisNNi29r0KS6ii7WpCExq4WyfvKdypmg7g AafOkLdAyX0ep/pthzTp8X51wGZTYMxepVJQ5rz7bPS8tiYpPXA5h4i6pUthlT7A XX4tOWzrNCsp+ndFYzpq0BD8uJA1xNWinCLSMqHP5myLAxQm+hb9Xwn/8Ex6NbeW F3ZOzAiiMLC1FQLQ8gTgAzCphDxQ5/gVPQgoVa1v/zxHELatWXUhSZGfF9diCpyC mRpTy8yb82hBvOUTr3k= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:57 2026 by rpki-client