$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200671.roa File: AS200671.roa (raw, json) Hash identifier: ryiEC0xTnJqYVCuwmdqMXcB+69lf2PPLIuFD+MNOCX8= Subject key identifier: C8:BE:0E:C3:F5:BB:DE:3B:97:8C:E6:F2:66:9D:98:15:60:A9:BA:74 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4AF238609AD47FA7F9E09CE06B0B24D79BB91765 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200671.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 200671 IP address blocks: 2a0a:6040:f700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:f2:38:60:9a:d4:7f:a7:f9:e0:9c:e0:6b:0b:24:d7:9b:b9:17:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=C8BE0EC3F5BBDE3B978CE6F2669D981560A9BA74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:12:cf:d9:7a:d3:c0:46:ff:38:53:7e:4c:ae: af:cf:0e:43:68:f4:15:35:04:b8:88:ec:b5:44:86: b9:9f:05:3e:c0:96:d1:a5:97:ac:a9:62:f8:f6:77: 7b:6e:6c:1c:44:72:69:a5:b0:76:2d:06:28:0b:b6: 7a:e2:2e:c8:b5:e0:ed:80:10:21:f5:96:0b:88:16: 31:4d:7e:33:e6:99:36:4b:c7:98:9d:33:b6:9b:6a: f5:63:3f:2d:4e:08:8b:97:e0:ab:31:52:32:31:0a: 29:0a:ea:22:87:32:80:f2:ea:60:7c:2d:a5:0d:75: c0:6c:26:c2:3d:a1:ca:66:0f:52:41:90:3f:72:51: 08:ff:ea:0f:e3:45:3e:0b:92:b8:c8:e5:12:b0:e3: 1e:46:ae:71:a9:f6:44:81:68:ca:eb:2f:bf:3b:3b: fb:45:15:0c:df:79:f0:6b:ae:2f:70:ef:d8:e5:64: 9e:a9:a2:5d:d8:9d:29:c9:f4:74:e0:97:f2:49:2f: d1:61:40:af:e7:24:33:4d:a4:f2:5f:62:e9:ca:0a: 76:c9:9e:6a:5e:e6:79:4e:a1:a2:d1:86:24:d9:4d: f4:21:5f:99:8c:28:59:52:6a:13:43:47:c9:af:95: 83:a5:34:0d:88:8c:9f:9d:58:1b:3c:4e:3b:91:4d: e2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BE:0E:C3:F5:BB:DE:3B:97:8C:E6:F2:66:9D:98:15:60:A9:BA:74 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f700::/40 Signature Algorithm: sha256WithRSAEncryption c2:f1:93:19:f7:a7:97:ff:10:3a:31:fe:e2:98:15:96:2a:5c: d7:8a:cd:d1:f4:0a:e6:2a:f4:6d:31:76:55:cc:ea:0f:ce:69: 69:db:7b:29:73:de:08:4d:74:d7:33:0d:63:79:e0:72:ed:44: 0d:2e:ae:02:04:b2:fd:cc:60:24:3c:2c:62:b8:2b:40:99:64: 23:7d:d5:c5:14:4e:3b:0a:02:8e:39:98:81:83:eb:fb:a8:74: 82:f8:e5:5a:ec:9b:29:3b:d8:46:a2:24:94:cc:89:32:57:d8: 2c:fb:f1:ea:c4:64:35:f5:1c:c9:54:f0:96:e1:8f:3d:90:f3: 18:a8:bf:bc:2e:8f:7f:36:3a:d6:9d:fb:e3:e2:22:e6:57:72: b9:d4:5b:92:ea:2c:f0:e6:6a:ca:a4:74:fa:55:c0:c2:d4:a6: 98:81:2d:28:dd:2e:c0:7f:ca:cc:17:63:01:bd:00:39:bc:24: 8f:68:7d:60:d1:b1:e8:7f:33:4e:8b:8a:01:4b:09:95:02:a3: f3:1a:83:1b:52:98:92:25:4a:d8:de:4c:5b:08:c1:28:dd:d6: 0d:7f:15:d2:ca:f7:00:42:ba:b9:16:c5:94:99:5a:ef:cd:7c: f6:3a:ae:2f:78:21:de:f9:e2:83:c5:4d:67:f0:ca:af:98:f8: 89:01:5c:39 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSvI4YJrUf6f54Jzgawsk15u5F2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKEM4QkUwRUMzRjVCQkRFM0I5NzhDRTZGMjY2OUQ5ODE1NjBBOUJBNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Es/ZetPARv84U35Mrq/PDkNo 9BU1BLiI7LVEhrmfBT7AltGll6ypYvj2d3tubBxEcmmlsHYtBigLtnriLsi14O2A ECH1lguIFjFNfjPmmTZLx5idM7abavVjPy1OCIuX4KsxUjIxCikK6iKHMoDy6mB8 LaUNdcBsJsI9ocpmD1JBkD9yUQj/6g/jRT4LkrjI5RKw4x5GrnGp9kSBaMrrL787 O/tFFQzfefBrri9w79jlZJ6pol3YnSnJ9HTgl/JJL9FhQK/nJDNNpPJfYunKCnbJ nmpe5nlOoaLRhiTZTfQhX5mMKFlSahNDR8mvlYOlNA2IjJ+dWBs8TjuRTeKzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUyL4Ow/W73juXjObyZp2YFWCpunQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNjcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPcwDQYJKoZIhvcNAQELBQADggEBAMLx kxn3p5f/EDox/uKYFZYqXNeKzdH0CuYq9G0xdlXM6g/OaWnbeylz3ghNdNczDWN5 4HLtRA0urgIEsv3MYCQ8LGK4K0CZZCN91cUUTjsKAo45mIGD6/uodIL45Vrsmyk7 2EaiJJTMiTJX2Cz78erEZDX1HMlU8Jbhjz2Q8xiov7wuj382Otad++PiIuZXcrnU W5LqLPDmasqkdPpVwMLUppiBLSjdLsB/yswXYwG9ADm8JI9ofWDRseh/M06LigFL CZUCo/MagxtSmJIlStjeTFsIwSjd1g1/FdLK9wBCurkWxZSZWu/NfPY6ri94Id75 4oPFTWfwyq+Y+IkBXDk= -----END CERTIFICATE-----Generated at Mon Aug 4 15:59:24 2025 by rpki-client