$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200671.roa File: AS200671.roa (raw, json) Hash identifier: ObMooFCNls9tL8oAvVhMuYheTt01Zm40/ZDNTENGd5Y= Subject key identifier: E6:29:54:1E:38:FF:A4:12:65:B8:08:1B:87:A6:F7:4A:81:47:7A:B8 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 57D20A51E930F2C3E6DEC4A874E0F62CB6DAF79C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200671.roa Signing time: Fri 05 Jun 2026 07:12:09 +0000 ROA not before: Fri 05 Jun 2026 07:07:09 +0000 ROA not after: Fri 04 Jun 2027 07:12:09 +0000 asID: 200671 IP address blocks: 2a0a:6040:f700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d2:0a:51:e9:30:f2:c3:e6:de:c4:a8:74:e0:f6:2c:b6:da:f7:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:09 2026 GMT Not After : Jun 4 07:12:09 2027 GMT Subject: CN=E629541E38FFA41265B8081B87A6F74A81477AB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:95:53:43:62:2f:aa:1a:88:cb:2f:be:ff:6a: 60:5b:3b:34:97:c5:af:2c:ca:a4:01:98:41:e5:a6: b5:11:bb:11:9e:ea:80:5e:48:0e:5e:ee:b1:b0:bc: 50:84:91:51:32:17:98:c3:01:c0:b8:68:96:33:9a: 2e:ec:05:df:49:cb:58:3a:ad:48:2b:eb:8a:60:a6: cc:8b:ac:23:39:48:d9:f3:4e:9c:fc:ba:ca:df:56: 13:64:c8:b0:ed:af:10:05:e9:ac:45:db:46:01:54: 00:87:11:9b:74:f6:b4:f0:f4:d6:71:e6:cd:5d:89: c3:b2:54:64:f0:d2:ad:01:62:07:24:da:cb:2b:79: 3d:04:c2:4c:07:55:ef:fe:87:bf:01:69:2b:7c:9d: 6e:4c:52:83:6b:78:02:34:78:a8:89:ba:61:22:ef: f8:d3:da:82:a0:fd:c1:28:9b:7c:ce:56:cf:d4:46: b1:b8:09:83:49:28:07:e4:62:db:2c:1d:fb:4a:8d: 45:f8:a7:9d:17:d3:fa:d8:36:b5:c8:f1:bf:bf:be: 89:1c:c5:18:34:6e:6f:e8:d4:8e:cc:8a:71:7f:aa: 09:bc:a4:2a:41:db:9e:23:6a:c6:5e:29:95:1f:d0: 0b:c7:f1:cb:30:50:c8:f9:46:cd:04:b1:19:fd:0b: bd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:29:54:1E:38:FF:A4:12:65:B8:08:1B:87:A6:F7:4A:81:47:7A:B8 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200671.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f700::/40 Signature Algorithm: sha256WithRSAEncryption d5:95:bc:e3:98:36:d5:42:f6:20:6a:f0:09:d7:e0:89:83:8c: cf:5c:6a:e9:9a:a2:e9:33:2f:f0:4b:bd:49:ae:ab:d7:6f:42: 2e:2b:10:9b:ee:52:ef:35:c6:c2:3e:8e:4d:67:66:3a:95:07: df:b8:52:d5:cf:44:bf:0a:c5:76:fc:08:d0:39:d4:57:c9:07: d6:d0:e6:72:58:6b:73:38:1d:53:61:31:01:46:a8:0d:49:92: 21:7d:e1:d8:3f:d9:a3:1f:1d:cb:29:1f:29:87:31:76:35:bc: e8:fd:df:3c:ea:d5:80:e0:2e:10:e2:b8:eb:7a:14:a8:ad:db: 38:2d:07:ee:a7:dc:ac:4f:6c:15:db:bf:a0:47:a7:f1:4a:c0: 43:a3:3a:db:46:e1:9e:b5:2b:0a:d4:81:8c:47:d9:84:77:53: 92:a6:30:11:61:4a:41:6f:57:a4:19:58:09:06:1e:04:95:38: eb:b2:a8:f4:ec:b9:17:07:4d:db:f8:e7:1e:36:17:97:ee:49: a9:8b:32:b5:71:a3:e2:41:da:8a:fe:10:e5:71:52:15:2a:59: 3d:0e:80:fa:7e:b7:44:3b:9a:9e:0c:08:c0:5d:95:ec:be:4d: 8a:ae:34:eb:37:e2:9c:31:85:1d:63:35:29:2b:cc:dc:ef:f4: 70:21:ae:2f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUV9IKUekw8sPm3sSodOD2LLba95wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDlaFw0yNzA2MDQwNzEyMDlaMDMxMTAvBgNV BAMTKEU2Mjk1NDFFMzhGRkE0MTI2NUI4MDgxQjg3QTZGNzRBODE0NzdBQjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/lVNDYi+qGojLL77/amBbOzSX xa8syqQBmEHlprURuxGe6oBeSA5e7rGwvFCEkVEyF5jDAcC4aJYzmi7sBd9Jy1g6 rUgr64pgpsyLrCM5SNnzTpz8usrfVhNkyLDtrxAF6axF20YBVACHEZt09rTw9NZx 5s1dicOyVGTw0q0BYgck2ssreT0EwkwHVe/+h78BaSt8nW5MUoNreAI0eKiJumEi 7/jT2oKg/cEom3zOVs/URrG4CYNJKAfkYtssHftKjUX4p50X0/rYNrXI8b+/vokc xRg0bm/o1I7MinF/qgm8pCpB254jasZeKZUf0AvH8cswUMj5Rs0EsRn9C707AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5ilUHjj/pBJluAgbh6b3SoFHergwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNjcxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPcwDQYJKoZIhvcNAQELBQADggEBANWV vOOYNtVC9iBq8AnX4ImDjM9caumaoukzL/BLvUmuq9dvQi4rEJvuUu81xsI+jk1n ZjqVB9+4UtXPRL8KxXb8CNA51FfJB9bQ5nJYa3M4HVNhMQFGqA1JkiF94dg/2aMf HcspHymHMXY1vOj93zzq1YDgLhDiuOt6FKit2zgtB+6n3KxPbBXbv6BHp/FKwEOj OttG4Z61KwrUgYxH2YR3U5KmMBFhSkFvV6QZWAkGHgSVOOuyqPTsuRcHTdv45x42 F5fuSamLMrVxo+JB2or+EOVxUhUqWT0OgPp+t0Q7mp4MCMBdley+TYquNOs34pwx hR1jNSkrzNzv9HAhri8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:12 2026 by rpki-client