$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200676.roa File: AS200676.roa (raw, json) Hash identifier: Wnsd5/rEeJp6JIDUcSp4LZkokY8QerF+WsX43YoE8R0= Subject key identifier: B8:68:74:C4:35:F1:A7:D5:A1:9B:99:27:AA:2E:AA:FD:08:AF:1A:C0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3B4F1BECA512D78109ED27834D682F98DD577B3C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200676.roa Signing time: Fri 05 Jun 2026 07:12:46 +0000 ROA not before: Fri 05 Jun 2026 07:07:46 +0000 ROA not after: Fri 04 Jun 2027 07:12:46 +0000 asID: 200676 IP address blocks: 2a0a:6040:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4f:1b:ec:a5:12:d7:81:09:ed:27:83:4d:68:2f:98:dd:57:7b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:46 2026 GMT Not After : Jun 4 07:12:46 2027 GMT Subject: CN=B86874C435F1A7D5A19B9927AA2EAAFD08AF1AC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:47:0a:d5:18:28:fb:d8:07:10:ef:16:61: 1f:14:d5:ec:74:5a:03:52:36:21:59:d9:cc:e7:95: 97:e7:e4:c0:8a:a3:f8:23:3b:3e:7d:c8:15:d0:3d: 84:43:e4:e0:81:19:46:54:97:ef:5c:ff:f5:9d:7f: 73:de:46:b9:09:4a:b6:b7:ef:91:68:6e:2a:7d:10: 8b:12:26:7a:cc:c0:93:18:14:e6:c6:d6:95:39:e4: 1e:97:9f:c4:ae:1e:f3:f9:90:4a:35:d9:44:b8:d0: b3:8a:03:44:e8:11:75:0a:e1:81:de:dc:12:ef:04: 56:eb:09:a9:98:75:9b:05:fc:f0:d5:69:35:ef:33: ea:69:de:72:e2:6c:84:59:81:61:58:36:27:1e:93: 48:ff:03:5e:1c:21:14:9f:d9:e1:a3:ac:63:5c:73: 6f:26:1d:38:b4:b3:ae:10:ba:a5:a9:13:6c:cd:23: 66:f3:e7:8a:0a:bd:61:74:8e:65:58:ff:2e:da:0e: 57:8a:05:49:f3:dc:b7:25:64:d5:10:29:45:b1:7a: 56:85:5a:1b:d4:ae:d1:c0:ca:2f:3d:29:e1:36:dd: a6:bc:0f:ec:fd:a6:e1:0f:db:ba:4d:02:a5:05:46: b3:fe:93:9e:39:a6:65:dc:90:5c:3b:fa:11:2e:64: 0f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:68:74:C4:35:F1:A7:D5:A1:9B:99:27:AA:2E:AA:FD:08:AF:1A:C0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b100::/40 Signature Algorithm: sha256WithRSAEncryption 0f:35:0b:84:3a:76:5c:32:7c:d3:a5:90:10:34:f2:7e:52:de: ec:fe:ce:77:ab:b3:81:5d:d0:46:2a:ae:0a:02:a3:77:80:d1: 15:e5:ac:6c:e8:1f:ac:86:dd:b4:02:6c:b4:b0:54:01:4f:ba: 0c:2c:f0:2f:da:8c:32:43:ce:c1:55:ab:30:ad:a7:5a:3e:59: 1a:03:9a:ac:11:93:8a:62:b4:8e:58:2a:3c:75:cf:d6:d6:be: 9c:ba:e1:49:51:f5:8a:07:d0:ab:3c:62:16:49:81:45:ba:78: 62:58:2a:c9:2c:81:db:b5:86:27:7e:83:28:9b:01:38:da:6e: 08:68:df:dc:e6:60:63:76:01:91:cc:f9:5c:b1:02:4b:3a:b2: 57:89:73:74:42:44:e6:05:11:a9:15:38:ca:ff:2b:a9:73:9c: 28:62:55:70:9b:86:e8:3f:cb:5b:e4:a3:b7:8a:c8:b3:c3:53: 87:c3:3b:2f:dc:13:1a:38:db:0e:21:35:2d:15:9f:de:32:43: f0:c5:b4:a9:9f:af:fb:a5:3f:21:34:46:d2:83:53:1f:62:e1: 82:47:74:c3:d7:35:1f:14:b1:48:45:b7:39:36:ad:6f:a4:3b: 6b:93:48:90:23:29:75:71:d6:9f:8d:00:cd:fc:41:68:6c:d1: 60:ed:3b:0d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUO08b7KUS14EJ7SeDTWgvmN1XezwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDZaFw0yNzA2MDQwNzEyNDZaMDMxMTAvBgNV BAMTKEI4Njg3NEM0MzVGMUE3RDVBMTlCOTkyN0FBMkVBQUZEMDhBRjFBQzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7S0cK1Rgo+9gHEO8WYR8U1ex0 WgNSNiFZ2cznlZfn5MCKo/gjOz59yBXQPYRD5OCBGUZUl+9c//Wdf3PeRrkJSra3 75Fobip9EIsSJnrMwJMYFObG1pU55B6Xn8SuHvP5kEo12US40LOKA0ToEXUK4YHe 3BLvBFbrCamYdZsF/PDVaTXvM+pp3nLibIRZgWFYNicek0j/A14cIRSf2eGjrGNc c28mHTi0s64QuqWpE2zNI2bz54oKvWF0jmVY/y7aDleKBUnz3LclZNUQKUWxelaF WhvUrtHAyi89KeE23aa8D+z9puEP27pNAqUFRrP+k545pmXckFw7+hEuZA9lAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUuGh0xDXxp9Whm5knqi6q/QivGsAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNjc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLEwDQYJKoZIhvcNAQELBQADggEBAA81 C4Q6dlwyfNOlkBA08n5S3uz+zners4Fd0EYqrgoCo3eA0RXlrGzoH6yG3bQCbLSw VAFPugws8C/ajDJDzsFVqzCtp1o+WRoDmqwRk4pitI5YKjx1z9bWvpy64UlR9YoH 0Ks8YhZJgUW6eGJYKsksgdu1hid+gyibATjabgho39zmYGN2AZHM+VyxAks6sleJ c3RCROYFEakVOMr/K6lznChiVXCbhug/y1vko7eKyLPDU4fDOy/cExo42w4hNS0V n94yQ/DFtKmfr/ulPyE0RtKDUx9i4YJHdMPXNR8UsUhFtzk2rW+kO2uTSJAjKXVx 1p+NAM38QWhs0WDtOw0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:05 2026 by rpki-client