$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200690.roa File: AS200690.roa (raw, json) Hash identifier: GOO7SDWI7SRetRrUrMy2mDGcApr3BS5f2E+PlGoYeRM= Subject key identifier: 1B:42:BE:64:00:7C:4D:59:81:F0:B1:34:DF:A7:BD:C0:FD:B7:55:BA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5291E10F3EAB4AF49770407F628E0C574601ADFF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200690.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 200690 IP address blocks: 2a0a:6040:a300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:91:e1:0f:3e:ab:4a:f4:97:70:40:7f:62:8e:0c:57:46:01:ad:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=1B42BE64007C4D5981F0B134DFA7BDC0FDB755BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:eb:c7:00:59:97:53:d3:54:55:cf:e7:c6:c4: d9:92:28:22:a1:da:25:2e:d8:1d:7d:13:cc:16:9d: 7f:6e:22:e5:17:ed:a8:e5:e8:12:c2:13:6b:37:8f: 0f:64:da:b1:81:9b:76:b7:5a:99:7e:9a:de:84:97: fb:c8:ca:7d:53:9f:e7:ce:0a:dd:65:41:f7:3e:79: 03:c9:a0:ca:fa:40:3c:36:aa:f1:d3:07:3a:52:40: 42:30:24:eb:73:7c:dc:f8:be:a5:1c:1f:73:0a:0d: 0a:93:9a:8d:84:14:b4:93:60:30:94:10:88:6c:37: d2:af:67:60:a6:03:92:20:b4:20:e1:4c:16:5e:c8: e4:91:cf:5b:ea:30:8c:ac:7a:eb:7c:9b:f9:96:83: e1:c9:a9:1e:d9:74:cb:e5:3b:46:b7:9c:4d:06:b5: ef:62:4a:b8:f8:2f:06:a8:38:72:75:22:7b:69:90: e1:02:6d:4e:27:91:92:a9:56:61:ab:93:c5:e3:e2: 06:42:71:7e:67:b9:d6:58:70:bc:30:36:f5:53:38: d7:ee:fd:a0:b5:f3:e6:17:c0:63:d8:be:44:cf:98: b8:b6:3e:27:38:1e:6f:e5:5d:12:41:20:ce:08:a9: 89:25:cc:34:f3:71:2b:10:65:3a:f0:8c:94:bc:42: 46:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:42:BE:64:00:7C:4D:59:81:F0:B1:34:DF:A7:BD:C0:FD:B7:55:BA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200690.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a300::/40 Signature Algorithm: sha256WithRSAEncryption 13:d3:4c:24:b0:d4:1d:f6:fe:46:76:06:63:61:42:a3:29:54: eb:8d:82:1f:3b:ea:14:35:0d:45:a0:0d:6a:10:41:9d:56:03: 2e:6c:d6:67:f0:13:1e:4c:c8:2f:49:19:8a:68:db:14:a7:d1: ac:87:7c:cc:67:d6:d5:c6:24:66:86:a2:da:22:db:93:7d:16: 78:08:1c:35:ec:f6:25:d2:02:b4:bd:38:a1:e6:63:c3:65:57: 79:92:ba:a0:52:dd:0e:aa:e1:e5:6b:37:44:ff:e3:22:c4:61: fe:88:66:bc:c5:79:b1:0f:39:5f:38:0c:be:95:d0:c9:15:cb: 37:c4:43:3f:a3:6d:c8:97:f5:d0:88:ea:8c:ec:5b:3d:10:0d: d8:9e:67:f4:53:0f:b6:21:83:70:c9:31:e9:1d:10:5e:bb:2e: b0:01:4c:05:fe:90:87:8c:9a:62:d7:97:7f:19:f8:11:fd:f2: 9a:0a:f9:b9:1e:41:cf:aa:9f:b4:b2:f1:44:15:88:15:58:8d: 38:e0:5d:12:a3:5f:2b:08:c7:bd:c5:ec:eb:18:0f:8e:ff:b6: 64:82:3a:38:20:9b:72:35:1e:15:2a:fd:81:3b:fc:f2:1d:41: c8:03:54:c4:e2:8c:c3:92:6c:4c:41:62:c2:e0:79:0f:19:98: eb:cb:69:e2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUpHhDz6rSvSXcEB/Yo4MV0YBrf8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKDFCNDJCRTY0MDA3QzRENTk4MUYwQjEzNERGQTdCREMwRkRCNzU1QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA68cAWZdT01RVz+fGxNmSKCKh 2iUu2B19E8wWnX9uIuUX7ajl6BLCE2s3jw9k2rGBm3a3Wpl+mt6El/vIyn1Tn+fO Ct1lQfc+eQPJoMr6QDw2qvHTBzpSQEIwJOtzfNz4vqUcH3MKDQqTmo2EFLSTYDCU EIhsN9KvZ2CmA5IgtCDhTBZeyOSRz1vqMIyseut8m/mWg+HJqR7ZdMvlO0a3nE0G te9iSrj4LwaoOHJ1IntpkOECbU4nkZKpVmGrk8Xj4gZCcX5nudZYcLwwNvVTONfu /aC18+YXwGPYvkTPmLi2Pic4Hm/lXRJBIM4IqYklzDTzcSsQZTrwjJS8QkZVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUG0K+ZAB8TVmB8LE036e9wP23VbowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNjkwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKMwDQYJKoZIhvcNAQELBQADggEBABPT TCSw1B32/kZ2BmNhQqMpVOuNgh876hQ1DUWgDWoQQZ1WAy5s1mfwEx5MyC9JGYpo 2xSn0ayHfMxn1tXGJGaGotoi25N9FngIHDXs9iXSArS9OKHmY8NlV3mSuqBS3Q6q 4eVrN0T/4yLEYf6IZrzFebEPOV84DL6V0MkVyzfEQz+jbciX9dCI6ozsWz0QDdie Z/RTD7Yhg3DJMekdEF67LrABTAX+kIeMmmLXl38Z+BH98poK+bkeQc+qn7Sy8UQV iBVYjTjgXRKjXysIx73F7OsYD47/tmSCOjggm3I1HhUq/YE7/PIdQcgDVMTijMOS bExBYsLgeQ8ZmOvLaeI= -----END CERTIFICATE-----Generated at Wed Nov 5 14:53:28 2025 by rpki-client