$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200731.roa File: AS200731.roa (raw, json) Hash identifier: jumWB6l8ApTjicF6blDa/E9dHlgQBvrweSeB/hSrkqw= Subject key identifier: A8:1C:B5:01:60:E2:A1:81:10:CF:60:03:C8:D6:BA:5A:D7:05:D4:AF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4A7AC3F00FDE2800992AF0F1D2B2E38A6F6D7F11 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200731.roa Signing time: Fri 05 Jun 2026 07:12:47 +0000 ROA not before: Fri 05 Jun 2026 07:07:47 +0000 ROA not after: Fri 04 Jun 2027 07:12:47 +0000 asID: 200731 IP address blocks: 2a0a:6040:b800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7a:c3:f0:0f:de:28:00:99:2a:f0:f1:d2:b2:e3:8a:6f:6d:7f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:47 2026 GMT Not After : Jun 4 07:12:47 2027 GMT Subject: CN=A81CB50160E2A18110CF6003C8D6BA5AD705D4AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:15:dd:b9:e3:8c:03:6b:82:38:a9:33:92:25: a1:49:83:00:11:b3:6b:4c:42:d0:15:b4:4e:1f:aa: c1:30:f3:5d:91:73:89:39:90:5f:34:df:95:9f:81: 18:90:09:e0:be:cb:36:d8:ea:95:aa:03:91:ea:d0: d5:0f:78:d4:1e:a8:93:81:cc:a7:60:ff:d8:e2:31: df:d8:05:d9:b5:1c:02:f4:d1:92:46:53:59:58:d9: d6:73:1f:a5:ae:e5:b7:3f:68:eb:8e:3b:8a:2f:6a: 2a:8a:ad:67:d1:98:63:59:43:10:fe:0b:56:b1:25: f3:75:29:ea:31:ff:7a:90:3b:ab:0e:b5:fd:19:7e: 94:d9:c8:c6:04:af:82:76:eb:81:b2:f7:6e:87:96: 40:a8:d5:0d:da:97:43:99:e8:ea:d4:3e:3e:b2:7a: c8:b1:1f:6d:b8:49:af:1f:e9:23:ed:ba:68:71:32: 82:eb:22:e7:94:76:9d:af:f5:7c:d1:f3:ae:ce:44: fb:c8:25:f7:f2:4e:b9:83:f7:f0:87:ce:5d:35:00: 80:08:1c:50:60:82:c4:ff:80:f0:fb:ee:39:b4:94: 44:9a:a4:95:2f:96:a7:be:0e:a0:1b:a3:d5:57:e0: c8:e8:df:78:d9:4d:d4:90:89:90:56:59:ef:e0:63: 75:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1C:B5:01:60:E2:A1:81:10:CF:60:03:C8:D6:BA:5A:D7:05:D4:AF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200731.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b800::/40 Signature Algorithm: sha256WithRSAEncryption 73:91:18:e7:fc:da:84:80:af:f8:d7:8c:69:41:4e:4a:00:51: 3c:0e:d4:48:5c:5d:ee:d4:ab:03:5a:21:63:5a:11:f6:49:51: 54:b2:ca:20:1a:5f:9f:0b:03:4d:64:ff:46:24:df:58:a0:42: b7:a5:e3:6b:1f:cb:92:da:2a:d8:4a:34:a8:f4:aa:7f:3f:55: 10:4e:d8:34:94:d6:21:5d:b0:93:0f:8c:a6:10:bb:02:76:35: 56:61:46:f5:03:22:b4:36:0c:5b:21:a1:9b:29:0b:fe:74:af: 80:0c:62:53:1d:32:1c:c9:03:b2:77:d2:ba:26:b9:b7:03:fe: 2d:bf:a1:b5:92:81:0b:17:25:f8:f4:5d:6d:f9:50:5e:05:15: 9f:c9:5c:63:2c:f3:7e:1b:0c:3d:e1:e6:00:a3:9c:3f:6c:c1: 14:2b:89:92:33:56:43:0f:e0:a7:0c:cf:0e:8b:71:2c:ac:ef: b3:a8:24:cc:7c:25:da:2c:31:60:3c:b4:d1:2c:b2:fc:7d:85: 69:f0:41:1f:20:53:19:c3:e8:d2:9e:ae:32:ed:85:1b:3b:42: 21:73:64:7a:7d:af:12:01:b6:71:69:a1:d1:5d:5f:38:68:07: f3:6b:cb:d1:33:76:f0:e3:cb:ae:17:e0:d8:c6:47:82:63:e8: e6:8c:3b:2c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSnrD8A/eKACZKvDx0rLjim9tfxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDdaFw0yNzA2MDQwNzEyNDdaMDMxMTAvBgNV BAMTKEE4MUNCNTAxNjBFMkExODExMENGNjAwM0M4RDZCQTVBRDcwNUQ0QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCFd2544wDa4I4qTOSJaFJgwAR s2tMQtAVtE4fqsEw812Rc4k5kF8035WfgRiQCeC+yzbY6pWqA5Hq0NUPeNQeqJOB zKdg/9jiMd/YBdm1HAL00ZJGU1lY2dZzH6Wu5bc/aOuOO4ovaiqKrWfRmGNZQxD+ C1axJfN1Keox/3qQO6sOtf0ZfpTZyMYEr4J264Gy926HlkCo1Q3al0OZ6OrUPj6y esixH224Sa8f6SPtumhxMoLrIueUdp2v9XzR867ORPvIJffyTrmD9/CHzl01AIAI HFBggsT/gPD77jm0lESapJUvlqe+DqAbo9VX4Mjo33jZTdSQiZBWWe/gY3VtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUqBy1AWDioYEQz2ADyNa6WtcF1K8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLgwDQYJKoZIhvcNAQELBQADggEBAHOR GOf82oSAr/jXjGlBTkoAUTwO1EhcXe7UqwNaIWNaEfZJUVSyyiAaX58LA01k/0Yk 31igQrel42sfy5LaKthKNKj0qn8/VRBO2DSU1iFdsJMPjKYQuwJ2NVZhRvUDIrQ2 DFshoZspC/50r4AMYlMdMhzJA7J30romubcD/i2/obWSgQsXJfj0XW35UF4FFZ/J XGMs834bDD3h5gCjnD9swRQriZIzVkMP4KcMzw6LcSys77OoJMx8JdosMWA8tNEs svx9hWnwQR8gUxnD6NKerjLthRs7QiFzZHp9rxIBtnFpodFdXzhoB/Nry9EzdvDj y64X4NjGR4Jj6OaMOyw= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:16 2026 by rpki-client