$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200732.roa File: AS200732.roa (raw, json) Hash identifier: sGI50zTivRB/U6NxaQnmlAS/9bXwnxP95jeRqPTPaOE= Subject key identifier: 7A:EF:7A:A6:B5:DD:62:9B:DC:BA:89:3A:2F:EA:47:13:9B:92:43:7C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4514E4381E2E7FDF9CD5776D2AD195EDF6558726 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200732.roa Signing time: Fri 05 Jun 2026 07:12:19 +0000 ROA not before: Fri 05 Jun 2026 07:07:19 +0000 ROA not after: Fri 04 Jun 2027 07:12:19 +0000 asID: 200732 IP address blocks: 2a0a:6040:b600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:14:e4:38:1e:2e:7f:df:9c:d5:77:6d:2a:d1:95:ed:f6:55:87:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:19 2026 GMT Not After : Jun 4 07:12:19 2027 GMT Subject: CN=7AEF7AA6B5DD629BDCBA893A2FEA47139B92437C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a6:e9:df:b7:46:08:53:52:bb:46:fc:99:f7: 89:bf:03:c4:a8:3c:b4:41:be:d4:02:76:b0:f4:10: 9b:a4:9a:b7:4d:5c:e3:c8:4b:a8:92:16:92:5b:62: e4:f7:b0:8e:64:57:6a:0e:42:12:7d:23:5b:d2:01: da:fd:73:d3:cf:83:5e:5e:3e:a0:6f:44:af:ce:d3: 31:f9:55:76:95:37:51:b0:b1:c2:e6:b0:be:ee:dc: c2:aa:2a:7d:36:76:10:06:a1:53:75:f1:46:61:c8: 85:4e:1e:96:1a:e5:a9:9f:31:9c:f6:8a:a5:d5:82: f0:f4:49:a8:d7:d4:a9:84:e9:b4:44:e5:dc:e7:2d: d3:70:fb:ba:a5:96:fd:29:c7:0b:87:8d:be:64:ca: e3:51:c2:3e:1d:a5:c4:d0:e8:6d:67:28:d4:23:ff: a0:c5:df:66:8c:33:8f:c4:e1:72:ad:c5:cd:5e:fe: 99:57:e0:03:bb:0c:5f:c3:52:98:2d:cd:4e:25:65: d4:50:18:e7:72:a4:99:fd:1c:28:00:0e:30:90:56: 03:1e:11:99:c4:50:f7:68:ba:6d:24:32:1e:f6:7d: 04:77:84:62:f9:77:be:70:f2:c6:d1:4d:cc:93:ca: 65:89:d5:b2:3a:d1:aa:b2:b6:f6:6e:2f:ec:ce:c4: 98:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EF:7A:A6:B5:DD:62:9B:DC:BA:89:3A:2F:EA:47:13:9B:92:43:7C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b600::/40 Signature Algorithm: sha256WithRSAEncryption 6b:05:9c:07:3d:3f:43:44:b0:6b:20:ac:3d:8a:09:30:2b:7d: f1:bc:1b:15:a8:98:2f:b1:0a:59:55:83:90:c1:cc:f0:f9:b8: 6a:df:86:21:df:1d:39:a2:6a:4d:ef:be:0d:34:02:dd:32:40: 9a:37:29:32:b9:cb:60:37:2b:20:bc:13:dc:67:b6:a8:cc:5e: e8:db:2f:83:8e:b6:64:12:f4:ba:14:91:69:0d:26:cd:ac:39: 76:05:1d:e7:f0:18:4e:19:3e:c5:8e:f3:e4:0c:17:01:03:cd: 24:dc:7a:7f:31:7d:fb:ab:8f:e2:70:39:84:71:b9:3e:c2:bd: 15:a6:06:4f:ba:51:e1:65:1f:0d:8f:dd:06:06:3a:a5:e1:11: e5:46:fb:ea:f5:c4:65:bc:9e:76:83:06:9a:67:1d:bb:80:00: ce:6f:6a:4a:cd:ed:68:28:c0:d9:38:10:ca:da:36:f0:2b:78: 7d:b0:d7:cd:82:5e:94:b6:ce:d8:b2:9b:b5:0b:49:b7:4c:8e: f5:de:6c:f4:c4:e7:44:fe:a8:d1:0b:5e:ad:47:4f:86:e8:d1: 91:58:5d:0c:d0:65:60:32:e1:02:fa:33:a4:db:55:b7:f9:d6: d2:52:0b:2f:11:3c:92:48:d0:ef:84:1d:03:b9:9f:96:72:0c: bc:36:ed:33 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURRTkOB4uf9+c1XdtKtGV7fZVhyYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTlaFw0yNzA2MDQwNzEyMTlaMDMxMTAvBgNV BAMTKDdBRUY3QUE2QjVERDYyOUJEQ0JBODkzQTJGRUE0NzEzOUI5MjQzN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrpunft0YIU1K7RvyZ94m/A8So PLRBvtQCdrD0EJukmrdNXOPIS6iSFpJbYuT3sI5kV2oOQhJ9I1vSAdr9c9PPg15e PqBvRK/O0zH5VXaVN1GwscLmsL7u3MKqKn02dhAGoVN18UZhyIVOHpYa5amfMZz2 iqXVgvD0SajX1KmE6bRE5dznLdNw+7qllv0pxwuHjb5kyuNRwj4dpcTQ6G1nKNQj /6DF32aMM4/E4XKtxc1e/plX4AO7DF/DUpgtzU4lZdRQGOdypJn9HCgADjCQVgMe EZnEUPdoum0kMh72fQR3hGL5d75w8sbRTcyTymWJ1bI60aqytvZuL+zOxJgtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUeu96prXdYpvcuok6L+pHE5uSQ3wwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLYwDQYJKoZIhvcNAQELBQADggEBAGsF nAc9P0NEsGsgrD2KCTArffG8GxWomC+xCllVg5DBzPD5uGrfhiHfHTmiak3vvg00 At0yQJo3KTK5y2A3KyC8E9xntqjMXujbL4OOtmQS9LoUkWkNJs2sOXYFHefwGE4Z PsWO8+QMFwEDzSTcen8xffurj+JwOYRxuT7CvRWmBk+6UeFlHw2P3QYGOqXhEeVG ++r1xGW8nnaDBppnHbuAAM5vakrN7WgowNk4EMraNvAreH2w182CXpS2ztiym7UL SbdMjvXebPTE50T+qNELXq1HT4bo0ZFYXQzQZWAy4QL6M6TbVbf51tJSCy8RPJJI 0O+EHQO5n5ZyDLw27TM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:13 2026 by rpki-client