$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200789.roa File: AS200789.roa (raw, json) Hash identifier: ys922sR5NlvCaNuVaT/5UETEEbWLK1YBT+R7ajU4JpQ= Subject key identifier: 76:5A:18:3E:43:4C:29:93:64:2A:DC:4A:C6:9A:90:EA:26:60:75:CE Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0D11BD6CBB9B59C38399B58652FE7DC2343FC4DC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200789.roa Signing time: Fri 05 Jun 2026 07:12:26 +0000 ROA not before: Fri 05 Jun 2026 07:07:26 +0000 ROA not after: Fri 04 Jun 2027 07:12:26 +0000 asID: 200789 IP address blocks: 2a0a:6040:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:11:bd:6c:bb:9b:59:c3:83:99:b5:86:52:fe:7d:c2:34:3f:c4:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:26 2026 GMT Not After : Jun 4 07:12:26 2027 GMT Subject: CN=765A183E434C2993642ADC4AC69A90EA266075CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:fd:62:63:12:1b:da:e1:8b:66:68:4e:0e:e3: b2:3f:1c:93:05:ec:38:7d:98:f1:2b:30:36:2f:61: 25:18:69:c4:e6:db:6c:aa:cb:ba:0a:95:b3:90:06: 7e:b8:50:9d:ae:33:e5:dc:08:fc:63:1b:61:a8:9e: 5c:c9:ed:58:c2:f1:f8:43:f0:f3:cf:3a:cd:91:0e: b9:6f:cf:81:8d:32:c7:41:24:07:a7:a5:b3:b5:c7: 8e:f1:11:45:a2:3b:98:cb:34:35:7b:de:74:09:7d: 6a:b1:7e:c2:5b:96:9b:67:35:ba:5f:69:b0:58:33: 03:16:04:ac:62:ec:cd:a0:60:79:42:cf:45:cb:44: 3b:17:71:9a:dd:cf:d4:59:38:78:67:49:6f:12:cf: 64:be:ab:43:61:21:24:91:34:5a:51:ff:e5:15:b5: bb:b0:a2:7e:a0:c2:4c:24:2c:92:5e:88:cf:0f:63: 96:40:ae:b9:89:7d:d2:ae:c8:66:15:99:ef:2a:0d: 01:3d:66:23:a9:ac:0b:b0:e6:36:b6:63:4d:fc:41: 06:5c:63:52:63:b1:fe:3f:66:b7:7c:ff:e7:9b:43: 79:9e:c2:58:07:1e:15:f8:d8:d6:84:3f:6a:b5:13: cc:6a:a1:43:4c:82:81:1e:86:a1:01:e5:6f:81:00: f7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5A:18:3E:43:4C:29:93:64:2A:DC:4A:C6:9A:90:EA:26:60:75:CE X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200789.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b700::/40 Signature Algorithm: sha256WithRSAEncryption ea:f8:a9:cf:62:36:32:6c:f9:6a:68:01:da:39:61:18:94:9a: 0d:5f:0d:c6:7d:7e:bd:ae:93:34:38:6b:2c:2d:34:d8:13:52: 12:7d:c6:cb:49:7f:d9:6b:88:d1:94:dc:eb:cf:40:79:dc:cf: 5e:52:5b:bc:55:fb:64:f4:00:4d:78:b1:79:82:2f:38:30:8e: 86:7b:0d:c1:0e:7c:23:06:ab:33:af:4b:d8:42:05:c5:ae:0b: 82:83:a9:64:98:8f:ca:f1:b1:7b:59:42:32:bc:77:d3:d4:d5: 3a:be:34:76:6c:ef:de:4e:dc:62:19:5d:79:47:d2:f8:71:05: 38:d8:36:db:22:b3:e9:99:a9:4d:92:7a:53:07:7a:5f:15:d4: e2:1c:a2:98:e0:52:80:6b:36:24:f8:3b:84:e2:07:e4:82:86: 64:0b:1b:0b:9d:c9:57:dc:98:8e:7a:32:ec:3b:dc:b4:1f:45: cd:5d:cf:60:42:44:6c:67:c9:ce:00:8f:e9:4e:88:62:cd:32: f5:24:b6:e8:d2:50:16:12:7f:d4:38:74:f3:d1:24:6a:69:ce: 1b:03:9b:3e:e5:48:f5:24:98:f2:cd:ff:78:f5:48:7d:c6:3c: fc:68:39:a4:af:9e:ec:d4:37:4a:2f:d2:db:de:22:16:de:6a: 8c:4a:49:e4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDRG9bLubWcODmbWGUv59wjQ/xNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjZaFw0yNzA2MDQwNzEyMjZaMDMxMTAvBgNV BAMTKDc2NUExODNFNDM0QzI5OTM2NDJBREM0QUM2OUE5MEVBMjY2MDc1Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ/WJjEhva4YtmaE4O47I/HJMF 7Dh9mPErMDYvYSUYacTm22yqy7oKlbOQBn64UJ2uM+XcCPxjG2GonlzJ7VjC8fhD 8PPPOs2RDrlvz4GNMsdBJAenpbO1x47xEUWiO5jLNDV73nQJfWqxfsJblptnNbpf abBYMwMWBKxi7M2gYHlCz0XLRDsXcZrdz9RZOHhnSW8Sz2S+q0NhISSRNFpR/+UV tbuwon6gwkwkLJJeiM8PY5ZArrmJfdKuyGYVme8qDQE9ZiOprAuw5ja2Y038QQZc Y1Jjsf4/Zrd8/+ebQ3mewlgHHhX42NaEP2q1E8xqoUNMgoEehqEB5W+BAPdRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdloYPkNMKZNkKtxKxpqQ6iZgdc4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwNzg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLcwDQYJKoZIhvcNAQELBQADggEBAOr4 qc9iNjJs+WpoAdo5YRiUmg1fDcZ9fr2ukzQ4aywtNNgTUhJ9xstJf9lriNGU3OvP QHncz15SW7xV+2T0AE14sXmCLzgwjoZ7DcEOfCMGqzOvS9hCBcWuC4KDqWSYj8rx sXtZQjK8d9PU1Tq+NHZs795O3GIZXXlH0vhxBTjYNtsis+mZqU2SelMHel8V1OIc opjgUoBrNiT4O4TiB+SChmQLGwudyVfcmI56Muw73LQfRc1dz2BCRGxnyc4Aj+lO iGLNMvUktujSUBYSf9Q4dPPRJGppzhsDmz7lSPUkmPLN/3j1SH3GPPxoOaSvnuzU N0ov0tveIhbeaoxKSeQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:03 2026 by rpki-client