$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200800.roa File: AS200800.roa (raw, json) Hash identifier: J058m6whpWqf4bVIb3H6XU99p781v2hlYhanG9LB+js= Subject key identifier: C5:1A:10:6C:7D:9C:6F:14:CB:D9:22:1A:3F:EE:E8:27:0F:10:29:73 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 52778D06108018901F06ED2ACDC8E18607EF2639 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200800.roa Signing time: Fri 04 Jul 2025 06:53:07 +0000 ROA not before: Fri 04 Jul 2025 06:48:07 +0000 ROA not after: Fri 03 Jul 2026 06:53:07 +0000 asID: 200800 IP address blocks: 2a0a:6040:a200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:77:8d:06:10:80:18:90:1f:06:ed:2a:cd:c8:e1:86:07:ef:26:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:07 2025 GMT Not After : Jul 3 06:53:07 2026 GMT Subject: CN=C51A106C7D9C6F14CBD9221A3FEEE8270F102973 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e3:ec:ee:92:ce:a3:77:3d:8b:bf:ad:c8:62: ea:aa:f9:e9:60:bf:ff:3a:96:43:30:44:28:c1:9b: 07:40:23:e9:23:84:b4:97:e1:12:0d:0d:89:c5:38: 85:fd:f3:df:bc:97:a6:6e:e1:e5:dd:ce:fe:2c:ab: 6c:8c:e4:ca:6c:3a:d9:d5:17:a5:22:7b:ac:f9:8b: f6:4c:60:53:20:46:19:37:ae:4b:6e:9e:39:30:de: 06:f4:ec:bf:a0:e8:5e:a4:09:b8:3c:91:d4:6a:e0: 2c:f6:8f:6a:cb:93:15:61:7c:85:17:6b:ff:76:eb: a4:48:73:4a:ef:84:a6:9d:ac:7f:c5:8c:13:80:f7: e5:eb:fc:13:0f:34:3e:bf:a3:9a:d2:26:6e:14:e1: e8:cd:36:b8:c2:3e:fd:51:d5:3a:6e:80:7e:6e:a6: cc:96:9f:62:11:94:c1:cf:d2:47:6a:42:47:06:54: 20:fe:f0:ad:4c:14:46:5e:5f:e3:37:c8:80:3f:47: 2f:cc:6f:11:80:d9:77:25:79:25:07:8a:98:19:d1: 2c:4b:ac:40:4e:6a:07:b5:e6:e4:07:8c:a0:1e:24: f6:4a:03:b8:ce:e7:a1:36:4a:24:cd:df:4e:b4:7e: 63:04:6f:5e:99:02:5a:fd:a3:d5:a1:c2:47:e7:aa: f8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:1A:10:6C:7D:9C:6F:14:CB:D9:22:1A:3F:EE:E8:27:0F:10:29:73 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200800.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a200::/40 Signature Algorithm: sha256WithRSAEncryption 3f:63:8a:c8:fb:ee:0a:72:4e:d7:67:cc:7d:80:b1:0c:04:5b: 87:b3:ee:54:c0:19:80:a6:8c:1f:21:d1:0e:62:1a:77:9c:7c: 01:8e:3e:7a:72:ce:82:11:aa:c4:44:0b:91:cb:2f:d7:a7:b4: a7:d7:17:f0:22:02:e1:51:6f:e6:8b:1f:14:a6:01:6d:8e:2f: 57:c9:d9:64:d9:87:eb:92:a8:e5:4e:58:ae:1a:6d:b4:f5:61: 92:9d:12:9d:59:b7:21:8a:81:6d:59:12:92:f8:4c:4b:a5:55: 5b:42:a5:af:26:10:58:4f:f8:ae:73:0c:9a:61:28:49:4c:6c: cb:50:c2:bd:f5:ab:8a:e7:bc:72:19:9b:6f:b8:65:a2:40:e8: 65:fc:58:c5:3b:46:87:6f:b4:b5:99:e0:bc:c7:7e:d0:14:ed: 53:10:05:ea:69:83:de:bc:1b:d0:78:b2:c2:ce:dc:1b:dc:83: 7e:c3:e2:45:43:0a:4a:54:5e:7c:48:d5:12:a6:b4:14:af:1c: fd:09:a5:91:fb:b5:76:57:41:55:a7:bb:61:78:c3:6a:b9:54: f3:24:6f:63:ba:88:32:3f:b9:2c:d3:c0:73:4e:da:03:65:10: ea:91:b3:52:25:c7:55:03:fa:94:83:ee:74:ab:51:52:8e:25: e2:2e:4d:58 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUneNBhCAGJAfBu0qzcjhhgfvJjkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDdaFw0yNjA3MDMwNjUzMDdaMDMxMTAvBgNV BAMTKEM1MUExMDZDN0Q5QzZGMTRDQkQ5MjIxQTNGRUVFODI3MEYxMDI5NzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz4+zuks6jdz2Lv63IYuqq+elg v/86lkMwRCjBmwdAI+kjhLSX4RINDYnFOIX989+8l6Zu4eXdzv4sq2yM5MpsOtnV F6Uie6z5i/ZMYFMgRhk3rktunjkw3gb07L+g6F6kCbg8kdRq4Cz2j2rLkxVhfIUX a/9266RIc0rvhKadrH/FjBOA9+Xr/BMPND6/o5rSJm4U4ejNNrjCPv1R1TpugH5u psyWn2IRlMHP0kdqQkcGVCD+8K1MFEZeX+M3yIA/Ry/MbxGA2XcleSUHipgZ0SxL rEBOage15uQHjKAeJPZKA7jO56E2SiTN3060fmMEb16ZAlr9o9WhwkfnqvhPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxRoQbH2cbxTL2SIaP+7oJw8QKXMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKIwDQYJKoZIhvcNAQELBQADggEBAD9j isj77gpyTtdnzH2AsQwEW4ez7lTAGYCmjB8h0Q5iGnecfAGOPnpyzoIRqsREC5HL L9entKfXF/AiAuFRb+aLHxSmAW2OL1fJ2WTZh+uSqOVOWK4abbT1YZKdEp1ZtyGK gW1ZEpL4TEulVVtCpa8mEFhP+K5zDJphKElMbMtQwr31q4rnvHIZm2+4ZaJA6GX8 WMU7RodvtLWZ4LzHftAU7VMQBeppg968G9B4ssLO3Bvcg37D4kVDCkpUXnxI1RKm tBSvHP0JpZH7tXZXQVWnu2F4w2q5VPMkb2O6iDI/uSzTwHNO2gNlEOqRs1Ilx1UD +pSD7nSrUVKOJeIuTVg= -----END CERTIFICATE-----Generated at Wed Nov 5 20:32:33 2025 by rpki-client