$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200800.roa File: AS200800.roa (raw, json) Hash identifier: dXYy7dtelHfMtfndsRQvcAzrdP2k4fS6fnYaTxREbwQ= Subject key identifier: AE:9B:33:99:C7:48:FC:E5:21:FD:5E:52:57:89:34:06:16:A0:D6:40 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 44BD6D3B1FC25E84EE078AB91F9F695DE4C65222 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200800.roa Signing time: Fri 05 Jun 2026 07:12:12 +0000 ROA not before: Fri 05 Jun 2026 07:07:12 +0000 ROA not after: Fri 04 Jun 2027 07:12:12 +0000 asID: 200800 IP address blocks: 2a0a:6040:a200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bd:6d:3b:1f:c2:5e:84:ee:07:8a:b9:1f:9f:69:5d:e4:c6:52:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:12 2026 GMT Not After : Jun 4 07:12:12 2027 GMT Subject: CN=AE9B3399C748FCE521FD5E525789340616A0D640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b2:ca:86:ed:17:b4:5d:a6:12:c0:b5:99:b7: 53:3a:4e:d1:7d:b8:82:67:a1:aa:97:fd:55:be:78: f9:95:53:96:61:78:e5:12:8d:a4:46:1d:89:e9:54: 92:92:3d:c7:52:76:4e:3b:73:e9:1f:76:4f:5b:cb: 2b:6a:06:fc:a2:bc:eb:1d:40:42:22:81:3c:22:d8: 0a:a9:e1:21:0e:95:aa:34:a0:89:c0:ae:ff:a8:e4: 56:fd:ed:c7:50:44:d4:71:21:1f:6d:2b:7c:f5:04: 13:ec:e6:eb:a7:9b:81:dd:13:12:0a:0d:88:b0:2d: 40:7e:4a:03:bd:d8:78:ec:86:9b:4b:95:6e:68:97: 8b:a8:ac:2b:cc:03:35:54:dd:38:95:65:18:38:d9: 0b:ce:d0:f2:02:76:4d:53:45:65:31:da:67:ba:63: 08:be:f0:db:8b:a0:ce:2c:67:e2:6e:0d:5e:0e:44: a3:41:0b:61:bd:86:a2:40:cc:42:6f:be:83:0f:a5: 71:22:66:42:b5:8e:16:20:8e:07:69:18:c7:32:de: e5:62:83:d1:57:5b:b9:6f:0d:92:a8:4d:20:c6:01: db:f9:de:a5:1f:ef:c3:f4:49:1b:2c:fc:dc:ef:e2: 80:97:8f:ff:42:db:9e:20:24:6f:a4:13:0a:f0:e5: 03:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:9B:33:99:C7:48:FC:E5:21:FD:5E:52:57:89:34:06:16:A0:D6:40 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200800.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a200::/40 Signature Algorithm: sha256WithRSAEncryption 7a:7b:be:a9:26:37:ac:9d:48:61:d4:9a:e6:8a:b0:af:bb:7a: e1:be:d6:6d:8f:5f:e6:42:de:f0:ee:0b:02:98:1f:9a:3a:a4: a2:ee:f2:ff:0b:26:35:86:de:86:9f:35:ab:32:d4:ed:d8:ea: 66:f2:76:ea:b9:c9:22:91:ea:c2:57:c7:75:bc:13:a9:39:a0: 30:4b:03:b3:38:f0:f3:fd:3d:ad:6d:05:d1:4c:40:80:69:5d: a8:23:2c:0c:96:e4:02:a8:38:96:b8:6b:8d:81:28:3c:42:06: bf:f3:bb:d5:3f:79:7e:85:cd:2f:a7:3d:eb:c7:06:2c:85:bf: 24:ea:41:53:c3:bc:fb:63:b6:07:c3:24:70:f4:43:c7:1f:7b: 2c:8a:81:49:6a:2d:cf:2a:7e:4b:bd:5a:44:58:43:fe:99:af: 01:e1:7c:8c:23:a7:65:42:39:20:c0:4a:b2:17:00:51:14:9d: 29:99:c7:53:90:1a:e3:da:65:3e:00:3f:a0:6a:98:68:97:bb: c8:86:25:1a:1a:2b:f2:74:c0:63:7c:86:a3:f2:00:fe:e2:f0: d5:57:c4:92:96:ae:23:fe:d7:44:6f:7b:77:e7:4e:65:26:99: 65:dc:f5:60:95:c6:7b:4d:84:09:b2:e2:7e:ba:4d:0c:c1:1b: 06:92:24:ae -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURL1tOx/CXoTuB4q5H59pXeTGUiIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTJaFw0yNzA2MDQwNzEyMTJaMDMxMTAvBgNV BAMTKEFFOUIzMzk5Qzc0OEZDRTUyMUZENUU1MjU3ODkzNDA2MTZBMEQ2NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzssqG7Re0XaYSwLWZt1M6TtF9 uIJnoaqX/VW+ePmVU5ZheOUSjaRGHYnpVJKSPcdSdk47c+kfdk9byytqBvyivOsd QEIigTwi2Aqp4SEOlao0oInArv+o5Fb97cdQRNRxIR9tK3z1BBPs5uunm4HdExIK DYiwLUB+SgO92HjshptLlW5ol4uorCvMAzVU3TiVZRg42QvO0PICdk1TRWUx2me6 Ywi+8NuLoM4sZ+JuDV4ORKNBC2G9hqJAzEJvvoMPpXEiZkK1jhYgjgdpGMcy3uVi g9FXW7lvDZKoTSDGAdv53qUf78P0SRss/Nzv4oCXj/9C254gJG+kEwrw5QOBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrpszmcdI/OUh/V5SV4k0Bhag1kAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODAwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKIwDQYJKoZIhvcNAQELBQADggEBAHp7 vqkmN6ydSGHUmuaKsK+7euG+1m2PX+ZC3vDuCwKYH5o6pKLu8v8LJjWG3oafNasy 1O3Y6mbyduq5ySKR6sJXx3W8E6k5oDBLA7M48PP9Pa1tBdFMQIBpXagjLAyW5AKo OJa4a42BKDxCBr/zu9U/eX6FzS+nPevHBiyFvyTqQVPDvPtjtgfDJHD0Q8cfeyyK gUlqLc8qfku9WkRYQ/6ZrwHhfIwjp2VCOSDASrIXAFEUnSmZx1OQGuPaZT4AP6Bq mGiXu8iGJRoaK/J0wGN8hqPyAP7i8NVXxJKWriP+10Rve3fnTmUmmWXc9WCVxntN hAmy4n66TQzBGwaSJK4= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:07 2026 by rpki-client