$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200890.roa File: AS200890.roa (raw, json) Hash identifier: VKv4wk4XS7LauM3S2sXkC1WFCtdySowa9HJi1SxfVrk= Subject key identifier: B9:1F:43:40:49:1C:20:99:83:CD:1A:16:1E:81:35:10:72:7E:23:7B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4209C97CB64E98747EAE0A04DE998AC1D2BEFA62 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200890.roa Signing time: Fri 05 Jun 2026 07:12:16 +0000 ROA not before: Fri 05 Jun 2026 07:07:16 +0000 ROA not after: Fri 04 Jun 2027 07:12:16 +0000 asID: 200890 IP address blocks: 2a0a:6040:d400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:09:c9:7c:b6:4e:98:74:7e:ae:0a:04:de:99:8a:c1:d2:be:fa:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:16 2026 GMT Not After : Jun 4 07:12:16 2027 GMT Subject: CN=B91F4340491C209983CD1A161E813510727E237B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ad:31:3f:e0:c5:97:31:85:cf:e4:c8:8f:d6: e4:4f:f3:62:d8:f7:83:d6:6d:48:bf:5a:84:d2:14: 30:64:c6:51:12:2a:fc:39:16:63:24:b6:ac:1d:65: 83:d8:34:cb:0a:78:38:70:24:94:b0:7f:6a:41:ad: 4a:98:0c:54:f0:94:a4:36:ba:d9:51:4b:a6:42:e0: e5:00:f1:e6:cd:a6:e9:78:d4:90:1d:2d:90:1f:4f: 96:16:f3:28:08:ce:17:ca:6e:e3:c1:de:c1:1b:45: 2d:8e:f9:09:0a:66:16:4b:ba:8c:e3:cc:ce:7e:28: 9b:6a:7a:a6:84:47:97:ad:c4:53:a4:6c:ae:7d:3e: 95:d7:50:65:06:c1:c8:cb:98:7b:2d:b3:fd:a1:7a: 7b:72:51:52:54:3b:c3:71:69:21:b6:46:3a:3f:e1: 28:f8:dd:15:54:15:77:57:9a:c0:0a:5c:a9:60:25: 1a:f5:83:34:f9:fd:ba:a1:71:6c:12:24:73:d0:25: 1d:b9:4a:f5:c5:5c:fa:f9:a4:96:75:e3:54:bd:4c: a1:a3:34:00:fb:3a:32:b7:af:29:72:40:10:b9:cf: 68:a6:39:dc:f9:71:e8:9c:a9:15:fe:77:5a:92:71: ba:be:af:84:a4:d5:b8:74:cf:d9:07:71:e7:34:9f: 09:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:1F:43:40:49:1C:20:99:83:CD:1A:16:1E:81:35:10:72:7E:23:7B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d400::/40 Signature Algorithm: sha256WithRSAEncryption 8c:e7:57:96:d8:2f:8c:10:78:cb:50:dc:4a:dd:e1:7c:d2:eb: 5f:db:d9:aa:c9:8d:ce:4a:24:c5:72:0f:01:59:dc:d9:5c:2a: 17:87:58:74:01:68:06:d4:c8:c9:eb:3d:95:d0:8b:79:09:e5: 7a:69:66:97:a2:94:4e:b0:fd:a0:30:b3:1d:e3:15:05:02:b7: ce:e4:0a:2f:a7:47:40:7c:31:a3:ed:fe:de:a7:27:ae:db:8a: af:91:30:d5:92:bf:88:c5:10:8b:a4:f8:bd:6b:6c:7c:86:72: e1:a3:04:ff:ba:6c:b7:b2:d1:3e:30:b6:cb:df:13:01:59:1f: 30:86:b5:b9:50:cb:50:40:d8:21:fe:6b:e8:33:90:a8:c6:98: a4:2e:18:b1:95:04:3e:12:29:ea:00:74:a7:5f:a2:ca:f3:a8: 21:6f:72:be:e5:6b:4a:79:e6:be:70:b0:e6:03:59:4b:74:08: 02:8f:87:99:d1:72:47:f1:50:82:59:65:0a:2f:56:fd:33:77: 27:b5:47:f1:c2:6c:08:12:22:52:56:a2:69:9a:4d:78:04:fa: 7e:16:c0:a5:48:34:e1:af:9c:ad:f3:d2:e0:3b:7e:14:48:2b: 2f:c0:85:cc:cf:99:80:ae:50:75:8c:3f:96:8b:a2:a5:b6:b8: 51:4e:88:d5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQgnJfLZOmHR+rgoE3pmKwdK++mIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTZaFw0yNzA2MDQwNzEyMTZaMDMxMTAvBgNV BAMTKEI5MUY0MzQwNDkxQzIwOTk4M0NEMUExNjFFODEzNTEwNzI3RTIzN0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcrTE/4MWXMYXP5MiP1uRP82LY 94PWbUi/WoTSFDBkxlESKvw5FmMktqwdZYPYNMsKeDhwJJSwf2pBrUqYDFTwlKQ2 utlRS6ZC4OUA8ebNpul41JAdLZAfT5YW8ygIzhfKbuPB3sEbRS2O+QkKZhZLuozj zM5+KJtqeqaER5etxFOkbK59PpXXUGUGwcjLmHsts/2hentyUVJUO8NxaSG2Rjo/ 4Sj43RVUFXdXmsAKXKlgJRr1gzT5/bqhcWwSJHPQJR25SvXFXPr5pJZ141S9TKGj NAD7OjK3rylyQBC5z2imOdz5ceicqRX+d1qScbq+r4Sk1bh0z9kHcec0nwkrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUuR9DQEkcIJmDzRoWHoE1EHJ+I3swHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODkwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNQwDQYJKoZIhvcNAQELBQADggEBAIzn V5bYL4wQeMtQ3Erd4XzS61/b2arJjc5KJMVyDwFZ3NlcKheHWHQBaAbUyMnrPZXQ i3kJ5XppZpeilE6w/aAwsx3jFQUCt87kCi+nR0B8MaPt/t6nJ67biq+RMNWSv4jF EIuk+L1rbHyGcuGjBP+6bLey0T4wtsvfEwFZHzCGtblQy1BA2CH+a+gzkKjGmKQu GLGVBD4SKeoAdKdfosrzqCFvcr7la0p55r5wsOYDWUt0CAKPh5nRckfxUIJZZQov Vv0zdye1R/HCbAgSIlJWommaTXgE+n4WwKVINOGvnK3z0uA7fhRIKy/AhczPmYCu UHWMP5aLoqW2uFFOiNU= -----END CERTIFICATE-----Generated at Sat Jun 13 10:22:56 2026 by rpki-client