$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200890.roa File: AS200890.roa (raw, json) Hash identifier: LefwP0GvuFAUHf9h5X6IRSg1YPtZzUMyh5XTQowTC+s= Subject key identifier: 5B:A6:FE:DF:B3:EE:A7:C2:44:BC:B8:A0:08:42:A7:A0:06:D6:C5:F1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 70311B5E1F6C615ABD7C87300257B41AC4E680BA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200890.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 200890 IP address blocks: 2a0a:6040:d400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:31:1b:5e:1f:6c:61:5a:bd:7c:87:30:02:57:b4:1a:c4:e6:80:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=5BA6FEDFB3EEA7C244BCB8A00842A7A006D6C5F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bf:5a:ce:df:25:23:58:18:c0:40:29:09:ce: 1d:7b:8a:63:29:40:ce:6e:67:85:fb:a6:2f:0e:8d: a5:3d:48:4b:de:2b:2d:a5:51:1b:5b:9e:e9:14:84: 49:11:70:4c:15:4a:f9:a5:2b:d1:89:77:62:c1:32: 73:51:1b:cf:db:82:5d:d2:1a:1a:07:01:3d:e5:0b: 1c:4a:88:81:a4:2a:e0:59:d4:e2:c8:76:e2:f3:50: 1a:27:45:c5:eb:c4:d0:29:e0:f0:71:cf:47:80:37: 79:59:52:ea:58:e1:24:58:36:ee:65:3b:f6:92:03: 9a:bd:7a:74:dc:cc:e7:2c:91:ed:48:af:cd:bd:77: e5:f0:df:12:37:b0:5c:a7:c4:d4:ab:9d:d3:28:c4: 85:15:3b:e1:1d:d3:b6:82:e7:5a:23:97:85:42:0f: fb:b2:56:10:c2:88:e8:e3:e1:e1:c6:2e:95:c8:87: c8:2e:96:fc:fc:d4:a2:39:5a:5b:b8:4d:35:32:cf: bc:c5:4f:64:e1:14:7b:a0:07:78:1d:39:9d:5c:26: 37:f7:61:bf:9d:ce:a7:e6:c0:46:e6:2b:3a:46:75: 1e:68:f5:c7:9d:00:df:45:2b:f7:f2:d2:fb:f8:f6: 1a:ac:89:87:7f:8d:3d:7f:8d:7b:ed:82:87:34:ea: 1c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A6:FE:DF:B3:EE:A7:C2:44:BC:B8:A0:08:42:A7:A0:06:D6:C5:F1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200890.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d400::/40 Signature Algorithm: sha256WithRSAEncryption 3e:d0:e2:b9:bb:3f:dc:64:18:bf:e7:27:da:06:a3:18:fa:84: d8:fb:41:2b:2e:67:2b:17:2b:77:79:3e:c1:db:f2:d7:d9:64: 2b:b6:c3:64:e4:a7:38:09:37:f1:ee:3b:a3:df:79:25:d2:41: f0:c8:9b:0a:c4:dc:10:78:40:be:e1:79:d7:92:93:d5:3d:96: 00:88:70:a3:f6:05:b9:01:3c:6c:6d:6e:9a:dc:82:e2:cf:3a: 2b:79:77:08:df:a5:fc:b3:3a:97:2e:8e:f3:3c:77:11:6b:aa: 9a:2b:b8:fe:c4:39:f0:aa:a8:0c:16:47:6f:dc:ee:0a:b6:6a: 47:25:bf:30:13:38:1d:95:f9:2b:e8:fc:aa:91:be:13:d8:7e: af:a4:60:2f:ff:9d:e2:a3:c9:ad:86:46:ea:a7:f5:30:0e:5d: ea:0c:53:ab:9f:d6:0c:f9:44:6a:7a:34:1a:dd:13:19:da:5c: 0f:39:40:51:19:21:a6:18:24:52:b5:cc:77:b4:b7:91:bb:f9: 95:c3:1d:01:d7:a6:cd:01:be:c5:e2:1b:82:46:76:c3:50:4c: 44:a9:ec:b9:a8:52:8a:c3:ae:bc:22:3f:29:3d:66:bf:44:8d: f9:e5:ee:8e:43:18:29:0a:df:09:6b:06:13:0f:e3:ee:49:b1: 8d:9f:c6:8b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcDEbXh9sYVq9fIcwAle0GsTmgLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKDVCQTZGRURGQjNFRUE3QzI0NEJDQjhBMDA4NDJBN0EwMDZENkM1RjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9v1rO3yUjWBjAQCkJzh17imMp QM5uZ4X7pi8OjaU9SEveKy2lURtbnukUhEkRcEwVSvmlK9GJd2LBMnNRG8/bgl3S GhoHAT3lCxxKiIGkKuBZ1OLIduLzUBonRcXrxNAp4PBxz0eAN3lZUupY4SRYNu5l O/aSA5q9enTczOcske1Ir829d+Xw3xI3sFynxNSrndMoxIUVO+Ed07aC51ojl4VC D/uyVhDCiOjj4eHGLpXIh8gulvz81KI5Wlu4TTUyz7zFT2ThFHugB3gdOZ1cJjf3 Yb+dzqfmwEbmKzpGdR5o9cedAN9FK/fy0vv49hqsiYd/jT1/jXvtgoc06hzHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUW6b+37Pup8JEvLigCEKnoAbWxfEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwODkwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNQwDQYJKoZIhvcNAQELBQADggEBAD7Q 4rm7P9xkGL/nJ9oGoxj6hNj7QSsuZysXK3d5PsHb8tfZZCu2w2TkpzgJN/HuO6Pf eSXSQfDImwrE3BB4QL7hedeSk9U9lgCIcKP2BbkBPGxtbprcguLPOit5dwjfpfyz OpcujvM8dxFrqporuP7EOfCqqAwWR2/c7gq2akclvzATOB2V+Svo/KqRvhPYfq+k YC//neKjya2GRuqn9TAOXeoMU6uf1gz5RGp6NBrdExnaXA85QFEZIaYYJFK1zHe0 t5G7+ZXDHQHXps0BvsXiG4JGdsNQTESp7LmoUorDrrwiPyk9Zr9Ejfnl7o5DGCkK 3wlrBhMP4+5JsY2fxos= -----END CERTIFICATE-----Generated at Wed Nov 5 11:33:42 2025 by rpki-client