$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200912.roa File: AS200912.roa (raw, json) Hash identifier: Bv5JCoe5qKO6Ep6atvI+ZVVnCk7Xa1K+10l6+2oenBE= Subject key identifier: 7E:38:D0:FE:DE:6F:B7:11:9C:A5:BF:08:AC:96:29:6D:85:84:AA:C6 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7032B0C19C3377DD8238B3754DB32BA69D58C89D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200912.roa Signing time: Fri 04 Jul 2025 06:53:28 +0000 ROA not before: Fri 04 Jul 2025 06:48:28 +0000 ROA not after: Fri 03 Jul 2026 06:53:28 +0000 asID: 200912 IP address blocks: 2a0a:6040:e400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:32:b0:c1:9c:33:77:dd:82:38:b3:75:4d:b3:2b:a6:9d:58:c8:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:28 2025 GMT Not After : Jul 3 06:53:28 2026 GMT Subject: CN=7E38D0FEDE6FB7119CA5BF08AC96296D8584AAC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:24:41:48:af:1e:27:f8:09:2f:8a:04:18:ef: 5f:68:ac:79:62:6e:b1:d4:88:e6:2e:58:1a:53:c6: ec:2c:ce:4d:9e:90:b6:f3:9f:cb:a4:6f:54:45:83: ca:13:e7:1c:ec:5f:7f:5f:52:a4:3c:72:59:0e:9b: 8a:7c:7e:61:e7:41:88:38:e8:80:d1:a9:19:2e:83: d0:28:9b:ae:ab:29:ea:7b:12:f0:ee:84:c5:80:5a: a0:db:f1:50:97:2a:8c:78:37:83:14:7c:67:cb:d8: 9d:b2:ce:0f:d7:72:ef:75:a2:2d:28:bb:84:1d:b9: 6a:69:68:13:09:7f:7a:2e:32:57:6e:ac:05:0b:36: c1:48:33:7d:4f:20:52:91:fb:7b:8f:2c:4a:51:fd: 0a:e4:12:0d:da:49:cb:9d:b5:83:ef:13:37:b0:14: ae:df:36:91:61:ee:8c:3e:73:06:d0:01:09:21:fd: 05:f0:5f:7d:9f:18:9f:d0:75:53:04:68:8f:7b:f3: b5:ac:91:41:35:0c:c6:8f:33:bc:cb:da:12:a2:5a: 3a:7a:42:4d:37:d0:ac:d6:6c:37:73:de:1e:61:e2: d6:11:c6:06:a6:0c:25:97:1b:9a:4e:3d:00:05:13: 20:00:b9:13:0c:00:e2:26:15:65:42:21:cc:2b:f4: 03:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:38:D0:FE:DE:6F:B7:11:9C:A5:BF:08:AC:96:29:6D:85:84:AA:C6 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200912.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e400::/40 Signature Algorithm: sha256WithRSAEncryption 97:e8:fa:d5:27:b7:40:05:87:ee:e6:7b:42:b0:47:aa:74:37: db:a1:b8:14:24:62:ad:e2:e6:e0:9d:17:62:36:a9:66:ae:df: 77:1e:bb:c0:98:9d:09:46:c8:1e:5d:90:1c:c6:70:37:ed:f1: 73:24:5d:66:4d:f8:2a:76:4a:91:93:ef:68:ef:21:43:87:d9: 71:d6:8d:ab:43:f8:ad:5d:1e:50:34:b8:13:a7:91:88:da:ff: 65:b5:ca:91:8a:d5:d7:10:e9:cd:a7:e1:09:f9:39:cf:0b:13: 18:0b:9e:6a:3e:86:8b:ae:f3:db:a5:39:a5:33:c4:6b:22:f0: b3:a7:7d:5c:a1:43:6f:d5:1f:ec:c9:51:86:fc:f7:db:08:40: e3:d2:e6:ad:65:47:68:40:3d:c6:d6:5b:cb:d5:ff:55:ae:8d: 0c:27:e7:e2:ec:95:89:ce:6d:a4:c2:ed:93:2b:7b:99:c1:a6: 07:f0:6d:2b:d6:e9:a8:02:77:ba:9b:09:54:3b:ea:03:cd:4b: f9:07:e3:9e:80:ba:76:ef:3e:99:da:48:e7:92:fe:6c:43:ef: 8f:51:b7:89:f7:fb:23:77:0a:92:2c:b0:30:39:4b:41:dd:fc: 68:7d:bb:34:a5:7a:be:f6:51:96:9c:06:46:d4:61:91:60:95: d4:c0:69:c9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcDKwwZwzd92COLN1TbMrpp1YyJ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjhaFw0yNjA3MDMwNjUzMjhaMDMxMTAvBgNV BAMTKDdFMzhEMEZFREU2RkI3MTE5Q0E1QkYwOEFDOTYyOTZEODU4NEFBQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMJEFIrx4n+AkvigQY719orHli brHUiOYuWBpTxuwszk2ekLbzn8ukb1RFg8oT5xzsX39fUqQ8clkOm4p8fmHnQYg4 6IDRqRkug9Aom66rKep7EvDuhMWAWqDb8VCXKox4N4MUfGfL2J2yzg/Xcu91oi0o u4QduWppaBMJf3ouMldurAULNsFIM31PIFKR+3uPLEpR/QrkEg3aScudtYPvEzew FK7fNpFh7ow+cwbQAQkh/QXwX32fGJ/QdVMEaI9787WskUE1DMaPM7zL2hKiWjp6 Qk030KzWbDdz3h5h4tYRxgamDCWXG5pOPQAFEyAAuRMMAOImFWVCIcwr9APlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfjjQ/t5vtxGcpb8IrJYpbYWEqsYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOQwDQYJKoZIhvcNAQELBQADggEBAJfo +tUnt0AFh+7me0KwR6p0N9uhuBQkYq3i5uCdF2I2qWau33ceu8CYnQlGyB5dkBzG cDft8XMkXWZN+Cp2SpGT72jvIUOH2XHWjatD+K1dHlA0uBOnkYja/2W1ypGK1dcQ 6c2n4Qn5Oc8LExgLnmo+houu89ulOaUzxGsi8LOnfVyhQ2/VH+zJUYb899sIQOPS 5q1lR2hAPcbWW8vV/1WujQwn5+LslYnObaTC7ZMre5nBpgfwbSvW6agCd7qbCVQ7 6gPNS/kH456AunbvPpnaSOeS/mxD749Rt4n3+yN3CpIssDA5S0Hd/Gh9uzSler72 UZacBkbUYZFgldTAack= -----END CERTIFICATE-----Generated at Wed Nov 5 20:32:36 2025 by rpki-client