$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200912.roa File: AS200912.roa (raw, json) Hash identifier: QLR57MkAQNMAOdLKxe1fE3mO3nltkc6TINGx47Aemmk= Subject key identifier: 1A:86:19:FD:E1:32:94:8B:E1:93:15:32:43:EF:38:46:BD:68:C1:E4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 547866F62FE23FC596C19E5183A91DE05D0F5CE0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200912.roa Signing time: Fri 05 Jun 2026 07:12:28 +0000 ROA not before: Fri 05 Jun 2026 07:07:28 +0000 ROA not after: Fri 04 Jun 2027 07:12:28 +0000 asID: 200912 IP address blocks: 2a0a:6040:e400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:78:66:f6:2f:e2:3f:c5:96:c1:9e:51:83:a9:1d:e0:5d:0f:5c:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:28 2026 GMT Not After : Jun 4 07:12:28 2027 GMT Subject: CN=1A8619FDE132948BE193153243EF3846BD68C1E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:dd:87:55:e1:76:6d:21:f3:56:08:da:5f:73: c0:f8:b6:1f:c4:80:10:9b:10:aa:dc:ee:67:d3:13: 31:7c:d0:d2:2e:dd:77:00:73:52:70:5f:59:e9:c1: 7a:f2:d0:6e:7f:52:82:1e:6b:c9:e9:40:66:0b:79: e9:f0:29:1f:15:b6:b3:7a:0b:37:68:11:c7:ed:6b: 13:f8:77:bc:72:2c:a1:5a:9b:77:bc:65:b7:c1:58: 00:cc:19:0f:65:f8:2b:05:42:39:c7:87:55:2d:46: 0a:5b:b2:2d:3e:52:f0:58:10:fe:22:21:4c:ec:a4: 9d:fe:06:be:b1:ad:40:79:3f:b6:26:1a:ab:2f:5a: 3f:4b:b0:b8:92:4b:2d:32:6e:87:fc:5f:cb:a0:ae: 4d:55:24:7c:3f:61:f1:c6:12:24:7b:78:91:8d:87: 75:1f:07:7a:40:0d:be:bc:ac:01:f1:2e:51:f9:a7: 3c:a4:4b:67:e9:cf:4d:fe:d4:92:9d:de:b2:6c:6d: 91:c1:4e:d4:2c:1b:b4:0f:34:37:9b:8d:f5:08:34: 28:ab:d9:07:45:3a:80:8f:17:79:fa:7f:b5:c3:85: e0:e3:d5:42:46:82:33:1f:0f:d2:70:99:71:cc:8a: 27:d4:a5:53:63:2a:6f:3d:fb:fc:1f:bd:13:f3:43: 73:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:86:19:FD:E1:32:94:8B:E1:93:15:32:43:EF:38:46:BD:68:C1:E4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200912.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e400::/40 Signature Algorithm: sha256WithRSAEncryption 0a:43:91:23:92:a1:af:8d:03:a6:2e:cf:dc:08:e9:0f:64:e3: 71:21:29:71:65:0b:2f:d5:9e:d5:d9:0e:0e:0a:4f:a8:5e:da: be:c8:dc:76:85:3b:0d:c2:f5:59:5f:1e:24:3e:09:6b:42:12: 8c:18:e6:bf:dc:27:ee:62:b8:91:5b:62:14:24:6b:4e:13:35: 83:f7:d3:b6:30:13:ff:a7:e0:d9:3b:16:d4:f9:9a:03:d6:38: 27:e8:26:a0:e3:72:0f:79:2d:fd:89:80:e0:65:f0:ea:75:71: 0d:f0:ea:0e:13:6f:46:77:2e:46:06:d4:9c:af:08:1c:74:71: 58:19:cb:1f:da:ed:d7:6a:41:35:a9:9d:85:17:1e:91:d9:07: 64:e9:e2:c1:cb:01:80:f0:51:ea:04:30:b2:d6:dc:b9:cb:a3: f3:e7:c8:b7:53:be:d8:7f:e2:d6:bf:a4:a2:c5:f7:51:c0:37: 65:c1:88:e8:a4:29:fa:06:3e:c2:3d:76:19:cf:3f:30:20:c0: e2:fa:22:92:30:d8:5c:b2:b1:2e:5c:c1:28:80:6e:4c:be:87: 48:47:b7:f4:ac:fb:65:2d:0c:6a:4f:76:a9:e7:71:56:96:05: 5b:31:c7:f9:57:e8:e5:be:14:0b:ad:c5:48:98:85:89:65:85: 8e:a1:03:35 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVHhm9i/iP8WWwZ5Rg6kd4F0PXOAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjhaFw0yNzA2MDQwNzEyMjhaMDMxMTAvBgNV BAMTKDFBODYxOUZERTEzMjk0OEJFMTkzMTUzMjQzRUYzODQ2QkQ2OEMxRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC73YdV4XZtIfNWCNpfc8D4th/E gBCbEKrc7mfTEzF80NIu3XcAc1JwX1npwXry0G5/UoIea8npQGYLeenwKR8VtrN6 CzdoEcftaxP4d7xyLKFam3e8ZbfBWADMGQ9l+CsFQjnHh1UtRgpbsi0+UvBYEP4i IUzspJ3+Br6xrUB5P7YmGqsvWj9LsLiSSy0ybof8X8ugrk1VJHw/YfHGEiR7eJGN h3UfB3pADb68rAHxLlH5pzykS2fpz03+1JKd3rJsbZHBTtQsG7QPNDebjfUINCir 2QdFOoCPF3n6f7XDheDj1UJGgjMfD9JwmXHMiifUpVNjKm89+/wfvRPzQ3MpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUGoYZ/eEylIvhkxUyQ+84Rr1oweQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOQwDQYJKoZIhvcNAQELBQADggEBAApD kSOSoa+NA6Yuz9wI6Q9k43EhKXFlCy/VntXZDg4KT6he2r7I3HaFOw3C9VlfHiQ+ CWtCEowY5r/cJ+5iuJFbYhQka04TNYP307YwE/+n4Nk7FtT5mgPWOCfoJqDjcg95 Lf2JgOBl8Op1cQ3w6g4Tb0Z3LkYG1JyvCBx0cVgZyx/a7ddqQTWpnYUXHpHZB2Tp 4sHLAYDwUeoEMLLW3LnLo/PnyLdTvth/4ta/pKLF91HAN2XBiOikKfoGPsI9dhnP PzAgwOL6IpIw2FyysS5cwSiAbky+h0hHt/Ss+2UtDGpPdqnncVaWBVsxx/lX6OW+ FAutxUiYhYllhY6hAzU= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:14 2026 by rpki-client