$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200968.roa File: AS200968.roa (raw, json) Hash identifier: mPG4jt/3VvgV2gQnFvXDSx5E76k3LyU8SQ2JOoVb33E= Subject key identifier: 09:30:2F:4A:C8:7F:F6:37:19:18:FA:A6:B8:BD:9E:96:24:47:7C:D6 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6BCA9502147A9FBB4B1252E6DE95E9EC38BA6D73 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200968.roa Signing time: Fri 05 Jun 2026 07:12:49 +0000 ROA not before: Fri 05 Jun 2026 07:07:49 +0000 ROA not after: Fri 04 Jun 2027 07:12:49 +0000 asID: 200968 IP address blocks: 2a0a:6040:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ca:95:02:14:7a:9f:bb:4b:12:52:e6:de:95:e9:ec:38:ba:6d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:49 2026 GMT Not After : Jun 4 07:12:49 2027 GMT Subject: CN=09302F4AC87FF6371918FAA6B8BD9E9624477CD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f4:b6:24:57:49:c1:72:ad:a9:89:da:f4:5b: 37:50:bd:68:54:70:e6:48:01:e7:55:43:cd:e6:37: 47:f9:73:37:16:11:55:99:ef:9b:02:76:2c:b7:8a: 19:92:db:cb:13:05:ef:55:1e:8e:e1:a1:41:c3:9e: 5a:61:f4:e2:e0:33:46:9d:df:24:22:76:ee:dc:57: 07:58:79:39:d4:47:7f:5c:66:5f:85:1c:41:05:41: 36:b3:1a:5a:ec:a4:a1:b2:3d:fb:36:7b:70:11:57: 47:75:26:69:3a:d1:af:19:65:43:7f:1c:da:43:58: 22:34:d1:62:6d:b0:b9:18:60:ff:fa:cc:2d:0d:a7: 67:43:86:1e:a1:fa:16:8c:bb:f6:c0:58:fb:22:c2: ba:fc:ef:7e:b0:62:11:b0:2b:04:54:04:94:1c:11: 8d:a3:d7:2c:da:fa:e1:0d:3f:e8:cc:36:a1:21:ec: f7:17:aa:d9:4f:32:9c:a1:03:61:34:4d:43:f2:08: de:fe:47:90:92:63:88:30:b4:ab:6c:f0:2f:ad:b0: 5b:3b:ab:91:7c:86:e1:87:9a:a2:d0:66:73:6a:56: 5f:61:bd:dd:c8:20:28:87:80:11:e9:b7:eb:13:14: 56:9d:99:88:ba:8a:98:04:4a:d9:98:cc:89:01:15: aa:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:30:2F:4A:C8:7F:F6:37:19:18:FA:A6:B8:BD:9E:96:24:47:7C:D6 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200968.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f100::/40 Signature Algorithm: sha256WithRSAEncryption e9:e5:a0:0d:48:c8:d0:78:38:15:56:d7:ed:72:89:44:c5:a1: 55:ce:59:56:04:70:3d:6f:75:bd:84:e5:43:87:56:aa:f4:65: b7:a7:45:4a:c0:dc:10:63:64:96:e6:8a:a6:d9:6a:41:ff:d8: 85:53:2c:78:a6:93:ec:07:e0:f6:cf:08:42:5d:d4:5d:61:d6: 0e:d0:0d:18:b5:e2:72:f1:1d:76:b6:1a:6a:74:d4:68:24:e9: 06:1f:64:ed:59:1e:f1:0f:16:e7:5c:a7:69:89:10:0b:cb:63: be:03:cc:43:af:a2:d1:c6:89:e6:8a:fe:cf:fe:fb:5b:58:be: 14:10:5a:1c:30:2b:db:6f:8c:ab:98:ec:39:38:c2:b5:47:8a: 34:41:93:d8:41:df:4d:d8:fb:85:8b:57:00:26:b4:72:dc:41: 3b:bb:77:c3:db:2b:99:c0:0a:3f:1c:12:69:42:20:73:26:2a: 58:16:1d:65:2d:65:64:c2:dd:6a:80:39:de:b3:f3:91:b5:3e: e6:87:0f:ee:d1:6e:21:0b:83:2e:e6:3d:a2:c2:15:42:af:60: ae:cf:55:97:8d:7f:f4:e0:48:32:ad:79:0b:d1:7b:dd:8c:ed: c1:e5:76:49:93:e7:72:62:30:df:fd:e8:be:b1:a0:4b:9b:cc: 7c:d4:03:8c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUa8qVAhR6n7tLElLm3pXp7Di6bXMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDlaFw0yNzA2MDQwNzEyNDlaMDMxMTAvBgNV BAMTKDA5MzAyRjRBQzg3RkY2MzcxOTE4RkFBNkI4QkQ5RTk2MjQ0NzdDRDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR9LYkV0nBcq2pidr0WzdQvWhU cOZIAedVQ83mN0f5czcWEVWZ75sCdiy3ihmS28sTBe9VHo7hoUHDnlph9OLgM0ad 3yQidu7cVwdYeTnUR39cZl+FHEEFQTazGlrspKGyPfs2e3ARV0d1Jmk60a8ZZUN/ HNpDWCI00WJtsLkYYP/6zC0Np2dDhh6h+haMu/bAWPsiwrr8736wYhGwKwRUBJQc EY2j1yza+uENP+jMNqEh7PcXqtlPMpyhA2E0TUPyCN7+R5CSY4gwtKts8C+tsFs7 q5F8huGHmqLQZnNqVl9hvd3IICiHgBHpt+sTFFadmYi6ipgEStmYzIkBFaoHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCTAvSsh/9jcZGPqmuL2eliRHfNYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPEwDQYJKoZIhvcNAQELBQADggEBAOnl oA1IyNB4OBVW1+1yiUTFoVXOWVYEcD1vdb2E5UOHVqr0ZbenRUrA3BBjZJbmiqbZ akH/2IVTLHimk+wH4PbPCEJd1F1h1g7QDRi14nLxHXa2Gmp01Ggk6QYfZO1ZHvEP Fudcp2mJEAvLY74DzEOvotHGieaK/s/++1tYvhQQWhwwK9tvjKuY7Dk4wrVHijRB k9hB303Y+4WLVwAmtHLcQTu7d8PbK5nACj8cEmlCIHMmKlgWHWUtZWTC3WqAOd6z 85G1PuaHD+7RbiELgy7mPaLCFUKvYK7PVZeNf/TgSDKteQvRe92M7cHldkmT53Ji MN/96L6xoEubzHzUA4w= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:22 2026 by rpki-client