$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200969.roa File: AS200969.roa (raw, json) Hash identifier: +FsA4nyiZVhIhCjWlR8JlNQJBqk5Mo4tRygDIO4X43c= Subject key identifier: 50:99:73:92:B4:20:DF:B4:C6:0B:A0:CD:E5:84:2B:71:F1:92:79:AD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 64943250F72ADE9AE4FF33DA5964706D37DE993D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200969.roa Signing time: Fri 05 Jun 2026 07:12:22 +0000 ROA not before: Fri 05 Jun 2026 07:07:22 +0000 ROA not after: Fri 04 Jun 2027 07:12:22 +0000 asID: 200969 IP address blocks: 2a0a:6040:f400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:94:32:50:f7:2a:de:9a:e4:ff:33:da:59:64:70:6d:37:de:99:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:22 2026 GMT Not After : Jun 4 07:12:22 2027 GMT Subject: CN=50997392B420DFB4C60BA0CDE5842B71F19279AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:86:90:14:e0:95:47:7a:37:98:51:fa:4a:1b: 27:6f:e2:0f:6e:ba:3c:c3:39:e2:79:e7:5f:be:ac: 3e:ff:82:b3:b8:7a:8d:6f:bb:45:8c:14:e2:ae:35: 14:d6:86:1a:f9:6a:3e:9e:a3:1f:f4:4c:6d:6d:46: 58:be:e0:9e:b6:3e:89:89:5a:a5:35:2d:bb:aa:ce: 11:13:75:ef:22:51:a5:76:39:a1:08:14:67:d1:f6: 91:0b:2a:25:c9:1d:65:15:00:a5:db:13:f6:ee:3e: 1a:c5:4f:ad:e9:09:42:da:85:40:07:8f:79:f8:d1: 95:39:8e:d0:bb:b3:07:83:6d:3e:83:86:40:77:48: 50:d2:6b:f3:ad:fe:1f:ef:fc:77:e2:7e:70:24:63: f0:0b:d7:96:70:89:7e:d2:81:e7:e9:7d:6f:07:02: bf:a2:ef:23:f2:02:c2:e7:60:2b:8b:0b:a9:62:ec: 55:59:5c:c4:f8:0d:a0:8b:5b:d6:b7:32:51:15:12: ba:13:70:f7:10:91:e7:a7:a0:f3:18:3e:79:4b:35: f8:27:d6:fe:a7:0b:ed:61:82:51:e7:dc:bc:13:02: e4:6c:ba:ef:ba:f8:13:71:6c:8a:3b:c5:d4:0f:19: b2:fa:62:de:67:39:73:ce:d9:56:e6:1f:67:a7:63: 63:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:99:73:92:B4:20:DF:B4:C6:0B:A0:CD:E5:84:2B:71:F1:92:79:AD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS200969.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f400::/40 Signature Algorithm: sha256WithRSAEncryption 00:fe:76:da:82:a0:78:96:32:a7:3b:0f:64:cb:5b:3f:b2:26: f2:23:38:ff:2a:07:52:de:b3:48:e0:c2:6b:60:10:fb:23:be: 03:73:0b:a0:ea:fd:50:65:92:5a:5b:a0:09:f4:3b:a7:87:80: a3:73:8a:32:c4:fd:00:5b:8e:26:00:0e:c9:4d:ae:4f:6b:17: ba:f0:83:46:94:15:11:71:87:27:18:c5:0e:52:c7:fc:f5:09: 20:71:26:12:2e:26:7f:ab:8b:c7:54:fd:00:ee:5e:12:d7:c0: 70:66:c9:30:91:fe:e3:20:8e:3c:7f:0b:24:80:fc:f0:6a:a7: 71:1a:56:c8:fc:63:f2:b5:fb:34:97:2c:d8:56:e8:01:0c:2f: fa:8f:eb:35:f2:19:59:a6:5b:77:0e:d6:b3:72:06:0b:c6:5c: a0:d2:e3:8c:8b:01:07:6d:f6:2b:1e:62:d2:ae:fb:be:3d:23: b1:e1:7a:83:ac:47:24:4d:73:4e:a1:29:42:72:4d:fa:49:ee: 16:f1:be:22:fb:bc:82:61:7c:0b:7a:f4:67:7a:6e:f6:89:40: ba:05:aa:62:d2:79:8f:d4:d9:f8:44:76:a5:65:2a:f2:7a:f0: af:57:e9:67:07:2e:b0:70:32:58:5c:b9:d3:31:81:b9:85:cc: 81:cd:7e:44 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZJQyUPcq3prk/zPaWWRwbTfemT0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjJaFw0yNzA2MDQwNzEyMjJaMDMxMTAvBgNV BAMTKDUwOTk3MzkyQjQyMERGQjRDNjBCQTBDREU1ODQyQjcxRjE5Mjc5QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDshpAU4JVHejeYUfpKGydv4g9u ujzDOeJ551++rD7/grO4eo1vu0WMFOKuNRTWhhr5aj6eox/0TG1tRli+4J62PomJ WqU1LbuqzhETde8iUaV2OaEIFGfR9pELKiXJHWUVAKXbE/buPhrFT63pCULahUAH j3n40ZU5jtC7sweDbT6DhkB3SFDSa/Ot/h/v/HfifnAkY/AL15ZwiX7SgefpfW8H Ar+i7yPyAsLnYCuLC6li7FVZXMT4DaCLW9a3MlEVEroTcPcQkeenoPMYPnlLNfgn 1v6nC+1hglHn3LwTAuRsuu+6+BNxbIo7xdQPGbL6Yt5nOXPO2VbmH2enY2NpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUJlzkrQg37TGC6DN5YQrcfGSea0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAwOTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPQwDQYJKoZIhvcNAQELBQADggEBAAD+ dtqCoHiWMqc7D2TLWz+yJvIjOP8qB1Les0jgwmtgEPsjvgNzC6Dq/VBlklpboAn0 O6eHgKNzijLE/QBbjiYADslNrk9rF7rwg0aUFRFxhycYxQ5Sx/z1CSBxJhIuJn+r i8dU/QDuXhLXwHBmyTCR/uMgjjx/CySA/PBqp3EaVsj8Y/K1+zSXLNhW6AEML/qP 6zXyGVmmW3cO1rNyBgvGXKDS44yLAQdt9iseYtKu+749I7HheoOsRyRNc06hKUJy TfpJ7hbxviL7vIJhfAt69Gd6bvaJQLoFqmLSeY/U2fhEdqVlKvJ68K9X6WcHLrBw MlhcudMxgbmFzIHNfkQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:23 2026 by rpki-client