$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS150787.roa File: AS150787.roa (raw, json) Hash identifier: DES2jHH7xqcA22xm4NRcjFMU2PnNZ/RqBUjSdLJimjo= Subject key identifier: 28:B7:BA:24:C1:3F:3F:02:21:D9:68:E0:34:5D:C7:D1:CE:5B:4B:2A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 23DB5DE44010CC4382B27ABFC599579FF1B72F5E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS150787.roa Signing time: Tue 03 Jun 2025 00:46:30 +0000 ROA not before: Tue 03 Jun 2025 00:41:30 +0000 ROA not after: Tue 02 Jun 2026 00:46:30 +0000 asID: 150787 IP address blocks: 2a06:9f81:5300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Jun 2025 01:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:db:5d:e4:40:10:cc:43:82:b2:7a:bf:c5:99:57:9f:f1:b7:2f:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 3 00:41:30 2025 GMT Not After : Jun 2 00:46:30 2026 GMT Subject: CN=28B7BA24C13F3F0221D968E0345DC7D1CE5B4B2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b6:ec:4d:4c:55:3a:c7:d7:94:ba:40:e6:de: c8:cc:e1:4f:58:7d:17:00:82:69:8f:1d:9f:c3:ef: 6d:9d:d9:32:c7:64:09:66:23:1d:14:69:ef:bb:e5: f5:38:7f:36:71:6d:e2:be:3d:77:22:f1:3b:a3:2b: f6:be:ec:8a:fc:70:e5:e3:f6:cb:6e:e5:ff:5b:5c: 81:85:a4:2e:67:c6:48:71:c9:96:f5:f9:45:65:19: 2a:6e:8c:52:39:96:58:77:a8:b8:1e:02:83:f2:a3: 69:bf:3e:41:e1:4c:1e:de:d8:19:bb:d3:b6:1f:ce: 62:c5:8f:e7:65:ac:68:6b:f5:27:30:cf:e1:dd:f4: e0:27:4f:a8:4f:b9:ee:5e:bd:86:87:06:b2:be:6e: b1:f8:74:53:56:7b:ed:5f:57:b6:f2:92:40:fc:5f: 5b:5d:ed:b3:29:7c:2b:8e:be:f6:c8:0c:f0:0d:f4: f6:7c:73:3f:3c:e7:65:4c:dd:0d:2c:4a:d9:93:4c: 15:b6:b5:98:43:01:fd:f2:e3:67:73:37:58:65:cd: cf:ec:6a:91:dd:0b:9f:c9:6d:86:f9:a6:10:e5:7c: 49:82:f8:73:ea:5b:74:a5:6b:aa:fd:20:2c:ec:26: 09:2b:eb:82:e7:04:7e:a1:e9:82:77:85:b8:17:7c: fa:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B7:BA:24:C1:3F:3F:02:21:D9:68:E0:34:5D:C7:D1:CE:5B:4B:2A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS150787.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5300::/40 Signature Algorithm: sha256WithRSAEncryption 0f:b0:58:e2:c2:60:10:72:0e:8a:cf:53:21:bf:58:cf:d0:e7: 30:09:25:85:9e:96:9c:3a:12:4d:6d:30:6d:ea:d1:b0:49:7f: 10:bb:c6:3f:b8:97:6f:0a:f8:9d:ae:ab:d2:c1:07:87:07:31: f5:3e:45:6c:06:66:3b:cf:de:ca:0c:07:06:b8:a8:83:85:c1: 92:99:19:90:62:6c:e5:44:03:8f:74:89:97:38:ec:82:be:ac: 92:47:a2:b2:1e:32:05:37:87:cc:e6:9b:61:21:d2:e5:55:31: 01:42:69:54:fb:ad:1c:ba:5a:6e:69:65:5b:b9:0e:30:22:68: dd:35:30:d9:56:ff:df:77:ab:6b:ed:2e:1a:e6:4b:e4:93:66: fc:b0:43:74:e8:c1:8e:8f:5d:87:1c:1f:61:b7:42:35:d2:4d: 23:3d:fa:1e:c1:74:12:0a:7d:29:67:5c:23:25:07:5f:8f:21: 44:82:c1:16:a2:e3:c0:51:28:50:04:4e:3b:af:59:99:3a:47: fc:9e:a0:66:fc:06:d1:fb:6a:9e:a3:8a:49:67:34:5b:37:28: 37:ce:10:71:a2:db:74:1e:2c:69:15:c9:52:c2:f3:de:2d:ae: 51:79:2c:50:b4:cb:b0:64:3b:72:92:af:4a:7d:2a:63:41:67: bc:bb:68:17 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUI9td5EAQzEOCsnq/xZlXn/G3L14wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MDMwMDQxMzBaFw0yNjA2MDIwMDQ2MzBaMDMxMTAvBgNV BAMTKDI4QjdCQTI0QzEzRjNGMDIyMUQ5NjhFMDM0NURDN0QxQ0U1QjRCMkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2tuxNTFU6x9eUukDm3sjM4U9Y fRcAgmmPHZ/D722d2TLHZAlmIx0Uae+75fU4fzZxbeK+PXci8TujK/a+7Ir8cOXj 9stu5f9bXIGFpC5nxkhxyZb1+UVlGSpujFI5llh3qLgeAoPyo2m/PkHhTB7e2Bm7 07YfzmLFj+dlrGhr9Scwz+Hd9OAnT6hPue5evYaHBrK+brH4dFNWe+1fV7bykkD8 X1td7bMpfCuOvvbIDPAN9PZ8cz8852VM3Q0sStmTTBW2tZhDAf3y42dzN1hlzc/s apHdC5/JbYb5phDlfEmC+HPqW3Sla6r9ICzsJgkr64LnBH6h6YJ3hbgXfPpDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUKLe6JME/PwIh2WjgNF3H0c5bSyowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTUwNzg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVMwDQYJKoZIhvcNAQELBQADggEBAA+w WOLCYBByDorPUyG/WM/Q5zAJJYWelpw6Ek1tMG3q0bBJfxC7xj+4l28K+J2uq9LB B4cHMfU+RWwGZjvP3soMBwa4qIOFwZKZGZBibOVEA490iZc47IK+rJJHorIeMgU3 h8zmm2Eh0uVVMQFCaVT7rRy6Wm5pZVu5DjAiaN01MNlW/993q2vtLhrmS+STZvyw Q3TowY6PXYccH2G3QjXSTSM9+h7BdBIKfSlnXCMlB1+PIUSCwRai48BRKFAETjuv WZk6R/yeoGb8BtH7ap6jiklnNFs3KDfOEHGi23QeLGkVyVLC894trlF5LFC0y7Bk O3KSr0p9KmNBZ7y7aBc= -----END CERTIFICATE-----Generated at Thu Jun 5 18:09:35 2025 by rpki-client