$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa File: AS203539.roa (raw, json) Hash identifier: DWzwVNeucW4/i7JuzHRvbzUpjbuYTZcQZuLhgSOpDGg= Subject key identifier: 9A:7F:32:D2:ED:E2:38:8F:19:8C:16:46:92:8C:7C:23:BC:0A:B3:1A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 253D0C4E2701229661312E4294AB2B960EA554A0 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa Signing time: Wed 07 May 2025 11:46:18 +0000 ROA not before: Wed 07 May 2025 11:41:18 +0000 ROA not after: Wed 06 May 2026 11:46:18 +0000 asID: 203539 IP address blocks: 2a05:dfc1:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:3d:0c:4e:27:01:22:96:61:31:2e:42:94:ab:2b:96:0e:a5:54:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 7 11:41:18 2025 GMT Not After : May 6 11:46:18 2026 GMT Subject: CN=9A7F32D2EDE2388F198C1646928C7C23BC0AB31A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:14:3b:e2:19:86:b6:32:22:04:25:f9:f9:57: 3e:4e:ad:31:78:1e:39:fd:6f:28:d7:68:a3:ca:78: 17:1b:95:a1:cb:1a:95:dc:eb:31:40:21:11:19:da: 57:78:cc:89:80:f4:e0:5a:e7:1b:90:b4:0f:1a:c4: 28:42:03:c0:17:0f:78:ca:6d:7b:a6:8b:c6:05:c8: 49:53:b0:7f:4c:01:2e:64:d6:20:d5:1c:70:56:1b: 3a:f1:74:33:c6:95:87:b8:7c:1f:44:46:e6:78:fc: 0d:0c:25:8a:a1:6a:47:69:12:93:94:91:d8:28:b9: d4:6d:b3:45:d5:63:b6:d7:7a:36:f0:41:4c:63:f7: df:ac:a1:02:dc:97:6f:2f:8d:2f:54:c6:61:24:76: 99:c7:21:5e:e9:34:30:d5:f9:4b:a8:a8:07:8e:22: ce:90:6d:70:97:3d:ce:2d:7e:c9:d3:b8:7d:29:76: 23:0d:b9:20:4e:a5:80:8e:0d:3b:e5:f8:5b:3f:fe: fa:8f:ed:95:f0:a6:a5:10:2f:8b:e5:82:d1:b2:25: d2:10:b1:05:2e:f0:98:13:40:31:28:d5:09:0a:aa: 97:2c:bd:5e:a5:d7:35:63:91:1f:08:e4:be:75:98: de:34:97:d7:55:e4:c7:90:37:62:a5:c3:df:ad:7e: 47:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:7F:32:D2:ED:E2:38:8F:19:8C:16:46:92:8C:7C:23:BC:0A:B3:1A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6500::/40 Signature Algorithm: sha256WithRSAEncryption 86:8f:08:ff:a4:bc:3b:7b:d6:28:bf:17:68:2b:5c:7a:0a:a8: c5:d6:0b:9b:aa:7d:a3:60:8d:08:47:ef:57:5c:ac:b9:33:74: 27:2d:27:a4:b1:83:60:da:6c:6b:c3:05:26:97:4f:67:2d:93: da:8b:8a:82:e4:38:b9:3f:7d:7d:72:32:18:df:c5:51:0b:d5: 35:bc:cc:a4:df:ba:b1:5b:98:7d:01:ce:02:a7:a2:f0:66:60: 4c:a3:1d:fc:9c:ca:92:0a:d0:0a:e2:05:fb:5f:dc:f8:06:6f: 33:1d:8d:9f:a0:9c:bf:aa:47:54:e0:ca:6f:05:c2:21:e0:5b: 4f:93:59:f7:9b:f7:9d:e6:4c:5b:03:4a:2a:52:04:6c:d7:c1: 10:b1:92:90:67:ef:4d:36:cb:12:3a:b0:39:f6:31:4d:f1:c4: a7:ca:3d:20:09:bf:e2:90:1d:5a:96:a0:b1:92:4e:f4:fb:0f: 49:5e:42:0b:f9:de:67:99:18:5d:81:79:1e:16:9a:ba:ce:47: 4b:64:39:88:e6:b3:27:86:96:6f:a7:a8:01:8f:3e:bd:26:90: 8f:cf:d4:ae:7a:6e:da:fc:50:53:a3:2f:b3:34:d4:21:d7:05: 3d:68:45:46:02:07:9a:6f:86:6a:99:8f:14:16:70:2c:c4:8f: 63:a1:73:a9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJT0MTicBIpZhMS5ClKsrlg6lVKAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDcxMTQxMThaFw0yNjA1MDYxMTQ2MThaMDMxMTAvBgNV BAMTKDlBN0YzMkQyRURFMjM4OEYxOThDMTY0NjkyOEM3QzIzQkMwQUIzMUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIFDviGYa2MiIEJfn5Vz5OrTF4 Hjn9byjXaKPKeBcblaHLGpXc6zFAIREZ2ld4zImA9OBa5xuQtA8axChCA8AXD3jK bXumi8YFyElTsH9MAS5k1iDVHHBWGzrxdDPGlYe4fB9ERuZ4/A0MJYqhakdpEpOU kdgoudRts0XVY7bXejbwQUxj99+soQLcl28vjS9UxmEkdpnHIV7pNDDV+UuoqAeO Is6QbXCXPc4tfsnTuH0pdiMNuSBOpYCODTvl+Fs//vqP7ZXwpqUQL4vlgtGyJdIQ sQUu8JgTQDEo1QkKqpcsvV6l1zVjkR8I5L51mN40l9dV5MeQN2Klw9+tfkdFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmn8y0u3iOI8ZjBZGkox8I7wKsxowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWUwDQYJKoZIhvcNAQELBQADggEBAIaP CP+kvDt71ii/F2grXHoKqMXWC5uqfaNgjQhH71dcrLkzdCctJ6Sxg2DabGvDBSaX T2ctk9qLioLkOLk/fX1yMhjfxVEL1TW8zKTfurFbmH0BzgKnovBmYEyjHfycypIK 0AriBftf3PgGbzMdjZ+gnL+qR1Tgym8FwiHgW0+TWfeb953mTFsDSipSBGzXwRCx kpBn7002yxI6sDn2MU3xxKfKPSAJv+KQHVqWoLGSTvT7D0leQgv53meZGF2BeR4W mrrOR0tkOYjmsyeGlm+nqAGPPr0mkI/P1K56btr8UFOjL7M01CHXBT1oRUYCB5pv hmqZjxQWcCzEj2Ohc6k= -----END CERTIFICATE-----Generated at Sat Jun 7 23:38:27 2025 by rpki-client