$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207427.roa File: AS207427.roa (raw, json) Hash identifier: bm6Z0/1pUmvfU0Giml0VDceim795IUFHIopakwN0X/Q= Subject key identifier: 06:03:6D:E6:91:78:DB:6B:D5:BE:48:9E:91:EE:3C:62:82:7B:2C:F7 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 19BFA86A134848A82776EAA9E05F859C1E74E4D6 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207427.roa Signing time: Fri 09 May 2025 06:46:20 +0000 ROA not before: Fri 09 May 2025 06:41:20 +0000 ROA not after: Fri 08 May 2026 06:46:20 +0000 asID: 207427 IP address blocks: 2a05:dfc1:6400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 04:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:bf:a8:6a:13:48:48:a8:27:76:ea:a9:e0:5f:85:9c:1e:74:e4:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 9 06:41:20 2025 GMT Not After : May 8 06:46:20 2026 GMT Subject: CN=06036DE69178DB6BD5BE489E91EE3C62827B2CF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c7:17:fe:d9:4a:a7:36:ed:19:a8:97:e4:25: 85:f5:23:fb:1f:2a:6e:57:bc:d7:6d:8f:44:51:79: 91:37:0d:57:ca:34:9e:e1:a5:06:d3:a1:69:be:59: 5b:d9:30:e7:32:cc:55:56:87:7b:0c:80:ad:9a:03: d3:fd:60:6b:da:ac:17:ac:77:93:40:b3:34:70:72: 0e:0b:32:1a:ee:c5:c7:38:2a:af:6c:ea:7b:8d:cd: 30:28:68:dd:04:9d:4a:53:a3:4d:cb:6c:bb:07:9c: 18:a2:c7:11:c8:33:d3:8f:e1:80:38:00:8c:cc:c8: 95:54:d1:35:bc:6e:3b:4b:d9:6e:22:b1:bd:7d:27: 43:86:39:d7:37:ba:48:ab:0d:02:d3:fd:a3:47:0b: 7e:41:e1:25:2c:05:4e:ec:9d:bf:df:95:dd:39:05: 51:03:50:ba:97:de:6d:6c:7c:8b:5c:a7:23:c2:0b: 21:a4:36:20:f8:aa:cd:cc:d2:a4:e6:03:d6:7e:2b: 37:cb:4e:f3:4d:9f:56:61:ea:d1:15:90:b6:fa:5d: 81:06:aa:ef:6c:f9:a4:ab:9e:0a:e1:e4:d1:56:5e: 3c:69:29:7d:38:36:ec:99:ec:94:9e:44:bc:74:60: 20:92:04:aa:d5:aa:e9:f9:0d:22:49:7b:e6:8d:6a: 33:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:03:6D:E6:91:78:DB:6B:D5:BE:48:9E:91:EE:3C:62:82:7B:2C:F7 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6400::/40 Signature Algorithm: sha256WithRSAEncryption 87:fd:37:89:6c:1b:35:8c:c8:79:eb:d3:98:4d:ea:9c:9d:94: 07:20:66:50:57:70:4d:8c:42:5a:38:a2:fe:d7:90:83:09:26: 9c:77:aa:a3:42:2d:f4:f7:5e:25:57:10:d1:0a:47:22:6f:76: 07:5d:40:22:1a:6c:c1:22:8b:71:4b:1b:6d:ad:fd:cc:a6:2a: a6:0a:12:8f:50:e1:b9:7c:50:cd:b1:40:03:02:b8:16:f5:c8: 0f:61:ee:f4:c0:ab:01:42:3f:60:ad:6b:fd:2e:54:0c:3e:66: 25:af:3c:62:28:f6:21:6c:bf:cf:d8:74:af:5a:2d:dd:3f:33: 3e:30:07:78:62:7c:1c:d5:d7:78:59:27:88:8b:de:b4:e3:e8: ed:5f:c9:7f:0d:4a:d0:d4:1b:e5:03:00:96:74:1a:39:32:8d: a6:9a:dc:40:81:16:48:5a:6d:92:3a:ec:10:fd:b8:9e:41:c2: a1:6a:24:73:c0:d6:31:6b:5f:ac:5a:6e:8d:d8:af:4e:1b:c6: de:62:94:72:c1:40:36:36:de:ea:2f:16:82:43:19:3d:8b:f7: ab:8b:0a:69:53:c9:e5:cb:f0:56:ac:9b:27:64:c2:df:eb:7c: 9d:1c:8c:91:75:b1:0b:51:a9:68:1a:72:61:f4:69:0f:7f:d3: ab:02:99:59 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGb+oahNISKgnduqp4F+FnB505NYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDkwNjQxMjBaFw0yNjA1MDgwNjQ2MjBaMDMxMTAvBgNV BAMTKDA2MDM2REU2OTE3OERCNkJENUJFNDg5RTkxRUUzQzYyODI3QjJDRjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2xxf+2UqnNu0ZqJfkJYX1I/sf Km5XvNdtj0RReZE3DVfKNJ7hpQbToWm+WVvZMOcyzFVWh3sMgK2aA9P9YGvarBes d5NAszRwcg4LMhruxcc4Kq9s6nuNzTAoaN0EnUpTo03LbLsHnBiixxHIM9OP4YA4 AIzMyJVU0TW8bjtL2W4isb19J0OGOdc3ukirDQLT/aNHC35B4SUsBU7snb/fld05 BVEDULqX3m1sfItcpyPCCyGkNiD4qs3M0qTmA9Z+KzfLTvNNn1Zh6tEVkLb6XYEG qu9s+aSrngrh5NFWXjxpKX04NuyZ7JSeRLx0YCCSBKrVqun5DSJJe+aNajNXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUBgNt5pF422vVvkieke48YoJ7LPcwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA3NDI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWQwDQYJKoZIhvcNAQELBQADggEBAIf9 N4lsGzWMyHnr05hN6pydlAcgZlBXcE2MQlo4ov7XkIMJJpx3qqNCLfT3XiVXENEK RyJvdgddQCIabMEii3FLG22t/cymKqYKEo9Q4bl8UM2xQAMCuBb1yA9h7vTAqwFC P2Cta/0uVAw+ZiWvPGIo9iFsv8/YdK9aLd0/Mz4wB3hifBzV13hZJ4iL3rTj6O1f yX8NStDUG+UDAJZ0Gjkyjaaa3ECBFkhabZI67BD9uJ5BwqFqJHPA1jFrX6xabo3Y r04bxt5ilHLBQDY23uovFoJDGT2L96uLCmlTyeXL8Fasmydkwt/rfJ0cjJF1sQtR qWgacmH0aQ9/06sCmVk= -----END CERTIFICATE-----Generated at Sat Jun 7 21:51:49 2025 by rpki-client