$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: rjuSo+mrrK2TV7i5At4y3NINdpVnzget1Crl4BZ1uxE= Subject key identifier: FF:A1:95:44:48:B1:1A:32:2F:F5:AE:A0:2C:C1:C9:8A:5D:15:4F:CB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0DD132AF5C73D176F9461FE44508CA5B8648CEAB Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208548.roa Signing time: Thu 20 Mar 2025 03:45:56 +0000 ROA not before: Thu 20 Mar 2025 03:40:56 +0000 ROA not after: Thu 19 Mar 2026 03:45:56 +0000 asID: 208548 IP address blocks: 2a05:dfc1:ff00::/40 maxlen: 48 2a05:dfc1:ff08::/48 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 05 Apr 2025 02:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d1:32:af:5c:73:d1:76:f9:46:1f:e4:45:08:ca:5b:86:48:ce:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Mar 20 03:40:56 2025 GMT Not After : Mar 19 03:45:56 2026 GMT Subject: CN=FFA1954448B11A322FF5AEA02CC1C98A5D154FCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:75:a1:94:4a:bf:2b:bb:78:9c:f2:cf:c5: 53:bf:53:7c:b8:9b:0d:7c:0c:9f:30:39:fc:66:95: 7c:e9:b6:48:4c:db:9c:d9:34:64:12:5f:b9:d2:d4: ae:2e:2b:d8:c9:f7:2d:62:58:ef:b5:50:9a:b1:b3: 91:1a:92:9c:f1:c2:8f:45:0d:9d:37:2d:aa:78:3d: 53:68:11:53:10:d6:d1:f0:42:75:07:19:af:9f:5c: 04:fd:e7:8a:fb:75:c0:2c:21:e6:7d:48:67:1e:a9: 66:64:a4:85:11:27:68:f1:e2:61:c5:b9:85:c2:82: 08:bc:5d:9e:24:0f:02:ef:cf:41:7e:fd:65:7a:4f: 3f:d8:75:b6:fc:11:a6:25:2d:1b:d5:c2:96:71:5d: fe:2d:4f:33:df:67:70:68:2a:eb:81:9d:15:de:bf: bc:0d:a2:14:2f:35:01:47:b5:2a:d0:75:14:4a:76: f3:99:de:f6:68:8f:5c:d9:48:f8:53:98:00:b2:2d: f6:40:ec:83:c4:5c:5c:65:3c:3e:0c:83:8d:7a:cb: 58:56:4b:ac:b5:26:eb:e1:7e:81:fa:01:5c:57:95: 15:ae:66:e4:6b:4a:79:dc:20:6b:fb:b6:dc:91:76: 58:f1:a5:da:5a:81:d5:2c:d9:b6:cc:24:22:28:1f: a6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A1:95:44:48:B1:1A:32:2F:F5:AE:A0:2C:C1:C9:8A:5D:15:4F:CB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 0b:36:49:5c:61:5e:38:4e:bf:c2:fa:ac:98:fe:d6:64:96:97: 74:41:4a:7a:47:cf:36:5a:76:d6:f7:84:38:5a:fa:76:7c:44: 20:7d:4a:64:c2:3c:21:5f:43:af:56:08:15:da:3f:f2:9f:4a: 9e:33:00:52:de:39:51:36:96:e4:e5:8e:80:39:ab:21:e2:9a: 49:70:ab:f7:5c:9f:12:04:ea:db:f5:fa:40:ea:60:4a:e3:02: 9b:26:ec:f0:37:82:da:82:e8:a2:44:01:b7:4c:35:0a:04:39: 07:ba:da:6e:d8:f4:cb:55:23:98:0e:80:63:86:02:a3:c7:40: 41:7b:e6:4b:b5:8a:eb:92:39:73:b0:db:6c:a2:a5:83:64:22: 40:d7:c2:1e:4c:ec:45:cc:8f:a3:6b:91:d4:8c:3b:45:ec:e1: 2c:f2:f5:71:ec:1e:00:03:b8:3a:fc:3c:42:c8:ff:cc:a4:f6: 23:c5:dd:50:f3:68:eb:2b:47:16:67:f2:f6:3d:7c:07:73:a1: 03:75:ff:f8:73:32:17:ba:a0:d8:17:6f:c3:1d:d1:d8:20:6b: b3:56:2b:e5:8b:bd:59:37:2e:e7:bf:ea:5d:ae:55:40:06:82: af:d4:6c:25:10:cb:57:00:1b:d4:2e:ce:61:50:d7:f6:04:82: 72:70:c3:83 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDdEyr1xz0Xb5Rh/kRQjKW4ZIzqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAzMjAwMzQwNTZaFw0yNjAzMTkwMzQ1NTZaMDMxMTAvBgNV BAMTKEZGQTE5NTQ0NDhCMTFBMzIyRkY1QUVBMDJDQzFDOThBNUQxNTRGQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzCnWhlEq/K7t4nPLPxVO/U3y4 mw18DJ8wOfxmlXzptkhM25zZNGQSX7nS1K4uK9jJ9y1iWO+1UJqxs5Eakpzxwo9F DZ03Lap4PVNoEVMQ1tHwQnUHGa+fXAT954r7dcAsIeZ9SGceqWZkpIURJ2jx4mHF uYXCggi8XZ4kDwLvz0F+/WV6Tz/Ydbb8EaYlLRvVwpZxXf4tTzPfZ3BoKuuBnRXe v7wNohQvNQFHtSrQdRRKdvOZ3vZoj1zZSPhTmACyLfZA7IPEXFxlPD4Mg416y1hW S6y1JuvhfoH6AVxXlRWuZuRrSnncIGv7ttyRdljxpdpagdUs2bbMJCIoH6ZNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/6GVREixGjIv9a6gLMHJil0VT8swHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwf8wDQYJKoZIhvcNAQELBQADggEBAAs2 SVxhXjhOv8L6rJj+1mSWl3RBSnpHzzZadtb3hDha+nZ8RCB9SmTCPCFfQ69WCBXa P/KfSp4zAFLeOVE2luTljoA5qyHimklwq/dcnxIE6tv1+kDqYErjApsm7PA3gtqC 6KJEAbdMNQoEOQe62m7Y9MtVI5gOgGOGAqPHQEF75ku1iuuSOXOw22yipYNkIkDX wh5M7EXMj6NrkdSMO0Xs4Szy9XHsHgADuDr8PELI/8yk9iPF3VDzaOsrRxZn8vY9 fAdzoQN1//hzMhe6oNgXb8Md0dgga7NWK+WLvVk3Lue/6l2uVUAGgq/UbCUQy1cA G9QuzmFQ1/YEgnJww4M= -----END CERTIFICATE-----Generated at Fri Apr 4 16:59:58 2025 by rpki-client