$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa File: AS209574.roa (raw, json) Hash identifier: tiFQFuDpVHsYaKhYIYbbCG3H3gD+D1+oiNhTM+E2q3o= Subject key identifier: 7A:43:C8:59:D4:F2:FC:66:03:E6:69:81:DC:E3:DD:89:C0:D0:6E:79 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5224CB9AD3E59D8AE793C417057E563E375823F3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa Signing time: Wed 28 May 2025 07:46:29 +0000 ROA not before: Wed 28 May 2025 07:41:29 +0000 ROA not after: Wed 27 May 2026 07:46:29 +0000 asID: 209574 IP address blocks: 2a05:dfc1:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:24:cb:9a:d3:e5:9d:8a:e7:93:c4:17:05:7e:56:3e:37:58:23:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 28 07:41:29 2025 GMT Not After : May 27 07:46:29 2026 GMT Subject: CN=7A43C859D4F2FC6603E66981DCE3DD89C0D06E79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ff:ca:8e:02:e0:e7:52:f6:4f:94:a4:41:4f: 12:54:ee:f0:f1:54:ec:6a:2b:8d:89:fc:63:73:42: e1:15:73:99:e4:d5:92:dc:60:18:28:24:83:2c:20: 13:c4:45:8b:0c:6a:ce:75:4b:cf:52:6b:5f:fb:d2: 2a:1b:be:63:bc:51:9c:bd:ca:bc:1f:9f:cc:53:38: 5c:27:0a:08:86:69:a2:ef:2e:15:5a:99:da:f2:a6: f7:55:7c:42:42:28:ec:f3:6d:c3:8f:a9:cf:b4:1f: a0:0c:08:97:d1:b2:d4:95:b2:d8:07:9b:68:12:5d: a1:61:2d:9a:53:81:f8:87:ea:6b:6c:31:76:6a:6e: d6:82:44:3d:56:5f:dc:68:aa:21:6f:93:9a:e3:a4: f2:68:bb:3f:61:a1:3b:3b:23:0c:90:d3:01:3a:7e: 35:cf:d6:ed:fe:c8:27:43:31:53:ad:3c:3f:27:c7: 93:97:a5:4c:80:bf:a0:70:b0:9f:cb:7c:8d:24:3c: 5e:fd:c1:4f:44:5d:90:16:1a:ee:56:6e:ab:b3:2f: 39:94:bc:9f:c0:84:e4:64:91:ff:6e:14:48:d8:45: de:12:0c:62:ea:d3:d0:b9:f8:78:b2:e2:a3:d7:5c: 87:05:2b:4e:9c:a6:72:21:0e:c9:63:42:c5:53:91: 6b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:43:C8:59:D4:F2:FC:66:03:E6:69:81:DC:E3:DD:89:C0:D0:6E:79 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7100::/40 Signature Algorithm: sha256WithRSAEncryption a2:d7:a7:d4:c3:0f:82:37:1a:e5:53:96:b5:c1:a4:4c:ce:88: a6:32:60:ed:e3:1f:09:cd:c7:ed:35:b7:94:13:f0:28:99:04: df:78:42:6a:50:87:a4:6a:8d:d2:df:d8:aa:b9:a8:92:42:f4: 19:52:94:c0:1e:27:db:91:45:06:cf:ed:2b:be:e0:b1:e8:94: 1f:7d:a8:80:a2:27:44:5f:e3:9f:f4:b6:45:de:72:cf:b5:61: af:dc:2b:67:06:68:4c:8a:4a:45:c1:ea:d3:d0:a8:01:93:81: b9:25:33:d9:f6:96:b5:6d:cc:79:a0:c3:6b:4b:d5:02:7b:de: 24:e5:97:fc:a8:e3:b2:3a:52:98:ab:59:ca:eb:87:b5:62:52: be:c3:4d:3f:02:f9:3a:a1:3c:da:fb:3e:ba:e3:a0:87:50:c6: be:bf:21:0b:43:ed:2b:ec:ba:c2:eb:c0:54:e3:d9:d2:c9:e3: 70:06:8a:b2:01:3f:69:3a:b0:d4:33:8c:4b:64:2e:b8:c2:b4: e5:d3:81:db:78:37:1a:c8:08:6e:eb:a5:04:82:f8:3d:4e:9f: 5e:ca:9b:a1:a6:a0:7d:3c:ca:36:cc:b3:3b:07:ef:3b:51:83: 47:09:0b:2f:3f:22:6e:3f:d8:c8:7a:ce:2c:6e:a9:81:10:50: d5:7c:55:ba -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUiTLmtPlnYrnk8QXBX5WPjdYI/MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjgwNzQxMjlaFw0yNjA1MjcwNzQ2MjlaMDMxMTAvBgNV BAMTKDdBNDNDODU5RDRGMkZDNjYwM0U2Njk4MURDRTNERDg5QzBEMDZFNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/8qOAuDnUvZPlKRBTxJU7vDx VOxqK42J/GNzQuEVc5nk1ZLcYBgoJIMsIBPERYsMas51S89Sa1/70iobvmO8UZy9 yrwfn8xTOFwnCgiGaaLvLhVamdrypvdVfEJCKOzzbcOPqc+0H6AMCJfRstSVstgH m2gSXaFhLZpTgfiH6mtsMXZqbtaCRD1WX9xoqiFvk5rjpPJouz9hoTs7IwyQ0wE6 fjXP1u3+yCdDMVOtPD8nx5OXpUyAv6BwsJ/LfI0kPF79wU9EXZAWGu5WbquzLzmU vJ/AhORkkf9uFEjYRd4SDGLq09C5+Hiy4qPXXIcFK06cpnIhDsljQsVTkWs7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUekPIWdTy/GYD5mmB3OPdicDQbnkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA5NTc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXEwDQYJKoZIhvcNAQELBQADggEBAKLX p9TDD4I3GuVTlrXBpEzOiKYyYO3jHwnNx+01t5QT8CiZBN94QmpQh6RqjdLf2Kq5 qJJC9BlSlMAeJ9uRRQbP7Su+4LHolB99qICiJ0Rf45/0tkXecs+1Ya/cK2cGaEyK SkXB6tPQqAGTgbklM9n2lrVtzHmgw2tL1QJ73iTll/yo47I6UpirWcrrh7ViUr7D TT8C+TqhPNr7PrrjoIdQxr6/IQtD7SvsusLrwFTj2dLJ43AGirIBP2k6sNQzjEtk LrjCtOXTgdt4NxrICG7rpQSC+D1On17Km6GmoH08yjbMszsH7ztRg0cJCy8/Im4/ 2Mh6zixuqYEQUNV8Vbo= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:35 2025 by rpki-client