$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: J9HstmitsmHJUCDh7ymeHiP14Ds1e/azAmvRbMNV5fY= Subject key identifier: E1:6B:A7:A6:B7:77:19:51:76:61:EF:CD:C3:1D:54:84:CD:46:75:C2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0489A42D5BC73820521C2B2003A629918162693F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa Signing time: Tue 27 May 2025 10:46:28 +0000 ROA not before: Tue 27 May 2025 10:41:28 +0000 ROA not after: Tue 26 May 2026 10:46:28 +0000 asID: 210475 IP address blocks: 2a05:dfc1:7700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:89:a4:2d:5b:c7:38:20:52:1c:2b:20:03:a6:29:91:81:62:69:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 27 10:41:28 2025 GMT Not After : May 26 10:46:28 2026 GMT Subject: CN=E16BA7A6B77719517661EFCDC31D5484CD4675C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:83:f8:11:7d:1e:48:29:5a:59:85:e6:15:31: 06:b8:d8:4e:bb:88:fa:75:7c:e7:a0:f1:76:f8:9b: 54:3f:67:c3:86:b4:ab:b1:08:5b:2f:5f:42:20:2a: 73:9a:7a:82:72:0a:43:53:52:cf:d6:ed:46:c9:6a: 4a:ac:42:46:14:34:5b:23:1f:69:a6:b1:ae:37:ec: d6:9e:cc:9e:c9:aa:5b:a5:48:55:8c:1a:7b:7d:c4: 7e:d9:53:63:75:97:8b:49:b3:f7:33:5d:18:f5:26: 04:06:de:76:11:ef:e5:80:dd:e8:a1:df:88:07:74: 67:0b:cb:51:88:fe:2f:f1:a3:8a:b3:cb:24:34:05: de:5d:39:1a:de:a0:a9:c0:3a:fc:c0:46:e6:01:e7: 52:33:83:15:c1:21:70:cb:f9:49:62:71:32:21:55: 5d:b2:6a:44:58:86:fa:b1:21:c4:46:75:bc:09:fc: 3a:ba:4b:b6:54:55:2c:d4:ed:fe:ea:95:75:17:a1: 1b:12:2e:b7:0d:a8:54:d2:e2:2d:04:19:70:08:e7: d1:a4:85:7f:e0:b3:67:e8:c0:03:02:c7:27:a0:34: 6e:a1:b0:12:34:b3:8f:9b:cc:e0:19:14:e2:d2:db: 92:73:40:72:74:00:14:f0:65:21:11:2b:18:a3:32: 0a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6B:A7:A6:B7:77:19:51:76:61:EF:CD:C3:1D:54:84:CD:46:75:C2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7700::/40 Signature Algorithm: sha256WithRSAEncryption 1a:6e:6f:5b:a4:cf:6a:46:ac:af:dc:f2:4b:16:cb:ec:ed:77: 76:e3:8b:a2:85:f1:86:48:43:d1:7d:70:8f:2f:2d:2c:0b:ef: d4:50:d0:d3:f4:ba:84:fa:28:46:27:a6:3f:4f:6c:d1:50:8a: 4f:17:5e:6c:1b:38:6a:2d:d6:66:77:cf:cb:a8:aa:ec:22:f8: 46:27:0f:61:14:fc:3d:00:42:a2:a4:74:16:2b:53:82:bd:33: 0e:09:d9:9f:a7:e7:5e:1d:df:c5:4c:f5:e0:32:ff:c7:82:1c: 7b:b2:1a:1a:a5:d0:a9:4c:be:3a:8b:90:90:d6:dc:68:15:57: d6:50:5f:48:e1:e1:b1:0d:13:39:bd:2b:33:1f:56:93:3a:d4: fb:d5:40:be:00:dd:cf:c4:3c:9e:e2:71:28:fa:63:3f:21:d2: 62:ee:94:8b:54:31:1b:5f:9e:d6:8d:7e:6f:3e:08:62:b9:26: 67:29:75:a6:e5:3d:b7:9c:56:70:b9:16:e6:9b:33:fd:42:74: 96:5e:ea:98:d7:f1:9a:05:bc:a5:80:b0:a0:a6:92:88:34:0f: 9e:ff:cf:df:92:32:6f:6f:4d:60:ef:47:9e:98:8c:81:26:e7: 0c:42:5a:66:7c:55:ed:fe:f8:18:55:c4:b0:96:98:1d:a0:ab: 18:a4:72:18 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBImkLVvHOCBSHCsgA6YpkYFiaT8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjcxMDQxMjhaFw0yNjA1MjYxMDQ2MjhaMDMxMTAvBgNV BAMTKEUxNkJBN0E2Qjc3NzE5NTE3NjYxRUZDREMzMUQ1NDg0Q0Q0Njc1QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHg/gRfR5IKVpZheYVMQa42E67 iPp1fOeg8Xb4m1Q/Z8OGtKuxCFsvX0IgKnOaeoJyCkNTUs/W7UbJakqsQkYUNFsj H2mmsa437NaezJ7JqlulSFWMGnt9xH7ZU2N1l4tJs/czXRj1JgQG3nYR7+WA3eih 34gHdGcLy1GI/i/xo4qzyyQ0Bd5dORreoKnAOvzARuYB51IzgxXBIXDL+UlicTIh VV2yakRYhvqxIcRGdbwJ/Dq6S7ZUVSzU7f7qlXUXoRsSLrcNqFTS4i0EGXAI59Gk hX/gs2fowAMCxyegNG6hsBI0s4+bzOAZFOLS25JzQHJ0ABTwZSERKxijMgr1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4Wunprd3GVF2Ye/Nwx1UhM1GdcIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXcwDQYJKoZIhvcNAQELBQADggEBABpu b1ukz2pGrK/c8ksWy+ztd3bji6KF8YZIQ9F9cI8vLSwL79RQ0NP0uoT6KEYnpj9P bNFQik8XXmwbOGot1mZ3z8uoquwi+EYnD2EU/D0AQqKkdBYrU4K9Mw4J2Z+n514d 38VM9eAy/8eCHHuyGhql0KlMvjqLkJDW3GgVV9ZQX0jh4bENEzm9KzMfVpM61PvV QL4A3c/EPJ7icSj6Yz8h0mLulItUMRtfntaNfm8+CGK5JmcpdablPbecVnC5Fuab M/1CdJZe6pjX8ZoFvKWAsKCmkog0D57/z9+SMm9vTWDvR56YjIEm5wxCWmZ8Ve3+ +BhVxLCWmB2gqxikchg= -----END CERTIFICATE-----Generated at Sat Jun 7 23:38:16 2025 by rpki-client