$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa File: AS210476.roa (raw, json) Hash identifier: TH37GqGJiEc+s9F91aaxGwKRPs5zl3Fakxt8zec4hLI= Subject key identifier: 74:C1:83:5E:6C:50:B8:3E:F4:99:B8:D8:56:5E:C6:72:4F:52:51:52 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7CA49DE5BE348113E4440DA2CBC7D882A779525D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa Signing time: Thu 24 Apr 2025 11:46:12 +0000 ROA not before: Thu 24 Apr 2025 11:41:12 +0000 ROA not after: Thu 23 Apr 2026 11:46:12 +0000 asID: 210476 IP address blocks: 2a05:dfc1:5b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:a4:9d:e5:be:34:81:13:e4:44:0d:a2:cb:c7:d8:82:a7:79:52:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 24 11:41:12 2025 GMT Not After : Apr 23 11:46:12 2026 GMT Subject: CN=74C1835E6C50B83EF499B8D8565EC6724F525152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ac:a0:65:00:22:96:9d:55:dd:fa:01:28:dd: ea:e4:d9:67:7d:66:0f:1f:2f:fe:e1:e4:3f:57:f7: 8b:3d:d1:c9:31:26:10:d5:e1:e5:b5:4b:67:2a:3d: 54:7b:b1:7e:e9:bc:11:86:22:19:69:0f:5d:6e:24: 31:ac:de:37:c9:21:9a:9c:9f:33:a9:88:41:08:62: a7:19:8a:db:4d:00:7b:64:f0:eb:c8:4c:6c:ad:95: 3a:82:e0:25:4e:85:44:cb:fe:61:0f:31:ec:e2:8a: 19:da:ef:0f:31:7d:ea:c0:c0:af:49:a6:d3:d9:37: 87:ae:65:e7:cb:8b:65:5e:f5:8f:a2:59:68:26:dc: 45:78:91:11:2b:ad:2e:3f:b5:4e:0f:00:d8:20:5b: 7f:16:19:a8:2c:fc:7d:c4:e6:74:8f:02:43:1b:30: 83:58:23:b5:25:ce:43:74:67:e5:75:67:7c:24:de: 56:d6:d8:b6:19:f4:2f:e8:2f:ec:1a:dd:a2:c5:0d: c9:de:78:69:c5:97:bd:0c:7d:58:3e:5c:78:a7:87: f4:82:6a:45:e5:90:8f:ba:55:a2:49:32:a0:ab:ce: eb:6f:70:3c:8d:1d:b0:3d:9d:35:ae:a4:c5:4b:47: 83:d4:e4:b3:73:ca:48:08:56:d9:91:a1:e1:4f:43: 59:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C1:83:5E:6C:50:B8:3E:F4:99:B8:D8:56:5E:C6:72:4F:52:51:52 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS210476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5b00::/40 Signature Algorithm: sha256WithRSAEncryption 40:07:92:69:14:52:51:58:4a:05:de:d5:58:c2:60:07:cc:18: 5c:89:eb:b5:9b:31:78:f2:b4:b4:c8:d3:0f:03:2c:65:c2:e6: 2b:78:78:37:d4:e7:8f:e2:d5:dd:91:d1:21:b5:b5:a8:98:62: a3:45:86:42:39:b1:ee:f4:1a:97:42:b2:be:21:1c:9d:12:34: 29:fe:d5:98:2f:92:84:f0:92:9d:94:bb:c2:a0:20:91:8d:a6: d2:03:aa:b6:60:bf:d1:74:d1:7e:d8:32:20:c8:69:09:cb:37: a4:9d:13:f0:a6:7e:2f:3d:b1:39:09:38:ad:a6:ca:73:6e:eb: c0:b0:09:e1:ed:18:a1:6f:6c:2c:5f:c0:e8:41:25:b3:a5:68: 5d:b2:3f:f0:e9:7c:2e:fc:94:6e:93:78:a0:f4:2a:cb:a4:f2: f1:2c:78:d9:88:f4:e0:00:f8:70:12:34:85:8b:20:4c:68:12: a4:1f:79:49:93:fe:f0:83:08:cb:76:79:ea:59:38:a0:af:02: d6:32:eb:33:8f:cb:5c:ea:44:23:d0:61:a8:23:97:6d:f9:bf: 72:54:78:e3:c8:16:4e:4b:c6:d6:c8:1e:23:cb:05:02:0b:06: bc:03:58:66:4b:9b:77:c2:d9:d0:b3:ea:97:00:1b:32:12:79: d5:c8:f7:7c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfKSd5b40gRPkRA2iy8fYgqd5Ul0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA0MjQxMTQxMTJaFw0yNjA0MjMxMTQ2MTJaMDMxMTAvBgNV BAMTKDc0QzE4MzVFNkM1MEI4M0VGNDk5QjhEODU2NUVDNjcyNEY1MjUxNTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTrKBlACKWnVXd+gEo3erk2Wd9 Zg8fL/7h5D9X94s90ckxJhDV4eW1S2cqPVR7sX7pvBGGIhlpD11uJDGs3jfJIZqc nzOpiEEIYqcZittNAHtk8OvITGytlTqC4CVOhUTL/mEPMeziihna7w8xferAwK9J ptPZN4euZefLi2Ve9Y+iWWgm3EV4kRErrS4/tU4PANggW38WGags/H3E5nSPAkMb MINYI7UlzkN0Z+V1Z3wk3lbW2LYZ9C/oL+wa3aLFDcneeGnFl70MfVg+XHinh/SC akXlkI+6VaJJMqCrzutvcDyNHbA9nTWupMVLR4PU5LNzykgIVtmRoeFPQ1mnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdMGDXmxQuD70mbjYVl7Gck9SUVIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEwNDc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVswDQYJKoZIhvcNAQELBQADggEBAEAH kmkUUlFYSgXe1VjCYAfMGFyJ67WbMXjytLTI0w8DLGXC5it4eDfU54/i1d2R0SG1 taiYYqNFhkI5se70GpdCsr4hHJ0SNCn+1ZgvkoTwkp2Uu8KgIJGNptIDqrZgv9F0 0X7YMiDIaQnLN6SdE/Cmfi89sTkJOK2mynNu68CwCeHtGKFvbCxfwOhBJbOlaF2y P/DpfC78lG6TeKD0Ksuk8vEseNmI9OAA+HASNIWLIExoEqQfeUmT/vCDCMt2eepZ OKCvAtYy6zOPy1zqRCPQYagjl235v3JUeOPIFk5LxtbIHiPLBQILBrwDWGZLm3fC 2dCz6pcAGzISedXI93w= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:36 2025 by rpki-client