$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213326.roa File: AS213326.roa (raw, json) Hash identifier: N1hUg/LqcsmgIqBKJiJ8QTnl8wzf+yAUjoW3rNRLZb8= Subject key identifier: 53:43:3A:83:98:3C:27:9D:26:B9:AF:3B:08:B8:9B:DD:9E:98:A9:5A Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7A16073644DC2A256ED821F9485092860158FD73 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213326.roa Signing time: Thu 15 May 2025 10:46:21 +0000 ROA not before: Thu 15 May 2025 10:41:21 +0000 ROA not after: Thu 14 May 2026 10:46:21 +0000 asID: 213326 IP address blocks: 2a06:9f81:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 04:55:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:16:07:36:44:dc:2a:25:6e:d8:21:f9:48:50:92:86:01:58:fd:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 15 10:41:21 2025 GMT Not After : May 14 10:46:21 2026 GMT Subject: CN=53433A83983C279D26B9AF3B08B89BDD9E98A95A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5c:df:b9:de:83:77:89:2a:07:9a:64:44:57: 32:79:9e:0a:ea:00:4c:56:29:5a:89:d7:75:2c:e9: b5:c5:e0:a1:07:ce:05:77:9b:a6:8f:84:24:11:a4: 3c:20:58:72:ae:54:31:d9:bf:89:a8:bd:f4:5c:b0: b1:07:6e:69:66:2f:60:28:b9:6f:8d:9b:36:30:98: 97:7c:a2:08:c3:f3:bd:7c:e2:02:f3:47:35:41:f4: eb:60:ea:a3:06:ef:91:90:65:39:6e:93:3b:21:37: 30:eb:a1:60:4b:3a:63:af:40:45:c6:82:da:a0:1e: 69:21:c0:59:f0:1a:9f:5b:7f:96:ea:69:cf:d8:d3: 08:e2:da:99:71:94:f5:05:c2:e4:a9:be:0f:ca:d8: c9:cf:07:57:0b:3e:74:63:b0:17:c8:67:cd:76:68: ec:c2:ea:35:06:c0:9e:2c:cc:75:1d:ef:0a:34:95: c1:06:e2:6b:cb:37:b5:c0:12:cb:6a:34:2f:93:ef: 68:41:4d:c3:7b:7d:f8:87:7d:d7:f9:02:31:a9:91: bf:2e:5c:0e:9d:de:96:87:f0:0b:a5:b7:a1:35:9e: 87:18:2a:5a:2c:2a:e7:8a:62:a5:da:fa:4e:46:40: f4:b4:3c:98:80:be:5b:a5:51:30:ea:5f:ea:b4:88: fe:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:43:3A:83:98:3C:27:9D:26:B9:AF:3B:08:B8:9B:DD:9E:98:A9:5A X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS213326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5000::/40 Signature Algorithm: sha256WithRSAEncryption 0f:0b:1e:4d:b2:36:ba:87:02:aa:8a:89:f2:db:da:b9:fc:8a: d8:68:26:02:57:1d:24:93:b0:ee:11:20:80:22:0f:b1:b8:a7: 4e:d7:94:83:35:17:19:77:5f:e8:69:aa:9c:2f:7f:c3:2f:07: ce:4e:3d:a0:c4:95:17:fe:ee:c3:c3:36:10:ed:40:5d:1e:31: 5e:9b:01:b8:15:ed:8c:fc:f0:7e:30:bd:69:42:23:7b:bb:71: b5:0b:eb:24:20:d9:67:15:8d:a0:4d:e4:70:6e:81:09:65:bf: b1:16:4d:f6:fc:7f:f7:09:cf:97:e8:67:5d:2d:82:df:eb:a7: 85:38:55:89:90:25:98:5a:62:02:7b:47:5a:e7:0d:77:53:98: 11:f4:11:8a:8b:6a:57:55:f4:66:11:b1:2c:35:19:59:89:9e: e2:6c:9f:f4:c0:34:19:42:4b:cd:50:2b:f2:ed:6e:0a:39:b9: 82:8a:48:d0:3b:fd:64:fc:cf:4a:f6:84:50:17:eb:dd:e9:81: 20:88:80:c2:da:9a:e7:85:41:37:b7:a5:17:d2:92:28:7a:90: c7:38:c9:07:bb:4b:ce:5b:8e:6a:5b:a7:9f:aa:54:49:f2:06: 52:66:8e:b8:0c:48:2e:5b:e9:35:a9:0e:b1:81:c0:e2:94:a6: 42:aa:0d:a3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUehYHNkTcKiVu2CH5SFCShgFY/XMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MTUxMDQxMjFaFw0yNjA1MTQxMDQ2MjFaMDMxMTAvBgNV BAMTKDUzNDMzQTgzOTgzQzI3OUQyNkI5QUYzQjA4Qjg5QkREOUU5OEE5NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAXN+53oN3iSoHmmREVzJ5ngrq AExWKVqJ13Us6bXF4KEHzgV3m6aPhCQRpDwgWHKuVDHZv4movfRcsLEHbmlmL2Ao uW+NmzYwmJd8ogjD87184gLzRzVB9Otg6qMG75GQZTlukzshNzDroWBLOmOvQEXG gtqgHmkhwFnwGp9bf5bqac/Y0wji2plxlPUFwuSpvg/K2MnPB1cLPnRjsBfIZ812 aOzC6jUGwJ4szHUd7wo0lcEG4mvLN7XAEstqNC+T72hBTcN7ffiHfdf5AjGpkb8u XA6d3paH8Ault6E1nocYKlosKueKYqXa+k5GQPS0PJiAvlulUTDqX+q0iP4rAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUU0M6g5g8J50mua87CLib3Z6YqVowHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjEzMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVAwDQYJKoZIhvcNAQELBQADggEBAA8L Hk2yNrqHAqqKifLb2rn8ithoJgJXHSSTsO4RIIAiD7G4p07XlIM1Fxl3X+hpqpwv f8MvB85OPaDElRf+7sPDNhDtQF0eMV6bAbgV7Yz88H4wvWlCI3u7cbUL6yQg2WcV jaBN5HBugQllv7EWTfb8f/cJz5foZ10tgt/rp4U4VYmQJZhaYgJ7R1rnDXdTmBH0 EYqLaldV9GYRsSw1GVmJnuJsn/TANBlCS81QK/Ltbgo5uYKKSNA7/WT8z0r2hFAX 693pgSCIgMLamueFQTe3pRfSkih6kMc4yQe7S85bjmpbp5+qVEnyBlJmjrgMSC5b 6TWpDrGBwOKUpkKqDaM= -----END CERTIFICATE-----Generated at Sat Jun 7 21:52:16 2025 by rpki-client