$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa File: AS48718.roa (raw, json) Hash identifier: TeiCYDDdvJ28XJplxLQeyx8VGtCTYnv/jvc2sGl8ClY= Subject key identifier: CB:CB:C8:A1:66:0B:40:02:46:8C:06:BB:2F:3E:EE:AE:94:C8:03:22 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0C98049501252BB0EB66B41DDAD5C9DD345F1FDC Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa Signing time: Mon 26 May 2025 14:46:23 +0000 ROA not before: Mon 26 May 2025 14:41:23 +0000 ROA not after: Mon 25 May 2026 14:46:23 +0000 asID: 48718 IP address blocks: 2a05:dfc1:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:98:04:95:01:25:2b:b0:eb:66:b4:1d:da:d5:c9:dd:34:5f:1f:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 26 14:41:23 2025 GMT Not After : May 25 14:46:23 2026 GMT Subject: CN=CBCBC8A1660B4002468C06BB2F3EEEAE94C80322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:4f:3d:cd:47:e3:02:e1:72:3d:80:bc:5f: 4d:9e:35:58:52:3b:4d:3c:74:58:17:2a:47:59:a2: 89:03:a0:a0:c1:02:5e:b1:98:b4:44:be:84:fd:d4: ee:93:4a:b5:8c:86:44:b0:78:ef:8b:a6:ac:d5:01: cc:b2:34:72:a7:64:fa:69:f2:6a:72:12:1b:52:2d: 66:30:b8:b1:05:50:30:8b:4f:8b:2c:b0:fb:48:0c: 84:6e:68:4f:26:bf:83:db:13:47:fc:c7:e5:2c:29: d3:4e:97:e9:c4:c8:4e:33:b1:45:d1:60:6a:34:8c: 49:bd:de:fa:da:7a:50:06:ff:81:89:7e:94:47:a4: e1:ae:d4:ab:2e:48:66:8f:99:b2:f9:d3:e6:11:d3: 51:33:8a:8a:af:0e:f4:d0:29:93:a4:7c:96:e5:cc: 3c:df:a6:73:2e:1e:26:bb:40:94:1b:ac:88:45:0c: da:9d:2c:98:71:2e:f4:40:8f:48:32:0d:42:64:68: 75:10:82:92:2a:ee:73:88:47:2f:c9:1e:5c:2c:2a: 32:e9:f7:38:1d:9d:fc:e6:5f:e5:32:d2:8c:d2:d6: 48:da:c4:7f:be:b0:3c:9c:1d:c9:26:30:4a:c1:87: 28:ef:16:59:ea:ea:23:aa:2b:60:74:ef:1f:d3:d6: 40:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CB:C8:A1:66:0B:40:02:46:8C:06:BB:2F:3E:EE:AE:94:C8:03:22 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48718.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7400::/40 Signature Algorithm: sha256WithRSAEncryption 4a:d4:4e:88:df:cd:53:45:b6:57:e8:7e:88:7c:78:15:79:41: 61:de:ba:39:7b:05:12:ae:a8:55:da:2c:01:32:45:f0:cc:48: df:d3:10:76:49:4c:6e:60:fe:5d:98:f0:13:c8:3b:9e:93:f7: cd:cc:e3:2a:e1:24:76:1d:a8:e3:b0:02:33:8a:62:12:f2:bb: 3a:74:0a:d6:79:1e:1d:32:3b:34:98:97:48:16:47:b3:75:f5: fa:01:26:03:11:da:35:f6:10:35:05:75:e1:7f:79:9f:b6:f4: 4f:57:ea:26:7e:b1:0a:5c:1f:ba:23:9e:4a:7a:24:f3:b8:f4: 28:17:b7:82:43:0a:64:72:9f:3f:e9:0f:8c:d3:61:e5:c2:6c: f6:2f:c7:62:76:1d:9e:49:a1:a9:d5:83:d7:57:75:03:6c:6b: fe:ea:95:69:b1:0f:47:c6:48:c6:49:d2:f9:d6:e2:2d:b2:ba: 7b:39:80:ab:3c:38:81:c9:d9:44:ef:80:45:2a:43:03:29:71: 42:44:5a:0b:28:29:1d:e2:0c:ef:11:06:13:4e:ef:d7:8f:f7: 3c:ec:c5:1b:c3:5f:72:c4:fd:20:8a:b6:3c:4c:83:f7:5e:e0: 7e:e9:50:fd:fe:3f:f6:29:0b:da:48:ed:61:1c:15:92:6a:62: 3b:cb:a7:46 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUDJgElQElK7DrZrQd2tXJ3TRfH9wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjYxNDQxMjNaFw0yNjA1MjUxNDQ2MjNaMDMxMTAvBgNV BAMTKENCQ0JDOEExNjYwQjQwMDI0NjhDMDZCQjJGM0VFRUFFOTRDODAzMjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDQ089zUfjAuFyPYC8X02eNVhS O008dFgXKkdZookDoKDBAl6xmLREvoT91O6TSrWMhkSweO+LpqzVAcyyNHKnZPpp 8mpyEhtSLWYwuLEFUDCLT4sssPtIDIRuaE8mv4PbE0f8x+UsKdNOl+nEyE4zsUXR YGo0jEm93vraelAG/4GJfpRHpOGu1KsuSGaPmbL50+YR01EzioqvDvTQKZOkfJbl zDzfpnMuHia7QJQbrIhFDNqdLJhxLvRAj0gyDUJkaHUQgpIq7nOIRy/JHlwsKjLp 9zgdnfzmX+Uy0ozS1kjaxH++sDycHckmMErBhyjvFlnq6iOqK2B07x/T1kCNAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUy8vIoWYLQAJGjAa7Lz7urpTIAyIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDg3MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BdDANBgkqhkiG9w0BAQsFAAOCAQEAStRO iN/NU0W2V+h+iHx4FXlBYd66OXsFEq6oVdosATJF8MxI39MQdklMbmD+XZjwE8g7 npP3zczjKuEkdh2o47ACM4piEvK7OnQK1nkeHTI7NJiXSBZHs3X1+gEmAxHaNfYQ NQV14X95n7b0T1fqJn6xClwfuiOeSnok87j0KBe3gkMKZHKfP+kPjNNh5cJs9i/H YnYdnkmhqdWD11d1A2xr/uqVabEPR8ZIxknS+dbiLbK6ezmAqzw4gcnZRO+ARSpD AylxQkRaCygpHeIM7xEGE07v14/3POzFG8NfcsT9IIq2PEyD917gfulQ/f4/9ikL 2kjtYRwVkmpiO8unRg== -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:44 2025 by rpki-client