$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS131640.roa File: AS131640.roa (raw, json) Hash identifier: vucZWBXfDAIHe/O7wVLrlz3xnUvMPpaJl1GarhR3A8I= Subject key identifier: 02:E6:D0:C0:8B:40:98:EE:F5:74:19:D5:87:95:8C:2D:D3:E3:4B:19 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 21390CE48F7639D2A4E1BDE58D6FDD94DB79F204 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS131640.roa Signing time: Fri 04 Jul 2025 06:53:24 +0000 ROA not before: Fri 04 Jul 2025 06:48:24 +0000 ROA not after: Fri 03 Jul 2026 06:53:24 +0000 asID: 131640 IP address blocks: 2a05:dfc1:8b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:39:0c:e4:8f:76:39:d2:a4:e1:bd:e5:8d:6f:dd:94:db:79:f2:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:24 2025 GMT Not After : Jul 3 06:53:24 2026 GMT Subject: CN=02E6D0C08B4098EEF57419D587958C2DD3E34B19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:04:08:5b:e8:41:c3:69:24:9d:f9:42:8a:2f: 43:e8:ae:f1:b6:a8:6e:ef:17:10:2f:b4:fc:75:23: 52:12:d4:3f:75:09:38:eb:ac:10:ff:24:e8:6a:d2: fa:c0:a3:9d:33:1b:ae:44:e7:32:b5:9c:d4:b8:4e: ee:cb:a6:05:ee:0f:22:59:ce:11:b3:42:46:40:2e: 96:e8:0f:20:71:fb:1e:48:33:f1:37:78:81:ce:26: a1:ed:69:af:d9:ba:76:fd:02:f3:e3:a1:cf:75:6d: 54:55:dc:62:c4:36:6f:15:c7:61:71:eb:ec:90:98: 2c:c7:2c:34:69:58:12:fb:ea:2f:e2:1c:e9:d9:b6: 13:78:6e:dc:6e:fd:18:72:b4:92:1b:7e:d3:12:f0: 44:16:b1:33:1e:2a:34:18:e9:23:59:0a:15:fa:8e: 45:69:2d:38:4b:fe:3a:af:d1:78:54:25:be:fe:f6: 68:b1:e8:ac:ac:15:e0:dd:e2:21:00:74:83:4b:49: 12:11:a4:4e:d4:bc:f4:6f:41:df:69:1e:45:56:4d: bf:f8:b7:6d:f6:07:04:a2:6c:c0:20:d3:40:fc:2d: 14:f0:47:6b:18:b7:f8:b5:54:c3:92:c6:68:fe:47: 09:a0:00:75:61:65:9f:bb:6f:b2:9f:88:73:ca:1c: e3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E6:D0:C0:8B:40:98:EE:F5:74:19:D5:87:95:8C:2D:D3:E3:4B:19 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS131640.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8b00::/40 Signature Algorithm: sha256WithRSAEncryption 24:9b:53:c4:c2:b0:32:d9:39:39:f7:11:b8:cb:74:6a:76:bd: a8:22:7b:d5:c4:8c:27:2a:7f:94:91:4b:33:2e:a2:49:5d:4b: 34:fd:59:a4:41:57:a0:da:6a:a1:23:9a:5a:69:3d:87:d4:62: dd:4d:f2:26:dd:80:81:ef:2a:bd:d9:50:81:5a:3e:0d:be:96: ed:e4:3f:5f:92:9d:25:3b:c3:77:a1:42:3d:f1:3c:b7:b2:ef: 8c:70:4c:e0:9a:9a:14:2f:42:71:0a:6f:47:35:ae:a7:12:d0: e4:b7:ff:04:4e:65:24:5f:b8:c9:a5:e4:f9:30:82:a7:06:9f: fa:e9:73:f7:07:d2:e6:1e:7f:20:d6:07:4a:69:3c:70:e0:f0: d9:7d:3b:62:00:f4:41:54:6d:ef:d0:d9:55:55:40:c6:06:cc: f4:f6:f4:04:9f:47:11:b1:82:e8:b6:b0:2c:af:77:8c:91:2f: d3:8b:b0:2f:44:a3:45:59:5c:f7:8b:53:cd:0b:a6:21:de:da: c4:01:94:56:4a:9e:a9:9c:2b:19:f0:4b:e7:aa:df:de:3c:bf: 5f:c7:bc:80:8d:7c:24:67:82:07:44:7e:6a:36:69:cc:ac:d5: 16:85:d4:1b:9a:87:6c:c5:46:2e:e2:3a:b8:2b:df:95:c8:6e: 9f:05:4c:b1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUITkM5I92OdKk4b3ljW/dlNt58gQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjRaFw0yNjA3MDMwNjUzMjRaMDMxMTAvBgNV BAMTKDAyRTZEMEMwOEI0MDk4RUVGNTc0MTlENTg3OTU4QzJERDNFMzRCMTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwBAhb6EHDaSSd+UKKL0PorvG2 qG7vFxAvtPx1I1IS1D91CTjrrBD/JOhq0vrAo50zG65E5zK1nNS4Tu7LpgXuDyJZ zhGzQkZALpboDyBx+x5IM/E3eIHOJqHtaa/Zunb9AvPjoc91bVRV3GLENm8Vx2Fx 6+yQmCzHLDRpWBL76i/iHOnZthN4btxu/RhytJIbftMS8EQWsTMeKjQY6SNZChX6 jkVpLThL/jqv0XhUJb7+9mix6KysFeDd4iEAdINLSRIRpE7UvPRvQd9pHkVWTb/4 t232BwSibMAg00D8LRTwR2sYt/i1VMOSxmj+RwmgAHVhZZ+7b7KfiHPKHOP7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAubQwItAmO71dBnVh5WMLdPjSxkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTMxNjQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYswDQYJKoZIhvcNAQELBQADggEBACSb U8TCsDLZOTn3EbjLdGp2vagie9XEjCcqf5SRSzMuokldSzT9WaRBV6DaaqEjmlpp PYfUYt1N8ibdgIHvKr3ZUIFaPg2+lu3kP1+SnSU7w3ehQj3xPLey74xwTOCamhQv QnEKb0c1rqcS0OS3/wROZSRfuMml5PkwgqcGn/rpc/cH0uYefyDWB0ppPHDg8Nl9 O2IA9EFUbe/Q2VVVQMYGzPT29ASfRxGxgui2sCyvd4yRL9OLsC9Eo0VZXPeLU80L piHe2sQBlFZKnqmcKxnwS+eq3948v1/HvICNfCRnggdEfmo2acys1RaF1Buah2zF Ri7iOrgr35XIbp8FTLE= -----END CERTIFICATE-----Generated at Sat Jul 5 03:43:15 2025 by rpki-client