$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134666.roa File: AS134666.roa (raw, json) Hash identifier: Ar3ShEb18S+fuA3G6J3x9f3VkZqOkT5yeryahAMoQ3U= Subject key identifier: F9:79:A0:6E:4D:CC:EA:0D:23:13:E2:1A:ED:7E:E2:C2:AE:8E:2C:79 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 46F70C4FC40FEF5DD4CA264185121576EE816977 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134666.roa Signing time: Fri 04 Jul 2025 06:53:05 +0000 ROA not before: Fri 04 Jul 2025 06:48:05 +0000 ROA not after: Fri 03 Jul 2026 06:53:05 +0000 asID: 134666 IP address blocks: 2a0a:6040:4e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f7:0c:4f:c4:0f:ef:5d:d4:ca:26:41:85:12:15:76:ee:81:69:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:05 2025 GMT Not After : Jul 3 06:53:05 2026 GMT Subject: CN=F979A06E4DCCEA0D2313E21AED7EE2C2AE8E2C79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ad:eb:d5:a4:06:82:2d:58:68:a7:e6:83:19: 1d:67:aa:c3:d9:e0:68:5b:57:8c:ec:7a:29:be:f6: ca:b9:ea:5c:e7:6f:87:3c:35:60:0b:e7:ba:f5:a9: 87:93:55:ff:2b:80:64:cc:20:95:82:3a:d7:ce:ba: fa:dc:56:10:db:85:4d:25:d4:00:27:fd:7d:4d:52: c1:8c:9a:41:7d:95:b5:84:ae:39:f7:02:5d:cb:a2: d0:86:9f:d4:72:e8:27:c2:7b:25:49:40:df:2f:1d: 30:5a:71:3a:0d:41:19:45:26:ca:d1:91:33:96:e1: 86:5e:6d:00:47:b6:5c:f4:e2:0f:ba:75:4f:48:73: 63:0d:48:d2:c3:ae:22:59:33:a0:14:47:b6:52:ad: 16:f7:3b:77:66:38:5d:72:4c:44:b8:2a:53:fb:29: fb:54:0d:f3:48:61:56:06:86:40:9d:b3:d6:b2:c9: b8:3f:17:50:a1:09:b1:9f:15:d5:c9:f1:a8:a4:40: 98:6b:54:ba:fe:46:66:c2:b3:24:54:44:a3:da:bc: 84:10:26:b5:9b:c2:b7:82:e3:ee:b2:86:6d:23:02: 02:31:13:92:1d:c0:75:8c:2a:88:14:27:42:fe:9a: e7:6e:3e:c4:1e:4b:8d:bc:98:9f:fb:a9:28:07:ef: 1f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:79:A0:6E:4D:CC:EA:0D:23:13:E2:1A:ED:7E:E2:C2:AE:8E:2C:79 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4e00::/40 Signature Algorithm: sha256WithRSAEncryption 0c:53:7a:f6:c7:c9:01:43:6c:c8:52:9a:ab:12:1a:9d:6d:39: 0e:d2:7f:c8:41:f6:c6:73:5d:ed:0b:88:1f:ec:43:9c:e1:11: 78:47:cd:55:80:86:64:b1:bf:19:56:ff:c2:63:40:f3:c1:d7: eb:5d:97:7d:78:02:40:5e:40:60:94:35:7e:9c:7f:15:94:f5: 9e:e1:cc:73:95:60:7b:04:90:8b:77:00:af:79:21:83:aa:96: 42:5e:a9:97:6f:e3:c0:ca:e7:49:13:4f:74:ac:70:bb:fc:24: 6e:34:43:9d:4e:f7:dc:1e:91:6d:64:0f:1a:96:8f:a9:f5:e6: ce:46:82:2b:85:ab:0c:46:8d:94:2b:5c:5c:22:d5:83:9c:29: 0c:86:c9:b7:40:47:13:0f:da:bb:64:65:0d:8a:77:58:9a:a3: 96:6f:c0:66:c6:20:99:b5:d1:d8:04:fb:ec:5a:f7:fe:a4:99: ee:10:43:10:2d:db:a9:03:78:96:3a:50:16:06:cb:84:c7:13: 81:16:11:9e:1b:58:63:13:ca:6e:57:bf:1e:4b:2a:fb:3e:2e: ca:08:71:aa:c4:95:6c:07:29:cb:79:72:74:d1:ba:21:d6:67: cc:34:69:a4:70:9c:04:55:4a:ac:d7:f1:bf:96:32:e9:03:75: a9:50:bc:dc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURvcMT8QP713UyiZBhRIVdu6BaXcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDVaFw0yNjA3MDMwNjUzMDVaMDMxMTAvBgNV BAMTKEY5NzlBMDZFNERDQ0VBMEQyMzEzRTIxQUVEN0VFMkMyQUU4RTJDNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErevVpAaCLVhop+aDGR1nqsPZ 4GhbV4zseim+9sq56lznb4c8NWAL57r1qYeTVf8rgGTMIJWCOtfOuvrcVhDbhU0l 1AAn/X1NUsGMmkF9lbWErjn3Al3LotCGn9Ry6CfCeyVJQN8vHTBacToNQRlFJsrR kTOW4YZebQBHtlz04g+6dU9Ic2MNSNLDriJZM6AUR7ZSrRb3O3dmOF1yTES4KlP7 KftUDfNIYVYGhkCds9ayybg/F1ChCbGfFdXJ8aikQJhrVLr+RmbCsyRURKPavIQQ JrWbwreC4+6yhm0jAgIxE5IdwHWMKogUJ0L+muduPsQeS428mJ/7qSgH7x9VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+Xmgbk3M6g0jE+Ia7X7iwq6OLHkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM0NjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQE4wDQYJKoZIhvcNAQELBQADggEBAAxT evbHyQFDbMhSmqsSGp1tOQ7Sf8hB9sZzXe0LiB/sQ5zhEXhHzVWAhmSxvxlW/8Jj QPPB1+tdl314AkBeQGCUNX6cfxWU9Z7hzHOVYHsEkIt3AK95IYOqlkJeqZdv48DK 50kTT3SscLv8JG40Q51O99wekW1kDxqWj6n15s5GgiuFqwxGjZQrXFwi1YOcKQyG ybdARxMP2rtkZQ2Kd1iao5ZvwGbGIJm10dgE++xa9/6kme4QQxAt26kDeJY6UBYG y4THE4EWEZ4bWGMTym5Xvx5LKvs+LsoIcarElWwHKct5cnTRuiHWZ8w0aaRwnARV SqzX8b+WMukDdalQvNw= -----END CERTIFICATE-----Generated at Sat Jul 5 03:49:38 2025 by rpki-client