$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134666.roa File: AS134666.roa (raw, json) Hash identifier: iYJMD70QniZ48r45p6kwl94GuO15D9VkBb97Cqqq/Js= Subject key identifier: C4:2F:A9:13:20:0F:00:C1:0F:69:89:DD:9D:75:F1:C2:96:9F:06:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5B7E1E21059ACFB28F1B6C2BA044461976E170B5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134666.roa Signing time: Fri 05 Jun 2026 07:12:40 +0000 ROA not before: Fri 05 Jun 2026 07:07:40 +0000 ROA not after: Fri 04 Jun 2027 07:12:40 +0000 asID: 134666 IP address blocks: 2a0a:6040:4e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 09 Jun 2026 14:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:7e:1e:21:05:9a:cf:b2:8f:1b:6c:2b:a0:44:46:19:76:e1:70:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:40 2026 GMT Not After : Jun 4 07:12:40 2027 GMT Subject: CN=C42FA913200F00C10F6989DD9D75F1C2969F0693 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a1:dc:5a:34:8b:75:d7:de:82:3c:09:d5:1d: 65:d7:f0:66:4e:1b:58:c5:d7:7c:8f:da:8e:61:7c: e6:ab:38:a0:01:06:80:31:f4:a0:7b:06:3e:78:3a: 79:c1:84:83:40:06:74:99:28:85:f3:fd:63:ab:68: 0a:8a:31:81:9b:22:96:af:fd:4c:c1:6b:88:b2:62: 04:fc:22:53:ce:74:ff:b4:d8:eb:fb:4c:e8:62:d7: 4d:e7:ad:11:9d:cd:ea:c2:4b:64:f2:d7:d6:8e:3b: 81:d3:ba:42:a6:dc:56:47:dd:67:67:99:b0:cf:b5: 06:d7:33:44:a5:23:00:7e:a2:ef:11:6a:33:88:40: 4f:f5:2d:1f:ad:94:7d:8d:c8:79:42:ac:3d:96:6d: 1c:22:07:48:de:2f:56:84:d8:ee:69:05:b3:6f:23: 62:0b:a9:80:b6:ec:04:96:34:92:09:9d:40:d7:f4: c7:b2:d6:d8:fb:ce:3f:1a:89:fb:44:f3:05:08:7a: e6:6d:9c:62:d2:09:c5:bc:35:d1:03:95:6d:11:2f: 58:dd:76:31:3b:81:b7:bc:98:2e:45:cf:c6:56:48: ec:5d:d6:2a:f4:6b:7f:4c:7c:74:93:82:f6:32:3f: 76:59:65:a3:1f:27:af:71:6f:57:c7:fc:69:86:11: 19:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:2F:A9:13:20:0F:00:C1:0F:69:89:DD:9D:75:F1:C2:96:9F:06:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134666.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4e00::/40 Signature Algorithm: sha256WithRSAEncryption 73:5e:49:69:9c:4f:fa:72:53:10:8a:5c:b8:0e:42:27:0f:3c: fd:02:cb:bd:0e:28:c0:52:cb:cb:88:2f:17:b3:4a:88:ec:86: a4:a0:c3:6f:55:c9:06:f9:99:19:7e:fc:d1:92:3e:37:a8:3c: 1c:64:05:e3:54:39:4c:9a:63:ab:f3:63:e8:fa:7b:df:f1:57: 64:9b:2d:c4:a7:e4:39:85:76:c9:32:99:90:a1:52:e3:71:7b: 4f:5e:6c:93:bc:4a:5d:73:16:a1:b3:e4:8d:07:34:db:cd:fc: 54:72:ee:89:e3:4b:73:d7:6b:1d:9d:56:97:a4:d0:92:16:ab: 8d:38:26:df:a5:c9:ac:8e:40:03:7b:37:0e:7c:06:3f:4f:0f: 86:6a:e7:76:bb:5a:d8:38:64:29:96:50:5e:70:e6:8f:3e:75: 17:51:79:1f:b4:2e:da:d4:12:d4:4a:dd:86:c3:ee:5b:65:a5: 60:2e:ac:1e:4d:10:a5:d7:a8:df:fc:40:98:74:65:6e:cf:3a: 0a:e4:08:92:3e:f1:7a:20:21:58:0e:5e:fb:cf:e6:58:13:f2: b6:86:08:10:ed:e9:07:aa:56:56:ee:86:1e:7a:3f:2c:92:c1: 2e:f0:ed:a2:43:39:b3:0e:67:5a:8e:f3:40:94:96:0b:18:46: 52:16:aa:a2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUW34eIQWaz7KPG2wroERGGXbhcLUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDBaFw0yNzA2MDQwNzEyNDBaMDMxMTAvBgNV BAMTKEM0MkZBOTEzMjAwRjAwQzEwRjY5ODlERDlENzVGMUMyOTY5RjA2OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCodxaNIt1196CPAnVHWXX8GZO G1jF13yP2o5hfOarOKABBoAx9KB7Bj54OnnBhINABnSZKIXz/WOraAqKMYGbIpav /UzBa4iyYgT8IlPOdP+02Ov7TOhi103nrRGdzerCS2Ty19aOO4HTukKm3FZH3Wdn mbDPtQbXM0SlIwB+ou8RajOIQE/1LR+tlH2NyHlCrD2WbRwiB0jeL1aE2O5pBbNv I2ILqYC27ASWNJIJnUDX9Mey1tj7zj8aiftE8wUIeuZtnGLSCcW8NdEDlW0RL1jd djE7gbe8mC5Fz8ZWSOxd1ir0a39MfHSTgvYyP3ZZZaMfJ69xb1fH/GmGERlPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxC+pEyAPAMEPaYndnXXxwpafBpMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM0NjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQE4wDQYJKoZIhvcNAQELBQADggEBAHNe SWmcT/pyUxCKXLgOQicPPP0Cy70OKMBSy8uILxezSojshqSgw29VyQb5mRl+/NGS PjeoPBxkBeNUOUyaY6vzY+j6e9/xV2SbLcSn5DmFdskymZChUuNxe09ebJO8Sl1z FqGz5I0HNNvN/FRy7onjS3PXax2dVpek0JIWq404Jt+lyayOQAN7Nw58Bj9PD4Zq 53a7Wtg4ZCmWUF5w5o8+dRdReR+0LtrUEtRK3YbD7ltlpWAurB5NEKXXqN/8QJh0 ZW7POgrkCJI+8XogIVgOXvvP5lgT8raGCBDt6QeqVlbuhh56PyySwS7w7aJDObMO Z1qO80CUlgsYRlIWqqI= -----END CERTIFICATE-----Generated at Mon Jun 8 17:20:17 2026 by rpki-client