$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139328.roa File: AS139328.roa (raw, json) Hash identifier: cBHLdyku8kIqpJ757eEiC2SHUPcSmO7FuLnM4W2MNEo= Subject key identifier: 60:E3:A7:94:65:72:6C:A8:D7:38:B0:E6:A4:0B:B8:23:C4:06:9E:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0CDE0D28788D3A7D82E7C21ABD6CCF8F3E767ADA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139328.roa Signing time: Fri 04 Jul 2025 06:53:04 +0000 ROA not before: Fri 04 Jul 2025 06:48:04 +0000 ROA not after: Fri 03 Jul 2026 06:53:04 +0000 asID: 139328 IP address blocks: 2a0a:6040:7e40::/44 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:de:0d:28:78:8d:3a:7d:82:e7:c2:1a:bd:6c:cf:8f:3e:76:7a:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:04 2025 GMT Not After : Jul 3 06:53:04 2026 GMT Subject: CN=60E3A79465726CA8D738B0E6A40BB823C4069E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:52:a0:b0:ef:ac:47:a3:d8:d6:8f:89:6e:9a: 8d:cf:08:75:f1:29:8c:fd:39:16:61:04:78:28:91: 28:bc:92:16:90:6e:82:a6:ba:6f:e2:e5:b2:f8:d0: da:ec:d3:e9:70:19:4e:53:b6:d5:f3:fa:26:94:59: 8d:29:e7:ec:ae:89:a0:1d:7a:37:ec:65:02:c9:b7: 86:eb:00:eb:68:fe:4f:8c:c8:47:56:fd:07:0a:9a: 17:0c:73:05:90:2e:a1:c8:d4:44:0e:6b:13:e0:03: 0c:87:00:92:31:1b:dc:1f:83:8f:de:40:ce:c8:30: cf:53:4c:af:28:d9:60:4d:52:06:62:14:32:e8:cb: ca:ea:ee:65:2c:ee:2c:2d:ff:7e:e3:eb:02:f0:4a: e6:39:e7:8b:9a:3a:c8:54:ca:c7:25:be:1e:44:03: 2d:ee:55:9c:58:97:14:87:c8:ee:d2:b6:8f:06:5b: 8f:c8:b0:c9:ab:6f:8e:01:3f:15:b4:07:9d:cb:ce: 49:0b:da:8a:df:84:56:f0:f0:22:44:6f:e0:0a:70: c2:ce:00:eb:f4:2c:87:81:65:ff:f1:d9:bd:52:13: 5c:b1:0f:62:d0:63:a9:79:62:25:56:7e:19:86:37: 5b:3a:ec:7b:ec:58:78:a8:01:97:08:76:76:80:04: 29:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E3:A7:94:65:72:6C:A8:D7:38:B0:E6:A4:0B:B8:23:C4:06:9E:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139328.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e40::/44 Signature Algorithm: sha256WithRSAEncryption b7:4c:9e:3d:d3:19:53:06:49:2d:3f:3c:01:52:46:cb:81:e1: 11:cb:16:e1:56:ad:03:1c:4a:7d:1b:e0:8d:bf:92:3e:21:70: 4b:69:a2:5c:08:d8:86:ce:4a:4d:ab:f0:b6:b1:b2:8f:86:86: a1:56:bf:a2:76:f3:ff:4b:e7:64:fd:ab:b5:6f:73:d4:3f:2e: 3b:ee:ad:40:59:45:af:50:5f:74:f3:2a:b4:03:2e:b3:5e:bd: ba:13:eb:4c:b5:87:f6:98:1f:e1:69:1b:2a:09:fe:cf:c1:73: 52:05:eb:b9:81:5c:09:85:62:b1:f5:96:8f:b9:b2:c7:18:70: f5:69:63:ba:94:2c:cf:4f:6b:e0:49:c0:08:a4:a3:46:eb:56: e2:7b:b8:0a:da:18:5a:cc:48:28:ad:00:d6:27:e9:9e:9e:9b: 78:6f:93:8a:29:59:57:8f:a7:4a:ef:97:19:a5:ae:46:69:74: 8b:39:48:6f:9e:8e:7c:5e:8a:97:77:73:05:4b:00:83:5d:f8: 03:77:70:c8:82:8e:12:d2:95:e0:a9:27:da:f5:57:fc:98:6b: ee:7e:ca:54:49:0e:9a:54:cf:91:68:ae:41:e6:69:3c:0b:9e: a1:8c:de:46:09:1a:d4:6a:dc:2d:ab:d0:e4:c4:7d:1b:4b:66: 98:72:2d:91 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIUDN4NKHiNOn2C58IavWzPjz52etowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDRaFw0yNjA3MDMwNjUzMDRaMDMxMTAvBgNV BAMTKDYwRTNBNzk0NjU3MjZDQThENzM4QjBFNkE0MEJCODIzQzQwNjlFOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1UqCw76xHo9jWj4lumo3PCHXx KYz9ORZhBHgokSi8khaQboKmum/i5bL40Nrs0+lwGU5TttXz+iaUWY0p5+yuiaAd ejfsZQLJt4brAOto/k+MyEdW/QcKmhcMcwWQLqHI1EQOaxPgAwyHAJIxG9wfg4/e QM7IMM9TTK8o2WBNUgZiFDLoy8rq7mUs7iwt/37j6wLwSuY554uaOshUysclvh5E Ay3uVZxYlxSHyO7Sto8GW4/IsMmrb44BPxW0B53LzkkL2orfhFbw8CJEb+AKcMLO AOv0LIeBZf/x2b1SE1yxD2LQY6l5YiVWfhmGN1s67HvsWHioAZcIdnaABClhAgMB AAGjggH1MIIB8TAdBgNVHQ4EFgQUYOOnlGVybKjXOLDmpAu4I8QGnpMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM5MzI4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgpgQH5AMA0GCSqGSIb3DQEBCwUAA4IBAQC3 TJ490xlTBkktPzwBUkbLgeERyxbhVq0DHEp9G+CNv5I+IXBLaaJcCNiGzkpNq/C2 sbKPhoahVr+idvP/S+dk/au1b3PUPy477q1AWUWvUF908yq0Ay6zXr26E+tMtYf2 mB/haRsqCf7PwXNSBeu5gVwJhWKx9ZaPubLHGHD1aWO6lCzPT2vgScAIpKNG61bi e7gK2hhazEgorQDWJ+menpt4b5OKKVlXj6dK75cZpa5GaXSLOUhvno58XoqXd3MF SwCDXfgDd3DIgo4S0pXgqSfa9Vf8mGvufspUSQ6aVM+RaK5B5mk8C56hjN5GCRrU atwtq9DkxH0bS2aYci2R -----END CERTIFICATE-----Generated at Sat Jul 5 06:09:13 2025 by rpki-client