$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139648.roa File: AS139648.roa (raw, json) Hash identifier: zCQGbsFKIMKXTnrmWaR9s50eImZWtlNWWOdYV+aH7NM= Subject key identifier: 26:3C:29:5D:E5:55:52:CC:E0:E4:A9:B2:B2:93:09:B1:04:17:A6:7B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7444FAAD51F02C307BCB91F1D790AA82790938DA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139648.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 139648 IP address blocks: 2a06:9f81:5200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:44:fa:ad:51:f0:2c:30:7b:cb:91:f1:d7:90:aa:82:79:09:38:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=263C295DE55552CCE0E4A9B2B29309B10417A67B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7b:d2:2f:30:14:a1:ed:4a:be:b7:ed:00:ab: e1:47:be:4d:3f:ed:e5:7b:b0:1a:6f:02:05:56:12: 40:f6:8d:e2:33:3e:e9:d8:4f:40:81:a2:0c:24:bf: 09:67:22:d0:2f:44:25:83:fb:e1:20:52:bf:ec:76: 53:c1:90:0f:ac:b0:27:f7:b3:f5:e8:9f:17:fd:15: 1c:70:18:23:de:5d:b0:6f:a9:c1:7b:0c:fb:39:cd: 38:34:85:ad:9f:26:c1:4b:bb:cc:40:93:58:69:99: 4f:6a:8b:07:f2:b9:f1:2f:6f:52:47:20:c2:65:59: 17:e5:b0:8e:07:41:d0:63:86:b1:d5:39:a3:a0:67: 3b:cb:9b:b5:d3:81:7e:e2:60:99:8b:14:c7:07:4a: 32:5e:ff:fe:5b:84:82:40:12:3b:b4:9c:6a:43:5b: 0d:cf:63:27:fa:a4:f7:fa:2c:5e:ab:19:21:86:44: 9d:b3:d6:f6:c4:37:4d:17:81:86:32:e0:d8:ee:2b: 9d:a5:b3:3b:40:14:6c:66:5c:c8:89:60:07:ab:2f: ac:3a:43:84:0b:12:8b:03:0c:0f:bb:72:2e:f9:7a: a0:3b:38:81:f0:4d:41:b0:f0:7c:f1:bc:60:16:5e: b6:65:5a:be:8b:ab:6d:1e:fb:63:41:30:54:9a:34: dc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3C:29:5D:E5:55:52:CC:E0:E4:A9:B2:B2:93:09:B1:04:17:A6:7B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5200::/40 Signature Algorithm: sha256WithRSAEncryption 13:80:c1:61:f3:4a:e6:fb:44:5d:06:6f:1a:8f:cd:c2:07:ea: e1:45:c3:0b:0b:3c:56:8b:2d:38:97:0c:20:e0:35:74:39:33: d5:36:2a:66:21:f9:e4:b0:41:e0:90:f5:d1:b8:96:43:74:83: 3f:c8:3d:65:a6:59:ff:c8:45:18:7d:38:d6:15:f6:88:af:f8: 11:33:23:d3:8f:d9:5a:8e:fb:4c:7f:89:5a:59:36:ab:e5:1e: 09:c4:7b:e8:0e:c7:1e:ab:bb:10:d7:da:72:a4:83:3d:9e:17: 86:b5:f4:62:b6:13:d2:74:f0:63:42:02:96:cf:c2:b0:fa:f2: 22:a1:98:73:82:a1:05:68:be:36:2b:5a:ec:bc:31:d1:90:11: 1d:7f:3d:2f:c0:c7:5a:52:bc:be:75:26:0a:80:28:28:d9:47: ff:f0:0b:c3:74:bd:e8:f4:79:f7:dd:2a:ff:f6:ab:5e:0b:be: ef:81:70:f8:30:c2:a2:11:b5:3a:a1:ab:c8:33:be:0a:03:a8: d2:67:9c:36:24:54:fa:e0:f6:d5:94:39:cb:71:dc:e1:68:6e: 0e:fc:da:0b:11:a2:75:82:d6:82:c4:c6:25:4d:23:ef:91:5e: 01:0b:20:ea:89:c5:7f:8f:ad:f7:ee:46:3b:d7:8e:6e:91:e4: 60:8d:11:6f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdET6rVHwLDB7y5Hx15CqgnkJONowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDI2M0MyOTVERTU1NTUyQ0NFMEU0QTlCMkIyOTMwOUIxMDQxN0E2N0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUe9IvMBSh7Uq+t+0Aq+FHvk0/ 7eV7sBpvAgVWEkD2jeIzPunYT0CBogwkvwlnItAvRCWD++EgUr/sdlPBkA+ssCf3 s/Xonxf9FRxwGCPeXbBvqcF7DPs5zTg0ha2fJsFLu8xAk1hpmU9qiwfyufEvb1JH IMJlWRflsI4HQdBjhrHVOaOgZzvLm7XTgX7iYJmLFMcHSjJe//5bhIJAEju0nGpD Ww3PYyf6pPf6LF6rGSGGRJ2z1vbEN00XgYYy4NjuK52lsztAFGxmXMiJYAerL6w6 Q4QLEosDDA+7ci75eqA7OIHwTUGw8HzxvGAWXrZlWr6Lq20e+2NBMFSaNNxpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJjwpXeVVUszg5KmyspMJsQQXpnswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM5NjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVIwDQYJKoZIhvcNAQELBQADggEBABOA wWHzSub7RF0GbxqPzcIH6uFFwwsLPFaLLTiXDCDgNXQ5M9U2KmYh+eSwQeCQ9dG4 lkN0gz/IPWWmWf/IRRh9ONYV9oiv+BEzI9OP2VqO+0x/iVpZNqvlHgnEe+gOxx6r uxDX2nKkgz2eF4a19GK2E9J08GNCApbPwrD68iKhmHOCoQVovjYrWuy8MdGQER1/ PS/Ax1pSvL51JgqAKCjZR//wC8N0vej0effdKv/2q14Lvu+BcPgwwqIRtTqhq8gz vgoDqNJnnDYkVPrg9tWUOctx3OFobg782gsRonWC1oLExiVNI++RXgELIOqJxX+P rffuRjvXjm6R5GCNEW8= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:07 2025 by rpki-client