$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139648.roa File: AS139648.roa (raw, json) Hash identifier: unRMosxBa4A9KcrIqn6pDol2UxjVuOmYJbt7zdBoxe4= Subject key identifier: 22:70:23:D9:B6:D5:A7:2D:9F:4A:77:4E:CB:99:EB:52:1F:7E:C3:2D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7F29637A30190145B5AB93CE89FD26C508279289 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139648.roa Signing time: Fri 05 Jun 2026 07:12:19 +0000 ROA not before: Fri 05 Jun 2026 07:07:19 +0000 ROA not after: Fri 04 Jun 2027 07:12:19 +0000 asID: 139648 IP address blocks: 2a06:9f81:5200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:29:63:7a:30:19:01:45:b5:ab:93:ce:89:fd:26:c5:08:27:92:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:19 2026 GMT Not After : Jun 4 07:12:19 2027 GMT Subject: CN=227023D9B6D5A72D9F4A774ECB99EB521F7EC32D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e4:9f:55:60:70:fa:cf:d4:c3:d8:50:49:bb: 53:af:16:ba:54:cd:e3:a3:34:58:27:d2:f3:58:f1: 66:43:41:1e:4f:ee:a5:b2:3b:68:cb:29:6e:a8:b2: 21:30:3d:a7:9c:24:ab:3f:0c:d0:6a:ee:a4:fa:19: 61:3c:7c:ea:b8:9e:38:c6:38:fc:ec:e3:41:dc:1b: 45:7e:df:8a:ad:7d:13:60:86:81:ac:31:1f:66:df: 17:89:ea:80:29:71:60:3a:9c:28:3c:a1:5c:59:10: 9d:04:c5:79:5a:a8:59:85:0e:e8:15:0b:9d:d3:2b: a5:1c:fb:53:73:68:67:f0:c4:88:f2:ff:6d:09:f3: 2e:e8:44:c4:98:46:1c:28:bc:94:4b:01:2a:81:25: 74:21:c6:4d:1b:24:2a:15:6d:f5:7b:b2:58:77:2e: 20:a4:75:b2:d9:dc:a0:62:a1:a6:58:2b:45:a4:d6: 5e:fe:8b:8e:b4:e6:f0:f7:d8:02:3d:2c:f2:21:5f: a3:f8:ec:0c:aa:f8:93:e3:f6:ee:88:c8:58:df:0f: 5d:1b:04:29:88:e1:6d:3b:37:c5:0e:59:e8:fe:34: a0:fd:d1:ba:2d:02:c8:c2:72:2e:57:c6:07:34:4f: 79:30:ed:6c:18:2f:18:1c:a2:5f:32:7a:f7:c0:f9: 2e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:70:23:D9:B6:D5:A7:2D:9F:4A:77:4E:CB:99:EB:52:1F:7E:C3:2D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5200::/40 Signature Algorithm: sha256WithRSAEncryption 13:37:f9:7b:21:68:7a:a5:6d:28:a5:ec:a3:a8:ab:2b:9a:f5: 58:02:9b:95:b6:dc:3b:d3:42:57:a1:cb:80:7a:bb:9a:d6:13: 61:5e:c9:ee:5e:ba:01:59:5f:4a:52:39:a3:f5:b7:7f:11:7c: 5a:4d:7c:c2:2b:cf:75:65:d2:d3:b8:88:80:1b:cf:99:c4:fc: 23:72:2e:9b:f6:a6:20:78:5b:83:af:ab:3f:f4:4a:4e:af:bf: 94:86:f0:11:e5:9d:98:d8:50:d6:92:2d:30:e6:70:85:5c:bc: ea:15:0f:14:44:a7:f3:40:ca:c3:66:8c:74:86:86:6e:b5:af: b5:05:a9:64:60:ff:44:53:c8:cb:b3:4f:d5:2e:1c:f4:76:39: a4:d6:7b:49:57:c1:bd:95:39:22:4c:74:11:5e:c5:5e:5b:69: 49:0a:93:64:39:08:bf:f6:5b:61:12:22:02:cb:2b:47:ca:a4: 00:43:c3:08:aa:02:80:46:38:da:33:e5:a1:cc:80:d6:13:ce: 0f:9e:13:55:bc:c5:45:6f:ed:5e:25:46:60:e8:72:68:7b:81: a0:32:8f:19:0f:53:40:77:53:64:77:a2:4b:12:ae:78:4c:fa: c1:66:df:f9:d6:1d:a9:b7:b3:c3:d6:85:5e:15:fb:56:20:6a: e3:12:0c:9c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfyljejAZAUW1q5POif0mxQgnkokwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTlaFw0yNzA2MDQwNzEyMTlaMDMxMTAvBgNV BAMTKDIyNzAyM0Q5QjZENUE3MkQ5RjRBNzc0RUNCOTlFQjUyMUY3RUMzMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD5J9VYHD6z9TD2FBJu1OvFrpU zeOjNFgn0vNY8WZDQR5P7qWyO2jLKW6osiEwPaecJKs/DNBq7qT6GWE8fOq4njjG OPzs40HcG0V+34qtfRNghoGsMR9m3xeJ6oApcWA6nCg8oVxZEJ0ExXlaqFmFDugV C53TK6Uc+1NzaGfwxIjy/20J8y7oRMSYRhwovJRLASqBJXQhxk0bJCoVbfV7slh3 LiCkdbLZ3KBioaZYK0Wk1l7+i4605vD32AI9LPIhX6P47Ayq+JPj9u6IyFjfD10b BCmI4W07N8UOWej+NKD90botAsjCci5Xxgc0T3kw7WwYLxgcol8yevfA+S6JAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUInAj2bbVpy2fSndOy5nrUh9+wy0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM5NjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVIwDQYJKoZIhvcNAQELBQADggEBABM3 +XshaHqlbSil7KOoqyua9VgCm5W23DvTQlehy4B6u5rWE2Feye5eugFZX0pSOaP1 t38RfFpNfMIrz3Vl0tO4iIAbz5nE/CNyLpv2piB4W4Ovqz/0Sk6vv5SG8BHlnZjY UNaSLTDmcIVcvOoVDxREp/NAysNmjHSGhm61r7UFqWRg/0RTyMuzT9UuHPR2OaTW e0lXwb2VOSJMdBFexV5baUkKk2Q5CL/2W2ESIgLLK0fKpABDwwiqAoBGONoz5aHM gNYTzg+eE1W8xUVv7V4lRmDocmh7gaAyjxkPU0B3U2R3oksSrnhM+sFm3/nWHam3 s8PWhV4V+1YgauMSDJw= -----END CERTIFICATE-----Generated at Thu Jun 11 19:32:28 2026 by rpki-client