$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS14618.roa File: AS14618.roa (raw, json) Hash identifier: 1u2uiuFPrGnoEPQX/9t5bRwUHyOtgI/aQCpaiVKTSBs= Subject key identifier: D8:70:E9:8E:E3:89:4A:DD:C7:B5:DF:C7:C9:BD:3E:B7:C3:2D:6B:E7 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3C365029BA4C861C979BA5F49F5EA21786EB2B9B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS14618.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 14618 IP address blocks: 2a05:dfc1:a400::/44 maxlen: 44 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:36:50:29:ba:4c:86:1c:97:9b:a5:f4:9f:5e:a2:17:86:eb:2b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=D870E98EE3894ADDC7B5DFC7C9BD3EB7C32D6BE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0b:e8:48:73:8d:53:f4:94:0c:4b:c4:db:b5: b4:46:b4:03:30:37:25:32:3c:b6:85:2c:84:8b:7b: 03:8c:30:6e:80:91:4a:8a:8b:b0:05:be:bd:9e:cf: 1c:ac:38:6e:00:b2:fb:9d:d0:06:73:35:b9:7c:d9: b1:a5:10:93:51:6c:6e:b6:b0:47:98:99:75:9a:a1: c3:c3:d6:86:71:e9:d0:06:a7:7e:a3:26:4d:67:2b: 70:50:cd:b9:c7:07:f0:e2:40:a9:99:31:0c:f3:e4: ff:e7:d3:74:94:f6:8b:3b:e3:c9:58:c8:55:6e:84: 25:42:38:1f:dc:c0:45:21:05:ee:bf:ed:00:34:e9: 52:ed:c7:9b:da:72:4f:7d:ad:b2:a9:a6:d8:fb:6c: 74:9f:31:d9:56:23:27:3e:79:8d:e7:dc:14:a1:65: c1:2b:6b:d2:6d:8f:de:62:ff:1d:d8:40:c8:ba:5e: 63:0b:0f:20:25:b1:27:ae:05:65:8a:9b:ad:b1:40: ed:00:4e:4b:55:e0:92:a5:c6:bc:e1:8d:1d:4e:d6: e0:40:71:2d:85:55:03:97:7b:e2:3a:c0:01:20:19: 72:f6:1b:48:1e:fa:7c:18:53:52:3e:b0:ef:46:2c: e2:41:77:40:7f:ed:ea:0d:ca:a3:f9:f6:0d:d7:e5: 8e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:70:E9:8E:E3:89:4A:DD:C7:B5:DF:C7:C9:BD:3E:B7:C3:2D:6B:E7 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS14618.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/44 Signature Algorithm: sha256WithRSAEncryption 3d:a3:97:4b:de:3e:61:d2:e4:b9:3f:22:c4:f8:91:d3:ac:31: 7a:14:e8:13:c2:b5:33:a8:09:f6:f9:92:47:db:6c:af:da:17: e5:29:2e:78:c8:21:de:dd:5b:f9:c4:c3:ff:1e:d1:51:6f:5e: 82:4d:de:9a:5e:fe:2b:f7:b6:83:e5:d3:00:a9:04:03:cb:41: dd:fe:68:86:d8:d8:9d:4c:bd:0e:03:74:94:76:61:c7:b0:d7: 20:bd:0b:80:9b:21:95:d2:37:64:28:65:e0:9f:81:c4:02:f0: 8d:22:99:2d:a3:f2:32:5c:fd:8c:c4:8c:f7:e9:49:e8:f4:ba: 3b:f4:b4:d5:c1:fb:2c:21:7a:b3:43:8b:33:9b:57:ac:f1:5e: da:10:a1:ea:82:47:e2:32:cd:4d:e3:63:24:05:56:49:9b:56: 43:5c:c7:50:23:8e:de:af:34:30:2d:48:6b:0e:87:5c:59:a1: a0:30:60:91:f7:77:fe:92:8f:1e:e3:49:f3:11:cb:93:e0:fa: 83:8e:46:82:89:e1:76:76:49:65:56:6a:85:e7:36:25:e6:53: 52:c9:96:60:9e:28:56:40:8b:96:73:cd:1f:37:c9:77:0b:ea: 13:33:e4:d0:31:f7:3e:d3:09:bd:de:c4:66:26:75:a3:5f:ab: 24:9a:44:3d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPDZQKbpMhhyXm6X0n16iF4brK5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKEQ4NzBFOThFRTM4OTRBRERDN0I1REZDN0M5QkQzRUI3QzMyRDZCRTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJC+hIc41T9JQMS8TbtbRGtAMw NyUyPLaFLISLewOMMG6AkUqKi7AFvr2ezxysOG4Asvud0AZzNbl82bGlEJNRbG62 sEeYmXWaocPD1oZx6dAGp36jJk1nK3BQzbnHB/DiQKmZMQzz5P/n03SU9os748lY yFVuhCVCOB/cwEUhBe6/7QA06VLtx5vack99rbKpptj7bHSfMdlWIyc+eY3n3BSh ZcEra9Jtj95i/x3YQMi6XmMLDyAlsSeuBWWKm62xQO0ATktV4JKlxrzhjR1O1uBA cS2FVQOXe+I6wAEgGXL2G0ge+nwYU1I+sO9GLOJBd0B/7eoNyqP59g3X5Y67AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2HDpjuOJSt3Htd/Hyb0+t8Mta+cwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTQ2MTgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUH AQcBAf8EEzARMA8EAgACMAkDBwQqBd/BpAAwDQYJKoZIhvcNAQELBQADggEBAD2j l0vePmHS5Lk/IsT4kdOsMXoU6BPCtTOoCfb5kkfbbK/aF+UpLnjIId7dW/nEw/8e 0VFvXoJN3ppe/iv3toPl0wCpBAPLQd3+aIbY2J1MvQ4DdJR2Ycew1yC9C4CbIZXS N2QoZeCfgcQC8I0imS2j8jJc/YzEjPfpSej0ujv0tNXB+ywherNDizObV6zxXtoQ oeqCR+IyzU3jYyQFVkmbVkNcx1Ajjt6vNDAtSGsOh1xZoaAwYJH3d/6Sjx7jSfMR y5Pg+oOORoKJ4XZ2SWVWaoXnNiXmU1LJlmCeKFZAi5ZzzR83yXcL6hMz5NAx9z7T Cb3exGYmdaNfqySaRD0= -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:33 2025 by rpki-client