$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS149020.roa File: AS149020.roa (raw, json) Hash identifier: fd5VmVolRP/O5TNeXqFfL3qRk6hoRGTJubb+A9xGtjQ= Subject key identifier: 46:50:D8:E9:C1:7A:EE:82:63:80:56:59:83:81:F9:23:6F:AE:67:0F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6F5A8ACCAC8CEB90A99C6AB496223AD838A39298 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS149020.roa Signing time: Fri 05 Jun 2026 07:12:22 +0000 ROA not before: Fri 05 Jun 2026 07:07:22 +0000 ROA not after: Fri 04 Jun 2027 07:12:22 +0000 asID: 149020 IP address blocks: 2a05:dfc1:4000::/40 maxlen: 48 2a05:dfc1:4100::/40 maxlen: 40 2a05:dfc1:4200::/40 maxlen: 48 2a05:dfc1:4300::/40 maxlen: 48 2a05:dfc1:4400::/40 maxlen: 40 2a05:dfc1:4500::/40 maxlen: 48 2a0a:6040:9500::/40 maxlen: 48 2a0a:6040:9600::/40 maxlen: 48 2a0a:6040:9700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 19:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:5a:8a:cc:ac:8c:eb:90:a9:9c:6a:b4:96:22:3a:d8:38:a3:92:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:22 2026 GMT Not After : Jun 4 07:12:22 2027 GMT Subject: CN=4650D8E9C17AEE82638056598381F9236FAE670F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:76:6f:ea:ad:f2:45:ad:a9:18:76:59:5f:69: e1:c2:0f:8e:90:ad:dc:0c:f1:a4:3e:40:cb:22:f3: 9f:48:ae:b0:ed:3e:2c:40:e6:94:82:2b:c9:02:a6: 7f:8b:bb:44:e5:84:7e:25:a6:04:72:d8:c8:9b:ae: aa:5f:b3:63:e9:8e:cf:d8:aa:4b:54:0e:d3:09:db: e0:ef:8b:55:b5:24:91:55:0d:14:90:6a:d8:45:3e: 18:3a:76:32:a0:c8:86:de:69:42:c0:d8:0a:a6:7b: 1f:54:92:01:68:8f:53:7e:db:c3:9c:9f:53:78:8e: 72:be:41:d1:9c:e3:18:bb:70:c1:f2:ca:0f:13:5a: 1a:50:0f:6a:93:f1:9e:52:64:f9:4c:b7:96:d0:3a: b7:be:5c:a1:b1:17:fa:a3:f5:44:ff:87:79:8c:ee: 04:0f:e8:54:fd:25:83:7f:59:7e:9e:1f:e7:5b:96: bd:62:d3:2a:12:72:ee:79:e3:f3:14:0c:7e:6b:b8: d4:e1:65:aa:50:8f:be:fd:54:13:bd:13:ab:66:d9: ae:3a:55:e0:c0:20:15:3c:83:c3:50:e2:3b:92:3f: e9:39:c7:be:53:61:b1:72:86:d7:60:54:cb:9d:9a: 8d:60:98:5c:51:1a:15:68:3e:68:1e:68:da:e3:42: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:50:D8:E9:C1:7A:EE:82:63:80:56:59:83:81:F9:23:6F:AE:67:0F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS149020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4000::-2a05:dfc1:45ff:ffff:ffff:ffff:ffff:ffff 2a0a:6040:9500::-2a0a:6040:97ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 5c:54:07:c7:43:5e:2e:6d:80:d8:af:55:08:c6:8f:3e:6a:a0: 2d:f9:c4:5c:f6:66:ef:a3:30:3b:f1:93:d1:b7:8b:5d:20:da: 0e:a9:0f:01:5a:17:a0:a4:db:ca:5d:dc:6c:a8:4b:91:66:b2: fb:0b:48:67:aa:d8:ea:08:fb:e0:71:df:1a:3f:17:2f:a9:db: 6a:e2:1e:2b:1a:28:9f:3e:32:40:d3:fe:32:6b:4d:30:ed:0a: 28:c1:5c:09:ae:ba:b8:bb:a7:6a:25:75:47:3f:b3:e2:07:76: 79:83:d7:01:4e:64:02:6f:b5:b9:6f:fe:a7:94:fe:e5:8c:6e: f2:cf:1f:90:52:ae:a7:cb:f4:35:d3:58:5a:4b:d0:f4:1f:37: 95:69:68:2f:fa:d9:d4:cc:f2:10:87:c8:0d:04:38:a8:46:6d: 45:05:07:99:b4:53:a6:d4:32:25:b3:82:dd:1d:a9:0e:71:be: 55:6c:89:9e:2d:76:64:30:55:be:6f:c6:a3:ee:40:ca:3b:87: 66:6d:08:4a:19:b8:8b:f3:cd:27:a8:0f:03:62:6e:10:d6:2c: 13:b1:29:27:b0:74:9e:7c:b8:21:35:c0:89:6c:5c:e9:31:04: 56:82:69:e1:01:71:d4:ed:fb:e2:3f:23:8b:3b:06:82:af:f5: 03:1e:37:00 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUb1qKzKyM65CpnGq0liI62DijkpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjJaFw0yNzA2MDQwNzEyMjJaMDMxMTAvBgNV BAMTKDQ2NTBEOEU5QzE3QUVFODI2MzgwNTY1OTgzODFGOTIzNkZBRTY3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEdm/qrfJFrakYdllfaeHCD46Q rdwM8aQ+QMsi859IrrDtPixA5pSCK8kCpn+Lu0TlhH4lpgRy2Mibrqpfs2Ppjs/Y qktUDtMJ2+Dvi1W1JJFVDRSQathFPhg6djKgyIbeaULA2Aqmex9UkgFoj1N+28Oc n1N4jnK+QdGc4xi7cMHyyg8TWhpQD2qT8Z5SZPlMt5bQOre+XKGxF/qj9UT/h3mM 7gQP6FT9JYN/WX6eH+dblr1i0yoScu554/MUDH5ruNThZapQj779VBO9E6tm2a46 VeDAIBU8g8NQ4juSP+k5x75TYbFyhtdgVMudmo1gmFxRGhVoPmgeaNrjQoXlAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQURlDY6cF67oJjgFZZg4H5I2+uZw8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTQ5MDIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF BwEHAQH/BC4wLDAqBAIAAjAkMBADBgYqBd/BQAMGASoF38FEMBADBgAqCmBAlQMG AyoKYECQMA0GCSqGSIb3DQEBCwUAA4IBAQBcVAfHQ14ubYDYr1UIxo8+aqAt+cRc 9mbvozA78ZPRt4tdINoOqQ8BWhegpNvKXdxsqEuRZrL7C0hnqtjqCPvgcd8aPxcv qdtq4h4rGiifPjJA0/4ya00w7QoowVwJrrq4u6dqJXVHP7PiB3Z5g9cBTmQCb7W5 b/6nlP7ljG7yzx+QUq6ny/Q101haS9D0HzeVaWgv+tnUzPIQh8gNBDioRm1FBQeZ tFOm1DIls4LdHakOcb5VbImeLXZkMFW+b8aj7kDKO4dmbQhKGbiL880nqA8DYm4Q 1iwTsSknsHSefLghNcCJbFzpMQRWgmnhAXHU7fviPyOLOwaCr/UDHjcA -----END CERTIFICATE-----Generated at Sat Jun 6 05:23:10 2026 by rpki-client