$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS149020.roa File: AS149020.roa (raw, json) Hash identifier: XkJgrNhoHQr88pgHPAYS4H5NYBPnaV2PojUWGwTfThY= Subject key identifier: 2A:9D:C9:33:38:27:14:8B:BB:69:5E:6E:94:7C:3A:26:CD:29:0F:B1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1D5873CE9B075F12B38AF53C95C39F503C24D671 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS149020.roa Signing time: Fri 04 Jul 2025 06:53:00 +0000 ROA not before: Fri 04 Jul 2025 06:48:00 +0000 ROA not after: Fri 03 Jul 2026 06:53:00 +0000 asID: 149020 IP address blocks: 2a05:dfc1:4000::/40 maxlen: 48 2a05:dfc1:4100::/40 maxlen: 40 2a05:dfc1:4200::/40 maxlen: 48 2a05:dfc1:4300::/40 maxlen: 48 2a05:dfc1:4400::/40 maxlen: 40 2a05:dfc1:4500::/40 maxlen: 48 2a0a:6040:9500::/40 maxlen: 48 2a0a:6040:9600::/40 maxlen: 48 2a0a:6040:9700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:58:73:ce:9b:07:5f:12:b3:8a:f5:3c:95:c3:9f:50:3c:24:d6:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:00 2025 GMT Not After : Jul 3 06:53:00 2026 GMT Subject: CN=2A9DC9333827148BBB695E6E947C3A26CD290FB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:81:24:89:d2:ed:49:fa:7c:75:09:09:9d:8e: 65:7f:c9:20:97:e6:7b:8f:b5:9f:e2:f1:da:cc:f6: a5:fd:54:ff:44:ab:bc:9d:9a:72:cc:b1:e2:9a:5c: fa:8c:80:31:42:4b:8b:82:bb:2d:69:16:f8:15:d1: 9c:0a:c0:5a:6c:e7:6a:37:55:6a:a1:e0:99:22:d8: 8d:fb:1d:76:92:f1:97:cf:e4:d7:00:f5:3d:54:f0: 50:1d:82:b0:55:fb:a1:82:d0:cc:f1:bb:66:43:fe: 4c:19:f7:cd:cb:25:d4:75:9a:6d:08:cf:49:19:fa: 96:35:28:ac:65:1f:dc:90:9c:34:a6:fe:45:10:95: 55:76:15:5b:85:f8:69:1c:1e:39:f0:2c:b1:1f:12: 3d:ff:cf:f2:9b:f7:a8:98:b2:03:bd:98:18:1e:2b: 32:c6:68:6d:9a:8b:d5:af:0b:29:7d:4c:31:b5:21: 8e:92:d1:ed:14:75:7e:c0:c4:3a:f3:a8:91:02:c0: 39:2d:c8:e9:de:db:6c:a4:0b:57:76:80:f2:f8:f9: 15:6c:b2:9b:8d:3e:78:76:e4:d3:bc:b3:a0:b9:c1: 87:d6:9a:3d:49:a6:81:af:fb:8c:86:25:e7:8f:cf: 42:f5:52:46:0b:e0:6a:b3:40:9c:be:99:40:02:56: f7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9D:C9:33:38:27:14:8B:BB:69:5E:6E:94:7C:3A:26:CD:29:0F:B1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS149020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4000::-2a05:dfc1:45ff:ffff:ffff:ffff:ffff:ffff 2a0a:6040:9500::-2a0a:6040:97ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption e1:f0:eb:c8:d5:9f:b0:72:77:f6:62:05:c8:5f:5e:52:b4:68: ba:50:74:c3:8d:0f:27:6e:24:b1:da:68:af:8b:ff:13:94:28: 60:cf:7e:0d:70:28:8d:2b:92:3d:a6:39:c7:80:f6:ec:ee:d9: 0c:45:74:9d:f7:db:79:2e:be:75:fe:0a:25:ed:0e:c4:69:24: df:af:b4:83:78:de:4f:73:c4:ba:5e:b3:4a:ab:0d:d9:15:57: d7:25:4b:4a:f0:06:ce:86:25:f0:3d:bf:a8:b2:d9:26:57:5d: 4b:e0:6b:5b:3a:af:fe:ac:f5:27:40:78:22:5f:c5:97:07:7f: e4:db:55:49:bb:44:c5:d3:a9:35:18:89:64:4d:48:3a:29:ff: ae:ce:03:57:17:90:d6:c6:d7:75:99:13:cf:39:e9:b6:1f:a7: 5d:d3:10:34:f0:62:f3:b0:37:6f:de:61:1f:2e:f9:9b:91:3f: ac:bd:3c:a4:2a:76:d0:e8:b2:ca:66:34:b6:10:04:a9:4b:40: bf:a2:ed:e9:f3:e2:cb:eb:91:ea:e2:69:8c:81:97:ae:b0:78: 6a:85:30:08:5a:3e:86:6c:cb:0c:41:44:13:75:3a:d1:bd:e7: 8a:c8:da:0d:5b:b6:66:0e:d7:36:57:df:f6:5d:76:57:9a:65: 62:91:b0:74 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUHVhzzpsHXxKzivU8lcOfUDwk1nEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDBaFw0yNjA3MDMwNjUzMDBaMDMxMTAvBgNV BAMTKDJBOURDOTMzMzgyNzE0OEJCQjY5NUU2RTk0N0MzQTI2Q0QyOTBGQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDggSSJ0u1J+nx1CQmdjmV/ySCX 5nuPtZ/i8drM9qX9VP9Eq7ydmnLMseKaXPqMgDFCS4uCuy1pFvgV0ZwKwFps52o3 VWqh4Jki2I37HXaS8ZfP5NcA9T1U8FAdgrBV+6GC0Mzxu2ZD/kwZ983LJdR1mm0I z0kZ+pY1KKxlH9yQnDSm/kUQlVV2FVuF+GkcHjnwLLEfEj3/z/Kb96iYsgO9mBge KzLGaG2ai9WvCyl9TDG1IY6S0e0UdX7AxDrzqJECwDktyOne22ykC1d2gPL4+RVs spuNPnh25NO8s6C5wYfWmj1JpoGv+4yGJeePz0L1UkYL4GqzQJy+mUACVvelAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUKp3JMzgnFIu7aV5ulHw6Js0pD7EwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTQ5MDIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF BwEHAQH/BC4wLDAqBAIAAjAkMBADBgYqBd/BQAMGASoF38FEMBADBgAqCmBAlQMG AyoKYECQMA0GCSqGSIb3DQEBCwUAA4IBAQDh8OvI1Z+wcnf2YgXIX15StGi6UHTD jQ8nbiSx2mivi/8TlChgz34NcCiNK5I9pjnHgPbs7tkMRXSd99t5Lr51/gol7Q7E aSTfr7SDeN5Pc8S6XrNKqw3ZFVfXJUtK8AbOhiXwPb+ostkmV11L4GtbOq/+rPUn QHgiX8WXB3/k21VJu0TF06k1GIlkTUg6Kf+uzgNXF5DWxtd1mRPPOem2H6dd0xA0 8GLzsDdv3mEfLvmbkT+svTykKnbQ6LLKZjS2EASpS0C/ou3p8+LL65Hq4mmMgZeu sHhqhTAIWj6GbMsMQUQTdTrRveeKyNoNW7ZmDtc2V9/2XXZXmmVikbB0 -----END CERTIFICATE-----Generated at Sat Jul 5 03:47:28 2025 by rpki-client