$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS150787.roa File: AS150787.roa (raw, json) Hash identifier: i6RAB42hUTnSJRRTWgaWQRuu1b7aUOpq7x2OUju1X1Y= Subject key identifier: ED:E2:6F:57:52:F9:A3:4C:13:86:31:F7:01:21:7E:00:16:D3:08:BC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1BE159E0BEEC4F22A925F8274770878A7597DD21 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS150787.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 150787 IP address blocks: 2a06:9f81:5300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e1:59:e0:be:ec:4f:22:a9:25:f8:27:47:70:87:8a:75:97:dd:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=EDE26F5752F9A34C138631F701217E0016D308BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:71:d6:4a:c6:00:af:42:98:33:0e:36:a2:16: b0:0e:44:c6:9a:9c:26:a1:ee:0b:0d:02:13:c9:f3: 00:cc:28:36:19:f6:96:94:5b:e6:ed:8f:5f:bc:3b: 2d:aa:34:00:8b:54:27:01:aa:e9:09:f6:64:41:0d: f1:79:21:81:ab:66:20:53:de:34:86:39:58:91:53: 52:6a:7a:f5:d3:fb:c0:a9:0a:1b:28:0e:1a:df:4c: 09:9c:77:d2:e4:fa:10:3d:21:3d:b7:86:82:48:5d: 56:a6:f3:01:0e:36:6f:e7:75:e8:8c:a2:26:eb:2c: 80:7a:53:e9:e2:58:62:2a:fa:9c:09:3e:59:36:e4: 62:7a:8f:a8:37:69:20:af:40:b9:bb:94:fc:d9:8e: 5c:25:a9:36:ce:cd:61:4d:11:c3:f0:6b:81:ad:8b: 4e:5d:ed:f1:f7:23:19:25:f7:2f:6a:fa:e9:ac:4d: ff:11:71:c6:75:23:79:ca:82:33:0c:12:9b:ed:93: 90:75:d2:ef:4d:6e:86:97:04:e4:48:b6:4b:66:cd: 40:41:a2:e1:0e:e2:42:08:06:f3:75:b4:d5:57:0f: 9c:84:4c:04:ff:a3:9c:02:ca:ee:b7:54:30:3f:7b: b0:fb:95:49:e3:0d:40:98:65:e4:04:51:9b:1b:cb: cc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:E2:6F:57:52:F9:A3:4C:13:86:31:F7:01:21:7E:00:16:D3:08:BC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS150787.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5300::/40 Signature Algorithm: sha256WithRSAEncryption b1:80:35:81:a7:85:f7:c2:7b:8a:5c:24:1d:05:56:da:57:4a: 19:cb:06:b4:86:4a:f2:0b:1e:d3:39:e6:1e:e2:79:78:e3:39: b9:05:15:27:22:6f:03:00:6a:70:0f:08:8e:f4:e8:ee:66:51: 20:a3:ef:cb:9e:f1:6d:11:82:ac:1b:ef:5d:ca:07:a8:29:28: fa:9e:4b:7d:1c:b0:b3:76:a4:ca:26:26:b4:50:8f:40:22:04: 9e:bc:5c:9a:64:37:f4:61:f8:d1:a6:fe:46:a9:f4:2c:3d:f3: 4c:1a:da:88:45:4a:2a:d3:72:79:08:03:aa:0e:b8:72:55:a4: 30:bf:22:78:dd:20:b2:3d:20:21:16:fe:a6:fb:60:33:1d:d5: 65:d3:d3:15:d5:47:7d:8f:cf:a7:23:7c:6e:a0:2d:58:a0:db: 2c:e7:1c:40:41:b2:cb:61:01:5a:fd:5d:35:f7:06:f3:96:59: 29:67:61:a6:62:26:11:70:78:ac:55:e0:fd:81:bc:96:73:49: 59:b6:b1:99:2b:dd:eb:eb:e7:c8:1f:49:5c:8e:3e:b9:b3:af: 85:2c:56:3a:ad:6d:75:8a:05:55:b4:00:38:3a:14:c5:bf:d8: 51:f4:dc:5c:9d:8a:29:a7:4d:68:01:a2:6c:67:4f:27:ac:d7: ec:2b:19:ee -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUG+FZ4L7sTyKpJfgnR3CHinWX3SEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKEVERTI2RjU3NTJGOUEzNEMxMzg2MzFGNzAxMjE3RTAwMTZEMzA4QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDycdZKxgCvQpgzDjaiFrAORMaa nCah7gsNAhPJ8wDMKDYZ9paUW+btj1+8Oy2qNACLVCcBqukJ9mRBDfF5IYGrZiBT 3jSGOViRU1JqevXT+8CpChsoDhrfTAmcd9Lk+hA9IT23hoJIXVam8wEONm/ndeiM oibrLIB6U+niWGIq+pwJPlk25GJ6j6g3aSCvQLm7lPzZjlwlqTbOzWFNEcPwa4Gt i05d7fH3Ixkl9y9q+umsTf8RccZ1I3nKgjMMEpvtk5B10u9NboaXBORItktmzUBB ouEO4kIIBvN1tNVXD5yETAT/o5wCyu63VDA/e7D7lUnjDUCYZeQEUZsby8xVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7eJvV1L5o0wThjH3ASF+ABbTCLwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTUwNzg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVMwDQYJKoZIhvcNAQELBQADggEBALGA NYGnhffCe4pcJB0FVtpXShnLBrSGSvILHtM55h7ieXjjObkFFScibwMAanAPCI70 6O5mUSCj78ue8W0Rgqwb713KB6gpKPqeS30csLN2pMomJrRQj0AiBJ68XJpkN/Rh +NGm/kap9Cw980wa2ohFSirTcnkIA6oOuHJVpDC/InjdILI9ICEW/qb7YDMd1WXT 0xXVR32Pz6cjfG6gLVig2yznHEBBssthAVr9XTX3BvOWWSlnYaZiJhFweKxV4P2B vJZzSVm2sZkr3evr58gfSVyOPrmzr4UsVjqtbXWKBVW0ADg6FMW/2FH03Fydiimn TWgBomxnTyes1+wrGe4= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:57 2025 by rpki-client