$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS151349.roa File: AS151349.roa (raw, json) Hash identifier: zVW+my22OtWr6ilLdc0gV7VwFy5hfWSqvuN+JLzvZHU= Subject key identifier: 84:B3:C9:22:B8:D6:2C:54:54:CF:1C:84:5B:3A:24:79:96:1C:E8:F3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: D6CB3AFA7AE0BFB6BE2A9821DEE7D5CF71BB37 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS151349.roa Signing time: Fri 04 Jul 2025 06:53:08 +0000 ROA not before: Fri 04 Jul 2025 06:48:08 +0000 ROA not after: Fri 03 Jul 2026 06:53:08 +0000 asID: 151349 IP address blocks: 2a06:9f81:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d6:cb:3a:fa:7a:e0:bf:b6:be:2a:98:21:de:e7:d5:cf:71:bb:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:08 2025 GMT Not After : Jul 3 06:53:08 2026 GMT Subject: CN=84B3C922B8D62C5454CF1C845B3A2479961CE8F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8e:17:8d:f5:48:23:80:16:46:6a:f1:35:c0: bf:ba:dd:b4:8e:b9:2a:09:4b:20:81:41:bc:bc:a1: 82:2a:6a:4c:ae:e1:42:06:e2:2d:b5:cf:8b:e7:38: 3a:17:7e:23:9d:1c:7b:78:bb:44:22:b3:a7:58:15: 09:17:ee:f5:54:db:67:63:56:62:75:71:23:29:8b: 2f:6d:9e:73:92:bf:6c:66:49:a5:be:11:79:d4:64: 91:95:91:50:db:2b:b3:c4:cc:c0:e6:bd:29:9f:4c: 14:8b:fa:6d:95:c8:0b:68:bc:04:90:d8:77:c9:fd: 1e:0e:0f:29:c5:a9:b7:08:c0:9d:45:8f:a7:27:fe: 87:6c:11:2e:cf:f6:22:23:6b:fb:0d:71:56:4b:18: 3c:7f:68:45:d0:ca:2b:eb:79:dd:7f:36:d7:e3:42: 2d:eb:1f:f7:98:02:b4:49:81:6d:57:75:b2:c0:25: 20:eb:89:75:7b:47:9a:b8:16:a5:ef:16:9c:c5:a2: 55:ac:36:43:86:27:a4:e2:c7:4c:6c:ca:68:09:29: c8:16:0d:99:ca:11:88:b0:ac:ec:01:c3:92:64:d8: 48:dc:42:ab:4c:f0:da:54:26:5f:f8:82:40:b9:f6: b6:fe:b5:3b:76:15:41:e2:b0:5d:e3:e5:94:aa:eb: bb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B3:C9:22:B8:D6:2C:54:54:CF:1C:84:5B:3A:24:79:96:1C:E8:F3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS151349.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3000::/40 Signature Algorithm: sha256WithRSAEncryption 6a:8a:af:f0:05:9c:a5:11:a9:aa:c4:73:2c:b9:c3:c3:0d:9f: c0:2e:ef:81:0a:2b:61:c4:52:e9:bf:92:cc:c2:71:93:02:dc: d3:35:27:b1:fd:55:85:0f:5a:df:2b:d6:7d:59:03:8b:23:b8: 3a:0d:db:07:52:34:a3:7e:13:7e:34:dc:dc:d8:aa:bb:61:ac: 1e:ae:1d:b6:05:65:83:ba:3e:fa:62:47:5d:63:01:fd:5d:6b: 94:d0:5d:9f:59:96:b6:61:eb:4e:8c:e9:08:60:0f:f4:c3:ae: 85:8b:d9:3e:ea:2e:b6:36:a5:00:83:8b:05:75:90:57:f2:0e: d5:d8:c9:53:b8:0d:ed:2e:93:32:28:fe:d2:95:e2:16:ff:f3: 69:2e:e3:44:dc:cf:df:72:a5:d4:fb:11:9a:7c:6a:d5:de:16: ad:10:aa:7e:17:8f:1a:23:1e:d7:a1:53:10:3d:09:69:6c:c7: d4:12:0b:27:ca:d6:5f:2a:47:d3:46:fa:8a:23:cb:a6:27:5a: ae:7b:cd:2e:20:ac:4c:56:70:5c:8f:8b:9b:e9:42:a9:5e:90: 35:59:4e:72:59:62:0a:23:b2:76:58:3f:3a:f3:a2:ad:69:12: fb:c0:1f:ce:49:79:41:46:f5:45:2c:ec:e1:db:9c:b1:3d:f0: c6:68:b4:1a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUANbLOvp64L+2viqYId7n1c9xuzcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDhaFw0yNjA3MDMwNjUzMDhaMDMxMTAvBgNV BAMTKDg0QjNDOTIyQjhENjJDNTQ1NENGMUM4NDVCM0EyNDc5OTYxQ0U4RjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpjheN9UgjgBZGavE1wL+63bSO uSoJSyCBQby8oYIqakyu4UIG4i21z4vnODoXfiOdHHt4u0Qis6dYFQkX7vVU22dj VmJ1cSMpiy9tnnOSv2xmSaW+EXnUZJGVkVDbK7PEzMDmvSmfTBSL+m2VyAtovASQ 2HfJ/R4ODynFqbcIwJ1Fj6cn/odsES7P9iIja/sNcVZLGDx/aEXQyivred1/Ntfj Qi3rH/eYArRJgW1XdbLAJSDriXV7R5q4FqXvFpzFolWsNkOGJ6Tix0xsymgJKcgW DZnKEYiwrOwBw5Jk2EjcQqtM8NpUJl/4gkC59rb+tTt2FUHisF3j5ZSq67s9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhLPJIrjWLFRUzxyEWzokeZYc6PMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTUxMzQ5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTAwDQYJKoZIhvcNAQELBQADggEBAGqK r/AFnKURqarEcyy5w8MNn8Au74EKK2HEUum/kszCcZMC3NM1J7H9VYUPWt8r1n1Z A4sjuDoN2wdSNKN+E3403NzYqrthrB6uHbYFZYO6PvpiR11jAf1da5TQXZ9ZlrZh 606M6QhgD/TDroWL2T7qLrY2pQCDiwV1kFfyDtXYyVO4De0ukzIo/tKV4hb/82ku 40Tcz99ypdT7EZp8atXeFq0Qqn4XjxojHtehUxA9CWlsx9QSCyfK1l8qR9NG+ooj y6YnWq57zS4grExWcFyPi5vpQqlekDVZTnJZYgojsnZYPzrzoq1pEvvAH85JeUFG 9UUs7OHbnLE98MZotBo= -----END CERTIFICATE-----Generated at Sat Jul 5 04:20:12 2025 by rpki-client