$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: 3y3vCU2OVe/S1n3gFz/HiByv4LqFrFfxM7st8XxZbe8= Subject key identifier: 23:CC:79:11:4F:4E:67:B7:1C:B1:BE:8C:BB:DD:12:B1:91:AD:33:98 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 28F5F9DEA1A913557705CFDA4A265B789E1F6E6C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS16509.roa Signing time: Fri 04 Jul 2025 06:52:54 +0000 ROA not before: Fri 04 Jul 2025 06:47:54 +0000 ROA not after: Fri 03 Jul 2026 06:52:54 +0000 asID: 16509 IP address blocks: 2a05:dfc1:a400::/44 maxlen: 44 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f5:f9:de:a1:a9:13:55:77:05:cf:da:4a:26:5b:78:9e:1f:6e:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:54 2025 GMT Not After : Jul 3 06:52:54 2026 GMT Subject: CN=23CC79114F4E67B71CB1BE8CBBDD12B191AD3398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5a:fb:d1:33:b0:39:79:e6:34:69:82:ef:84: f0:4c:a2:63:e8:45:61:82:94:ce:64:60:05:3f:cc: 61:4e:a5:ca:c7:71:f2:ba:6e:4e:b1:73:93:11:a9: 62:41:01:ce:32:2a:86:92:d3:be:ea:1f:e7:3d:d9: b6:fe:d7:c1:63:05:1d:7c:10:f2:7d:ab:fc:bc:b5: 89:e2:a8:16:96:e5:a9:7b:53:5e:1b:61:30:3f:33: 51:35:0f:77:ae:7a:52:84:4d:77:ea:e4:bd:a4:89: fb:31:d6:38:7b:fd:83:88:98:e1:bf:b4:be:81:9a: e4:7d:d9:a1:32:09:cd:18:56:fd:9b:2a:5f:0e:bc: ee:f5:d5:b6:dd:de:81:72:8a:80:be:09:3c:e1:ca: b8:4c:c7:ae:ce:22:45:bf:d3:cc:a9:61:64:f9:bf: e9:98:5c:47:f6:7d:dc:51:f5:29:c4:9a:45:ee:90: 02:fc:5d:d8:f8:a3:d2:d2:32:75:f0:ac:1d:f2:2f: e2:e1:5b:ab:d3:09:8a:8b:19:51:e2:05:41:ac:bf: 20:4f:1d:b3:73:3a:0e:e1:6d:6c:87:c9:60:6c:ed: 1b:ef:29:59:f7:82:27:34:d4:52:9b:c7:9b:7f:5d: ae:c1:5c:be:4d:ec:2d:32:28:fb:36:a0:e9:aa:57: 58:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:CC:79:11:4F:4E:67:B7:1C:B1:BE:8C:BB:DD:12:B1:91:AD:33:98 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/44 Signature Algorithm: sha256WithRSAEncryption 37:a4:64:02:63:e9:6b:5a:ad:ec:42:2b:30:0d:e0:ce:4e:32: fb:a8:ea:f5:b2:c6:7a:f9:5b:34:50:03:d8:19:1c:1f:c9:56: 29:47:c4:68:a5:38:3a:27:8a:4b:94:7d:87:1f:44:b8:7c:10: 2f:eb:65:fb:11:a8:54:af:a9:cb:d7:28:80:13:f3:98:cf:bc: 93:21:7d:c9:e3:89:e1:cb:33:7b:9d:34:a6:60:3a:f2:06:0f: fb:6d:6b:b7:a0:8a:84:b3:10:c0:af:dd:29:c0:4a:b0:05:d1: 7c:16:4b:10:6a:7d:13:85:52:89:37:0b:be:f3:50:a2:46:ca: 9f:76:93:36:4d:ee:81:f4:b7:6b:07:b8:85:df:e2:67:05:b7: 83:50:a9:1c:f8:d0:f3:a9:21:ad:80:75:43:1c:d1:c9:c6:85: 72:7e:c1:be:d8:ce:f6:35:7e:26:37:68:f2:59:0e:4c:10:14: e4:ac:ad:e6:f5:9a:e7:95:f5:df:98:e1:48:35:74:9e:ea:61: 25:84:73:f0:34:78:ff:c5:a1:c4:90:52:38:a4:36:64:77:d2: 45:62:bf:f2:ec:81:bf:e0:36:c4:3d:04:7c:26:7e:ae:56:c5: db:22:fe:3d:64:4f:32:e7:9d:04:3f:ed:90:ec:a9:f8:ad:b1: 02:7c:8b:6e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKPX53qGpE1V3Bc/aSiZbeJ4fbmwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTRaFw0yNjA3MDMwNjUyNTRaMDMxMTAvBgNV BAMTKDIzQ0M3OTExNEY0RTY3QjcxQ0IxQkU4Q0JCREQxMkIxOTFBRDMzOTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0WvvRM7A5eeY0aYLvhPBMomPo RWGClM5kYAU/zGFOpcrHcfK6bk6xc5MRqWJBAc4yKoaS077qH+c92bb+18FjBR18 EPJ9q/y8tYniqBaW5al7U14bYTA/M1E1D3euelKETXfq5L2kifsx1jh7/YOImOG/ tL6BmuR92aEyCc0YVv2bKl8OvO711bbd3oFyioC+CTzhyrhMx67OIkW/08ypYWT5 v+mYXEf2fdxR9SnEmkXukAL8Xdj4o9LSMnXwrB3yL+LhW6vTCYqLGVHiBUGsvyBP HbNzOg7hbWyHyWBs7RvvKVn3gic01FKbx5t/Xa7BXL5N7C0yKPs2oOmqV1g9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUI8x5EU9OZ7ccsb6Mu90SsZGtM5gwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTY1MDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUH AQcBAf8EEzARMA8EAgACMAkDBwQqBd/BpAAwDQYJKoZIhvcNAQELBQADggEBADek ZAJj6WtarexCKzAN4M5OMvuo6vWyxnr5WzRQA9gZHB/JVilHxGilODonikuUfYcf RLh8EC/rZfsRqFSvqcvXKIAT85jPvJMhfcnjieHLM3udNKZgOvIGD/tta7egioSz EMCv3SnASrAF0XwWSxBqfROFUok3C77zUKJGyp92kzZN7oH0t2sHuIXf4mcFt4NQ qRz40POpIa2AdUMc0cnGhXJ+wb7YzvY1fiY3aPJZDkwQFOSsreb1mueV9d+Y4Ug1 dJ7qYSWEc/A0eP/FocSQUjikNmR30kViv/Lsgb/gNsQ9BHwmfq5Wxdsi/j1kTzLn nQQ/7ZDsqfitsQJ8i24= -----END CERTIFICATE-----Generated at Sat Jul 5 04:03:40 2025 by rpki-client