$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201444.roa File: AS201444.roa (raw, json) Hash identifier: 15zdVbR26lvrIvyz7Y3KwuRxqqIpaRsZNg5j8vYYKZQ= Subject key identifier: 6B:7D:C7:CE:50:5A:62:C4:68:CE:CB:7E:05:EB:DE:C5:42:39:99:8B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 79FACDC2DB7382B6234E25C9CB0CB3AFEC57FC21 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201444.roa Signing time: Fri 04 Jul 2025 06:53:26 +0000 ROA not before: Fri 04 Jul 2025 06:48:26 +0000 ROA not after: Fri 03 Jul 2026 06:53:26 +0000 asID: 201444 IP address blocks: 2a0a:6040:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:fa:cd:c2:db:73:82:b6:23:4e:25:c9:cb:0c:b3:af:ec:57:fc:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:26 2025 GMT Not After : Jul 3 06:53:26 2026 GMT Subject: CN=6B7DC7CE505A62C468CECB7E05EBDEC54239998B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:6a:79:71:b0:e3:74:88:db:4e:82:a0:f9: 97:47:05:c4:34:e9:e3:f7:97:80:16:92:21:d5:36: 57:94:23:79:0a:75:4c:c5:20:3e:4c:12:b3:69:5a: d8:b8:b5:6b:74:12:08:06:ec:ef:a5:35:99:3a:fb: b3:54:4b:5e:a6:89:80:3c:6d:71:3f:03:6b:ab:cc: 50:38:6c:a5:b2:1c:5e:7c:12:db:58:de:fe:9d:63: 7b:fc:dc:6f:bb:db:49:66:50:86:6c:c9:86:31:c8: f8:7a:6c:1b:34:47:0a:78:c7:56:cb:71:8d:c1:47: 0d:ef:d3:16:c0:4b:de:e0:eb:84:67:43:90:09:e4: 63:80:47:37:15:bd:23:ec:78:e7:fb:e5:bd:00:f2: c8:be:12:da:28:bb:00:3a:fc:04:e5:d0:83:07:2a: 90:2f:85:53:6e:a8:c5:c0:9d:5c:bb:f9:c4:93:66: 4c:17:68:31:a4:88:d7:bf:d9:3a:09:33:3a:0c:be: aa:65:06:02:60:f7:63:1d:bc:4c:1d:03:b0:24:8f: 48:56:5f:c7:71:c4:43:b0:61:d8:c2:62:e0:f9:83: f2:05:98:76:01:b6:b9:29:90:25:0d:3f:ce:10:67: c4:90:ee:6a:78:ca:0e:d9:25:02:66:19:bc:ad:3f: dc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:7D:C7:CE:50:5A:62:C4:68:CE:CB:7E:05:EB:DE:C5:42:39:99:8B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:af00::/40 Signature Algorithm: sha256WithRSAEncryption 50:f2:bb:85:e7:fe:c0:eb:70:fb:bd:16:8d:68:c6:16:31:7f: de:88:b9:b6:c6:d6:bf:7c:37:f0:45:ec:05:2f:ee:bd:e9:80: 77:3c:f8:9c:cf:f3:71:67:b0:6f:47:40:2d:5b:6e:ff:3c:28: 6a:7b:ba:3f:89:82:e3:31:33:64:cd:2c:04:2a:a0:03:21:84: fe:19:67:ee:48:d2:34:ad:50:f9:3b:8b:33:1b:cd:a2:fa:40: bd:5e:d4:e6:11:79:f7:eb:7f:91:85:ed:9c:7a:1f:95:ef:0e: 13:50:15:c2:21:bf:f8:1d:1e:71:40:47:87:4c:40:9f:7a:56: 91:30:c8:01:2c:84:e5:1c:a3:40:48:87:63:d5:ce:00:ca:4b: f0:cc:6b:75:f3:3b:f3:7e:d2:7e:92:eb:b2:f3:d6:e3:c2:d1: e7:eb:91:30:96:d5:a2:ec:cf:d5:14:e2:ba:61:e1:ad:61:c9: cb:31:7b:1d:2a:70:52:b8:b5:49:2a:a8:0a:6f:90:44:a4:8d: 72:95:b0:38:64:f2:7d:80:c9:16:80:ed:6d:2a:d2:d5:ed:4f: 3d:77:5c:5f:fb:ca:7a:d4:98:63:1a:f8:a7:18:7c:a6:0d:c9: 9f:c3:32:ef:e2:61:f2:88:bd:da:f4:bd:8c:9a:87:0a:f9:2d: ae:4f:30:e0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUefrNwttzgrYjTiXJywyzr+xX/CEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjZaFw0yNjA3MDMwNjUzMjZaMDMxMTAvBgNV BAMTKDZCN0RDN0NFNTA1QTYyQzQ2OENFQ0I3RTA1RUJERUM1NDIzOTk5OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5c2p5cbDjdIjbToKg+ZdHBcQ0 6eP3l4AWkiHVNleUI3kKdUzFID5MErNpWti4tWt0EggG7O+lNZk6+7NUS16miYA8 bXE/A2urzFA4bKWyHF58EttY3v6dY3v83G+720lmUIZsyYYxyPh6bBs0Rwp4x1bL cY3BRw3v0xbAS97g64RnQ5AJ5GOARzcVvSPseOf75b0A8si+EtoouwA6/ATl0IMH KpAvhVNuqMXAnVy7+cSTZkwXaDGkiNe/2ToJMzoMvqplBgJg92MdvEwdA7Akj0hW X8dxxEOwYdjCYuD5g/IFmHYBtrkpkCUNP84QZ8SQ7mp4yg7ZJQJmGbytP9xfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUa33HzlBaYsRozst+BevexUI5mYswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNDQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK8wDQYJKoZIhvcNAQELBQADggEBAFDy u4Xn/sDrcPu9Fo1oxhYxf96IubbG1r98N/BF7AUv7r3pgHc8+JzP83FnsG9HQC1b bv88KGp7uj+JguMxM2TNLAQqoAMhhP4ZZ+5I0jStUPk7izMbzaL6QL1e1OYReffr f5GF7Zx6H5XvDhNQFcIhv/gdHnFAR4dMQJ96VpEwyAEshOUco0BIh2PVzgDKS/DM a3XzO/N+0n6S67Lz1uPC0efrkTCW1aLsz9UU4rph4a1hycsxex0qcFK4tUkqqApv kESkjXKVsDhk8n2AyRaA7W0q0tXtTz13XF/7ynrUmGMa+KcYfKYNyZ/DMu/iYfKI vdr0vYyahwr5La5PMOA= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:47 2025 by rpki-client