$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201444.roa File: AS201444.roa (raw, json) Hash identifier: eNWOns2E4HBGbYF0TYz20L8EbwpN1kiGxvKJlt5lsDY= Subject key identifier: 00:80:BF:9D:78:27:11:FA:4C:8E:AF:22:FA:EB:1B:07:EC:3E:1C:06 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 24BA004B1A705B32B3366B8A979231170046F8EC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201444.roa Signing time: Fri 05 Jun 2026 07:12:45 +0000 ROA not before: Fri 05 Jun 2026 07:07:45 +0000 ROA not after: Fri 04 Jun 2027 07:12:45 +0000 asID: 201444 IP address blocks: 2a0a:6040:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 03:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:ba:00:4b:1a:70:5b:32:b3:36:6b:8a:97:92:31:17:00:46:f8:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:45 2026 GMT Not After : Jun 4 07:12:45 2027 GMT Subject: CN=0080BF9D782711FA4C8EAF22FAEB1B07EC3E1C06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:1c:d8:84:7d:00:de:c5:c4:28:35:c3:43:99: 32:c0:16:43:8b:81:6e:0f:11:b5:b6:b0:5e:1d:bf: 52:01:f5:80:16:4f:55:64:a8:a0:59:45:bc:15:2f: 2b:39:eb:2a:f3:00:16:f8:0e:15:ed:8f:ae:f4:4e: b9:fa:39:27:57:8c:1f:18:ca:15:fa:d3:d5:7c:86: 77:8c:16:1a:99:71:e5:35:27:49:11:e6:91:9a:03: 1f:c9:92:8e:5d:c2:61:29:da:62:0b:2f:20:f9:1a: 31:c5:76:0e:a4:98:97:2a:51:19:5a:95:35:99:81: 1b:ee:9b:87:c2:73:75:d4:29:59:a9:38:ba:1d:b6: 3e:06:07:07:25:8e:5e:71:32:8a:2d:04:50:e1:c7: 69:4d:08:e8:a8:1e:d1:76:9d:f6:51:10:40:5c:b2: 86:04:1b:99:49:34:96:e3:a9:12:7b:8e:63:3f:54: 68:61:7e:f7:f6:ce:5e:bf:1f:0c:c8:d9:af:af:ef: 6d:91:46:f5:a0:e6:b9:ae:78:f0:03:dc:bc:87:cd: 67:79:03:4c:68:79:12:ed:ee:dc:a4:f4:e3:70:de: d7:30:f4:da:e8:e5:75:c5:fc:c3:f7:27:08:38:62: c0:b8:23:4d:5b:72:3d:fc:d5:2b:43:f0:94:91:74: 8a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:80:BF:9D:78:27:11:FA:4C:8E:AF:22:FA:EB:1B:07:EC:3E:1C:06 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201444.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:af00::/40 Signature Algorithm: sha256WithRSAEncryption 39:24:93:88:33:e2:ee:d1:ae:51:7d:b8:b9:36:f7:27:b0:11: 04:9b:59:fb:60:34:3f:44:3f:1c:37:cc:d1:7b:3a:06:83:82: 87:d0:8d:bf:98:5d:2f:75:35:42:70:d1:28:13:b9:33:83:d3: 6a:42:87:a7:5e:b8:26:2e:0f:40:27:52:39:db:3e:bb:ac:8b: 3d:80:4d:44:53:6c:aa:be:9e:66:f2:a5:fe:54:d6:97:74:26: d6:64:cd:fb:51:cc:93:71:81:2f:3e:a3:dd:2d:bd:93:39:74: 90:9e:05:c8:80:56:d1:2c:ca:14:92:cd:db:1b:4a:d2:b1:09: 1d:fa:ef:d1:6d:0e:33:67:57:00:cb:b1:ec:42:2b:ce:2f:c7: 52:aa:76:02:d6:0d:07:68:b4:aa:46:19:fc:db:c8:e0:0c:57: 5e:f3:e3:49:54:41:19:2f:ec:8c:9f:ae:fe:b8:2e:04:3a:11: 3a:27:88:3d:be:5f:c6:5c:72:25:6a:2c:e7:11:ab:cb:36:9d: 1d:f4:c0:71:21:4e:87:51:b0:66:86:58:b4:cf:5f:0d:93:ee: a0:38:aa:50:a8:f5:c5:a6:fe:1a:2f:ec:b6:0a:99:bf:ac:f5: 25:f5:02:58:96:9a:b9:d7:aa:b0:c5:1b:43:9e:50:20:40:18: 46:c7:e8:9a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJLoASxpwWzKzNmuKl5IxFwBG+OwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDVaFw0yNzA2MDQwNzEyNDVaMDMxMTAvBgNV BAMTKDAwODBCRjlENzgyNzExRkE0QzhFQUYyMkZBRUIxQjA3RUMzRTFDMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPHNiEfQDexcQoNcNDmTLAFkOL gW4PEbW2sF4dv1IB9YAWT1VkqKBZRbwVLys56yrzABb4DhXtj670Trn6OSdXjB8Y yhX609V8hneMFhqZceU1J0kR5pGaAx/Jko5dwmEp2mILLyD5GjHFdg6kmJcqURla lTWZgRvum4fCc3XUKVmpOLodtj4GBwcljl5xMootBFDhx2lNCOioHtF2nfZREEBc soYEG5lJNJbjqRJ7jmM/VGhhfvf2zl6/HwzI2a+v722RRvWg5rmuePAD3LyHzWd5 A0xoeRLt7tyk9ONw3tcw9Nro5XXF/MP3Jwg4YsC4I01bcj381StD8JSRdIqPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAIC/nXgnEfpMjq8i+usbB+w+HAYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNDQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK8wDQYJKoZIhvcNAQELBQADggEBADkk k4gz4u7RrlF9uLk29yewEQSbWftgND9EPxw3zNF7OgaDgofQjb+YXS91NUJw0SgT uTOD02pCh6deuCYuD0AnUjnbPrusiz2ATURTbKq+nmbypf5U1pd0JtZkzftRzJNx gS8+o90tvZM5dJCeBciAVtEsyhSSzdsbStKxCR3679FtDjNnVwDLsexCK84vx1Kq dgLWDQdotKpGGfzbyOAMV17z40lUQRkv7Iyfrv64LgQ6EToniD2+X8ZcciVqLOcR q8s2nR30wHEhTodRsGaGWLTPXw2T7qA4qlCo9cWm/hov7LYKmb+s9SX1AliWmrnX qrDFG0OeUCBAGEbH6Jo= -----END CERTIFICATE-----Generated at Fri Jun 12 10:56:37 2026 by rpki-client