$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201504.roa File: AS201504.roa (raw, json) Hash identifier: 38XeSHOPt2ZprbGcrEeSXsInXXv5zAQNVC0nBjC69b8= Subject key identifier: 89:93:9D:6D:59:51:49:41:A9:30:32:70:EE:D2:A4:A5:93:A9:8F:73 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 33B244AA613DB5DE29830464B3ACE08FB537CE8E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201504.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 201504 IP address blocks: 2a0a:6040:da00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:b2:44:aa:61:3d:b5:de:29:83:04:64:b3:ac:e0:8f:b5:37:ce:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=89939D6D59514941A9303270EED2A4A593A98F73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:82:35:1a:d7:88:c3:00:8b:5a:07:ea:62:ef: 73:12:50:7b:1f:67:10:95:c9:9c:41:b2:c9:09:b0: 02:e7:e7:c5:ba:b2:5b:1e:8e:a4:b1:af:59:ce:05: ac:77:ed:d6:a2:f1:b3:b2:dc:35:e2:f2:d2:c6:d5: 4e:9e:55:c5:d0:0d:15:fd:3d:2c:27:c7:01:6d:22: da:5c:99:65:d3:92:3e:e9:9f:18:d8:7e:c8:9e:e1: 88:8e:46:7e:6d:23:5e:a9:96:5b:10:38:ad:7c:58: be:3e:42:f6:bb:ac:ef:e2:4f:d1:59:70:60:65:d5: 1f:00:b1:b9:70:f1:aa:96:7e:e2:54:b6:5a:8d:ca: 2c:b0:3e:e7:d4:48:db:7d:c6:2a:89:40:59:1e:3f: 1c:32:31:58:8a:9f:47:a5:1d:98:6a:e8:d0:7e:39: b7:5e:46:ae:80:a7:a6:b6:f3:27:a1:0b:cf:ca:ca: 7c:01:12:c7:cb:2f:e6:e8:0e:0e:b0:e5:a9:b1:87: c9:c0:68:28:a1:60:94:5d:09:a8:43:9e:a6:80:b7: ed:50:5a:a6:f6:e9:58:18:21:40:83:53:3a:4e:8a: 4b:a3:b1:b3:8d:fd:fa:4a:07:b2:7b:a7:75:de:1e: 46:09:06:66:e5:4d:00:03:9f:49:9f:54:97:ae:a3: 3d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:93:9D:6D:59:51:49:41:A9:30:32:70:EE:D2:A4:A5:93:A9:8F:73 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:da00::/40 Signature Algorithm: sha256WithRSAEncryption dd:e9:39:a5:42:e9:37:1c:03:26:a0:fc:fe:d5:1b:c8:fb:0b: 27:36:fd:37:10:c4:05:d1:d8:47:03:ae:b4:f6:22:88:8b:56: e8:78:9e:d5:e1:88:25:37:1d:f5:1e:20:0c:e3:15:d7:0d:27: 00:90:d7:e5:42:c1:6e:33:0a:bd:d5:19:6f:43:13:6a:96:ff: ad:0f:57:f2:dd:90:4f:af:32:0b:77:8c:a5:99:08:47:ca:ce: 8d:66:88:08:74:6a:a3:8a:52:dc:dc:76:7c:83:60:17:9a:15: 69:79:ce:a8:ee:49:ac:a7:42:0b:23:2b:f4:c2:4a:04:8a:c0: 22:a7:15:8e:44:eb:d1:68:1c:4d:cc:e7:7b:3a:46:24:6a:2a: 2e:f3:b8:af:21:93:85:9c:87:bc:97:22:45:ae:a4:1c:de:01: 6b:e9:3f:0e:32:e4:13:e2:a1:e9:94:9c:80:33:33:7f:f1:de: 23:d8:cd:2a:16:35:b0:1f:dc:07:1f:90:e2:4d:69:70:c4:5b: 63:ab:98:e0:69:ff:b9:b5:dd:3e:f6:64:33:63:a9:ad:df:58: a4:f0:d8:6b:c5:60:2a:30:b3:22:8d:b1:f0:ba:72:38:d8:07: e7:2a:fb:c6:3f:95:2a:61:1d:6f:3e:72:74:b7:13:68:0e:2c: ba:6a:9b:eb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM7JEqmE9td4pgwRks6zgj7U3zo4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKDg5OTM5RDZENTk1MTQ5NDFBOTMwMzI3MEVFRDJBNEE1OTNBOThGNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzgjUa14jDAItaB+pi73MSUHsf ZxCVyZxBsskJsALn58W6slsejqSxr1nOBax37dai8bOy3DXi8tLG1U6eVcXQDRX9 PSwnxwFtItpcmWXTkj7pnxjYfsie4YiORn5tI16pllsQOK18WL4+Qva7rO/iT9FZ cGBl1R8Asblw8aqWfuJUtlqNyiywPufUSNt9xiqJQFkePxwyMViKn0elHZhq6NB+ ObdeRq6Ap6a28yehC8/KynwBEsfLL+boDg6w5amxh8nAaCihYJRdCahDnqaAt+1Q Wqb26VgYIUCDUzpOikujsbON/fpKB7J7p3XeHkYJBmblTQADn0mfVJeuoz0/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiZOdbVlRSUGpMDJw7tKkpZOpj3MwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNowDQYJKoZIhvcNAQELBQADggEBAN3p OaVC6TccAyag/P7VG8j7Cyc2/TcQxAXR2EcDrrT2IoiLVuh4ntXhiCU3HfUeIAzj FdcNJwCQ1+VCwW4zCr3VGW9DE2qW/60PV/LdkE+vMgt3jKWZCEfKzo1miAh0aqOK UtzcdnyDYBeaFWl5zqjuSaynQgsjK/TCSgSKwCKnFY5E69FoHE3M53s6RiRqKi7z uK8hk4Wch7yXIkWupBzeAWvpPw4y5BPioemUnIAzM3/x3iPYzSoWNbAf3AcfkOJN aXDEW2OrmOBp/7m13T72ZDNjqa3fWKTw2GvFYCowsyKNsfC6cjjYB+cq+8Y/lSph HW8+cnS3E2gOLLpqm+s= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:29 2025 by rpki-client