$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201517.roa File: AS201517.roa (raw, json) Hash identifier: lxMBENQ1JTTPNs3QDJ/m2tpQCR3T+UkcjWo2QR2XbX0= Subject key identifier: 08:C9:9F:DD:A7:0B:43:DB:E4:13:81:5C:32:34:84:CC:E6:52:EA:DE Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 40C8D2372C77DCF20C0C3FA9CA5D7031F13ADA1A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201517.roa Signing time: Fri 04 Jul 2025 06:53:15 +0000 ROA not before: Fri 04 Jul 2025 06:48:15 +0000 ROA not after: Fri 03 Jul 2026 06:53:15 +0000 asID: 201517 IP address blocks: 2a0a:6040:fd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:c8:d2:37:2c:77:dc:f2:0c:0c:3f:a9:ca:5d:70:31:f1:3a:da:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:15 2025 GMT Not After : Jul 3 06:53:15 2026 GMT Subject: CN=08C99FDDA70B43DBE413815C323484CCE652EADE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:38:ea:2a:99:e0:a0:55:d1:37:c7:08:6d:8e: 42:40:45:5f:2e:e0:f7:31:d1:62:e2:46:a9:9e:0e: 18:9e:d8:ac:8d:38:7a:54:36:6e:c7:0e:c4:93:9a: bb:65:c8:b7:16:67:07:9d:56:5b:de:74:e0:4d:1c: 30:87:0e:fd:f6:77:3d:c6:35:0c:a5:da:23:d1:f3: 54:8b:c1:a1:ef:0b:a8:4e:21:41:49:fc:7c:3a:a1: eb:9e:2c:b0:93:6f:9e:4c:88:8b:3b:97:1b:b2:52: 41:26:7c:a9:f9:6a:3f:1a:6c:bf:0f:ff:9d:d2:76: 54:95:da:d5:ad:bd:ec:ef:e3:1c:39:90:2a:6a:6d: 81:c8:cd:85:cd:e8:ab:9e:65:b5:f8:42:ca:8f:80: 48:f3:f3:dd:e3:f7:92:b3:5e:a4:e1:46:d0:28:cb: ba:6b:08:48:97:91:67:71:85:4c:42:84:2c:10:fa: 49:c8:9d:18:98:71:d7:5f:a2:9c:ab:f7:b7:3d:b3: 9a:a9:09:8f:a4:fb:4f:00:5b:43:89:52:0e:5e:e4: 49:4e:ba:35:06:96:5f:54:60:b1:6b:10:00:5c:63: ff:ef:ae:75:1d:87:b5:bd:eb:67:72:c5:fa:85:55: 38:77:38:ea:48:b2:f4:60:62:df:e6:5d:fb:b2:87: 58:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:C9:9F:DD:A7:0B:43:DB:E4:13:81:5C:32:34:84:CC:E6:52:EA:DE X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fd00::/40 Signature Algorithm: sha256WithRSAEncryption 34:29:cf:14:e1:9f:e1:90:0e:1a:9f:4c:e9:87:3c:ae:1b:a2: b4:ab:ad:7e:10:67:f0:83:f6:dd:47:7e:80:d1:40:5d:7f:36: fb:10:cd:e4:0a:2f:33:49:79:cd:cf:d3:45:83:2d:a3:1c:b7: 67:34:7a:9e:90:bd:85:52:11:83:71:72:83:eb:ef:29:0c:53: c0:43:2d:0d:cd:7a:78:1b:70:fe:65:e8:61:66:04:ca:4b:86: f5:5d:08:c6:6e:5d:58:f4:eb:da:32:2b:ae:38:8a:c7:45:e5: c7:1a:b0:66:98:a4:c2:79:14:dc:b1:58:ab:a1:ec:e4:3f:82: 51:58:56:27:26:fa:ac:ea:de:a4:07:01:cc:9b:bf:6b:22:a5: d4:65:26:d2:26:ef:c6:34:6f:6f:21:f3:d7:f9:32:2f:e4:b1: 23:55:20:c7:f5:02:df:ab:13:69:18:d5:5c:d0:06:39:6e:c5: e5:0d:b9:15:81:b9:ca:8a:38:02:a9:04:ed:1f:f1:17:d4:49: 5c:ce:e3:49:7c:12:e1:49:08:73:da:51:ba:17:04:4a:08:24: 13:9e:a8:cd:19:9f:1c:c2:19:8d:a5:fa:e3:e9:9a:d6:84:83: e5:8c:4d:8c:bb:a9:f2:ec:0f:09:0d:da:92:29:39:8e:e1:15: 58:05:66:ab -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQMjSNyx33PIMDD+pyl1wMfE62howDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTVaFw0yNjA3MDMwNjUzMTVaMDMxMTAvBgNV BAMTKDA4Qzk5RkREQTcwQjQzREJFNDEzODE1QzMyMzQ4NENDRTY1MkVBREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVOOoqmeCgVdE3xwhtjkJARV8u 4Pcx0WLiRqmeDhie2KyNOHpUNm7HDsSTmrtlyLcWZwedVlvedOBNHDCHDv32dz3G NQyl2iPR81SLwaHvC6hOIUFJ/Hw6oeueLLCTb55MiIs7lxuyUkEmfKn5aj8abL8P /53SdlSV2tWtvezv4xw5kCpqbYHIzYXN6KueZbX4QsqPgEjz893j95KzXqThRtAo y7prCEiXkWdxhUxChCwQ+knInRiYcddfopyr97c9s5qpCY+k+08AW0OJUg5e5ElO ujUGll9UYLFrEABcY//vrnUdh7W962dyxfqFVTh3OOpIsvRgYt/mXfuyh1i1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCMmf3acLQ9vkE4FcMjSEzOZS6t4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQP0wDQYJKoZIhvcNAQELBQADggEBADQp zxThn+GQDhqfTOmHPK4borSrrX4QZ/CD9t1HfoDRQF1/NvsQzeQKLzNJec3P00WD LaMct2c0ep6QvYVSEYNxcoPr7ykMU8BDLQ3NengbcP5l6GFmBMpLhvVdCMZuXVj0 69oyK644isdF5ccasGaYpMJ5FNyxWKuh7OQ/glFYVicm+qzq3qQHAcybv2sipdRl JtIm78Y0b28h89f5Mi/ksSNVIMf1At+rE2kY1VzQBjluxeUNuRWBucqKOAKpBO0f 8RfUSVzO40l8EuFJCHPaUboXBEoIJBOeqM0ZnxzCGY2l+uPpmtaEg+WMTYy7qfLs DwkN2pIpOY7hFVgFZqs= -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:04 2025 by rpki-client