$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202338.roa File: AS202338.roa (raw, json) Hash identifier: XDAvTcCMz3VbDqWTWc+XBswuM1faLL+a6XjcNjk5gGM= Subject key identifier: 9E:04:59:4A:C5:52:48:1B:2A:DE:1F:73:D7:09:D3:86:AF:EC:52:32 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2982646C2C3BE44BE857648A0F3AF1FA125818AD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202338.roa Signing time: Fri 04 Jul 2025 06:53:11 +0000 ROA not before: Fri 04 Jul 2025 06:48:11 +0000 ROA not after: Fri 03 Jul 2026 06:53:11 +0000 asID: 202338 IP address blocks: 2a05:dfc1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:82:64:6c:2c:3b:e4:4b:e8:57:64:8a:0f:3a:f1:fa:12:58:18:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:11 2025 GMT Not After : Jul 3 06:53:11 2026 GMT Subject: CN=9E04594AC552481B2ADE1F73D709D386AFEC5232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:16:ca:28:11:86:b9:c4:a0:ac:a0:db:82:b7: 24:aa:09:97:ec:16:a4:7c:84:f2:8c:6c:ec:d0:7b: b7:42:c1:d0:9c:05:7e:1c:9a:db:df:11:f3:09:d4: 93:90:2a:d6:b4:47:f8:64:eb:fc:d6:66:cd:44:60: 5e:f3:c6:7c:b7:41:9a:cc:c2:7d:05:1d:a5:09:23: 52:05:1a:b6:89:23:4d:63:34:f5:9b:29:4c:b9:de: 46:6a:5e:3f:26:5e:4b:b3:fc:20:c8:99:38:33:34: 16:66:62:b5:06:50:aa:3d:8f:10:d4:ea:9b:23:31: a6:c9:03:8c:42:ca:d3:ef:90:65:50:81:ba:86:e8: ec:ca:0e:79:90:a4:fd:bb:ae:5a:e5:76:26:77:a7: 8b:00:c8:b0:79:55:fc:83:98:96:2b:50:9b:77:98: 2b:0e:50:e0:59:15:51:a3:8c:a0:8d:40:31:53:33: b5:df:6e:9e:f3:e1:e0:aa:3d:2b:af:cf:53:6b:c4: ea:b3:a5:43:e8:ca:41:e3:ad:ff:ff:ec:18:f0:39: 2d:07:08:65:15:bd:f2:36:3b:c7:c4:c7:8c:a2:96: cf:09:49:6e:47:08:5a:84:bf:72:6b:39:21:b2:89: f4:2a:ff:1f:e6:ac:9d:ca:05:95:00:76:a7:3f:95: c8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:04:59:4A:C5:52:48:1B:2A:DE:1F:73:D7:09:D3:86:AF:EC:52:32 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 1e:c5:3a:8a:42:4a:26:87:1b:de:03:86:1c:e5:01:f2:de:a4: 10:bd:e5:6f:9c:30:f5:e1:d5:31:db:66:86:35:bd:db:77:7a: 8a:27:3d:e0:ce:95:9d:a0:78:4b:df:cd:ad:7e:84:ff:e8:36: c5:91:de:3e:17:b2:4b:2c:24:4e:0b:42:9a:fa:92:26:e4:0c: 7e:17:dd:08:a3:ca:7b:06:b5:df:1c:ad:e4:20:dd:20:c2:76: d6:02:58:81:89:7a:d3:1e:02:09:63:3b:df:58:e3:22:36:bd: 43:5c:e7:a0:ca:00:d8:9e:6d:6e:80:6a:5d:48:69:59:c1:c4: f8:80:0f:ec:d6:e2:a8:a0:15:a5:5f:52:31:00:c4:52:04:1b: 84:3d:89:55:24:22:48:ce:84:3b:36:97:14:6d:b3:19:fc:f7: 50:bc:b0:df:42:e8:e4:f5:f0:5c:30:1a:5e:37:52:86:d6:6f: e6:1f:c7:d5:c7:fa:8a:88:ba:99:9c:99:eb:45:0e:b6:4c:38: bd:29:41:48:cf:90:1a:db:ee:b4:ab:cb:63:f0:56:d4:61:ec: ce:8b:16:20:9f:e6:a5:ac:bb:21:66:af:c1:e5:71:9f:15:54: cd:74:ca:eb:23:a9:2e:ba:69:34:48:6e:24:7d:4b:26:08:9d: 1c:7d:cf:35 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKYJkbCw75EvoV2SKDzrx+hJYGK0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTFaFw0yNjA3MDMwNjUzMTFaMDMxMTAvBgNV BAMTKDlFMDQ1OTRBQzU1MjQ4MUIyQURFMUY3M0Q3MDlEMzg2QUZFQzUyMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgFsooEYa5xKCsoNuCtySqCZfs FqR8hPKMbOzQe7dCwdCcBX4cmtvfEfMJ1JOQKta0R/hk6/zWZs1EYF7zxny3QZrM wn0FHaUJI1IFGraJI01jNPWbKUy53kZqXj8mXkuz/CDImTgzNBZmYrUGUKo9jxDU 6psjMabJA4xCytPvkGVQgbqG6OzKDnmQpP27rlrldiZ3p4sAyLB5VfyDmJYrUJt3 mCsOUOBZFVGjjKCNQDFTM7Xfbp7z4eCqPSuvz1NrxOqzpUPoykHjrf//7BjwOS0H CGUVvfI2O8fEx4yils8JSW5HCFqEv3JrOSGyifQq/x/mrJ3KBZUAdqc/lcjlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUngRZSsVSSBsq3h9z1wnThq/sUjIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAyMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYgwDQYJKoZIhvcNAQELBQADggEBAB7F OopCSiaHG94DhhzlAfLepBC95W+cMPXh1THbZoY1vdt3eoonPeDOlZ2geEvfza1+ hP/oNsWR3j4XskssJE4LQpr6kibkDH4X3QijynsGtd8creQg3SDCdtYCWIGJetMe AgljO99Y4yI2vUNc56DKANiebW6Aal1IaVnBxPiAD+zW4qigFaVfUjEAxFIEG4Q9 iVUkIkjOhDs2lxRtsxn891C8sN9C6OT18FwwGl43UobWb+Yfx9XH+oqIupmcmetF DrZMOL0pQUjPkBrb7rSry2PwVtRh7M6LFiCf5qWsuyFmr8HlcZ8VVM10yusjqS66 aTRIbiR9SyYInRx9zzU= -----END CERTIFICATE-----Generated at Sat Jul 5 03:45:38 2025 by rpki-client