$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202732.roa File: AS202732.roa (raw, json) Hash identifier: fMxyET+bAYlWvyCs0Q0lZyczQCisU3Fe8r3awwoQNM8= Subject key identifier: 89:04:45:AB:97:AB:24:23:6B:16:02:31:59:FC:80:34:32:B0:8B:15 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0EFDEB66D93784B7BDABA69E83C1B205BAF0348C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202732.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 202732 IP address blocks: 2a0a:6040:c800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:fd:eb:66:d9:37:84:b7:bd:ab:a6:9e:83:c1:b2:05:ba:f0:34:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=890445AB97AB24236B16023159FC803432B08B15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b4:60:72:a6:c2:1a:ee:6a:f8:6d:1b:e2:37: eb:d3:0a:b4:37:9a:8d:d5:4f:28:9b:95:64:2a:5b: 57:80:a5:4c:bc:9e:aa:23:bc:3b:ff:f6:f6:3c:6e: 70:f4:2a:32:0d:fb:d5:e7:9c:b2:2f:66:28:10:39: 2e:47:ac:67:45:8a:56:5b:cb:ee:86:94:10:01:08: cb:3a:b7:bb:d7:b4:95:fe:ab:8f:ad:7d:84:1c:ad: 00:4b:da:70:02:04:8c:2b:68:b7:c7:d9:26:64:e0: 04:4f:d8:4c:af:a1:41:49:a3:e8:17:40:a8:ec:b3: 8e:d9:4c:71:c7:3e:1f:12:10:3c:7f:54:a5:4c:b4: 90:27:64:e8:d0:c1:fa:4e:f7:01:21:08:8a:3a:98: 13:c1:8c:27:17:4d:90:e8:3c:55:72:34:4f:3c:1c: 22:a4:ff:82:08:ae:b6:43:0a:dc:33:c1:48:5d:e1: c8:e2:c5:0b:75:61:f8:bc:88:e2:30:7f:44:12:dd: 9f:bf:93:8b:5f:78:cb:ff:85:04:ea:32:43:4d:f8: 49:3c:1a:40:73:ea:91:01:f2:9c:13:9e:ba:58:4f: 4b:07:7d:f6:ba:d1:e9:b3:99:be:bc:4c:7a:1b:26: e1:f0:ae:11:15:aa:5a:cf:ce:75:13:a4:46:7b:74: d5:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:04:45:AB:97:AB:24:23:6B:16:02:31:59:FC:80:34:32:B0:8B:15 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202732.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c800::/40 Signature Algorithm: sha256WithRSAEncryption 02:b4:eb:85:83:a3:32:3a:6c:d5:5d:81:6a:c3:eb:69:fe:18: d0:f4:eb:a2:b0:89:6d:e9:ee:81:c1:70:73:8f:ec:e9:d8:f8: 6d:36:3b:f9:f2:6e:a2:e0:05:88:c2:15:bf:ba:e9:9d:67:81: ca:e2:8d:8d:34:6e:71:76:03:43:5c:e7:d7:72:88:a7:5c:91: a9:2d:2f:a8:5b:d2:60:4a:5f:4f:7a:87:47:5a:d5:e8:2e:aa: 4b:f4:44:1f:e5:b5:5a:9f:f7:f6:10:71:eb:3a:32:c6:62:70: da:a5:e0:1d:b4:02:63:5e:57:3c:71:48:71:f2:40:29:bc:06: 0d:69:c7:a4:29:7e:f4:0b:f5:d7:63:74:d1:5a:5b:48:7e:d2: 2a:21:fb:89:18:fa:66:20:d5:ec:23:66:21:2c:14:e4:58:f4: a6:7d:cb:cb:97:10:ee:d8:e3:c8:c6:2d:e2:f8:f8:e5:e7:d5: 0d:6c:91:f2:db:25:62:e9:5f:ad:da:ab:c7:71:69:dc:88:3f: 29:09:55:45:77:1a:e9:d8:f3:91:be:b4:da:0e:a4:ee:97:b7: 28:e5:35:cb:33:0e:42:dd:bf:02:36:e9:02:69:a1:69:dc:0a: 44:1c:56:b3:3a:ca:a8:03:30:78:b7:c9:47:0d:b3:5d:3f:b9: b4:b0:1e:ca -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDv3rZtk3hLe9q6aeg8GyBbrwNIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKDg5MDQ0NUFCOTdBQjI0MjM2QjE2MDIzMTU5RkM4MDM0MzJCMDhCMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjtGBypsIa7mr4bRviN+vTCrQ3 mo3VTyiblWQqW1eApUy8nqojvDv/9vY8bnD0KjIN+9XnnLIvZigQOS5HrGdFilZb y+6GlBABCMs6t7vXtJX+q4+tfYQcrQBL2nACBIwraLfH2SZk4ARP2EyvoUFJo+gX QKjss47ZTHHHPh8SEDx/VKVMtJAnZOjQwfpO9wEhCIo6mBPBjCcXTZDoPFVyNE88 HCKk/4IIrrZDCtwzwUhd4cjixQt1Yfi8iOIwf0QS3Z+/k4tfeMv/hQTqMkNN+Ek8 GkBz6pEB8pwTnrpYT0sHffa60emzmb68THobJuHwrhEVqlrPznUTpEZ7dNWnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiQRFq5erJCNrFgIxWfyANDKwixUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAyNzMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMgwDQYJKoZIhvcNAQELBQADggEBAAK0 64WDozI6bNVdgWrD62n+GND066KwiW3p7oHBcHOP7OnY+G02O/nybqLgBYjCFb+6 6Z1ngcrijY00bnF2A0Nc59dyiKdckaktL6hb0mBKX096h0da1eguqkv0RB/ltVqf 9/YQces6MsZicNql4B20AmNeVzxxSHHyQCm8Bg1px6QpfvQL9ddjdNFaW0h+0ioh +4kY+mYg1ewjZiEsFORY9KZ9y8uXEO7Y48jGLeL4+OXn1Q1skfLbJWLpX63aq8dx adyIPykJVUV3GunY85G+tNoOpO6XtyjlNcszDkLdvwI26QJpoWncCkQcVrM6yqgD MHi3yUcNs10/ubSwHso= -----END CERTIFICATE-----Generated at Sat Jul 5 04:15:55 2025 by rpki-client