$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203333.roa File: AS203333.roa (raw, json) Hash identifier: dnYdQqZAcY+Bmq154pJpRLNds6IluSqP4HYUQ4Cl1PA= Subject key identifier: DE:7F:DF:A2:AC:73:42:A4:3A:3E:88:46:E0:3E:3E:D7:47:38:34:95 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 455F41BBB904C186F0D0E0D67046EA18017319FD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203333.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 203333 IP address blocks: 2a0a:6040:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:5f:41:bb:b9:04:c1:86:f0:d0:e0:d6:70:46:ea:18:01:73:19:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=DE7FDFA2AC7342A43A3E8846E03E3ED747383495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:59:3a:18:64:0e:4a:39:40:47:0e:6e:18:ec: 20:52:d9:5a:91:22:85:04:33:49:f8:63:8a:c0:27: e4:62:a6:e3:f0:e3:e3:4c:f2:9f:bd:ad:3a:9d:bb: 68:45:de:50:6d:83:d0:c7:05:a7:c8:0c:18:69:7e: d9:d5:9f:b5:88:8e:a0:d8:51:12:08:ae:41:2b:44: 0b:f5:39:56:a8:1f:be:0a:14:ef:4d:3c:c4:23:11: fd:a5:08:88:2c:c2:74:ff:9d:e0:ea:2c:a7:64:d1: 0e:0c:d0:6a:60:d9:8b:44:97:1f:16:02:00:bb:06: ac:06:60:67:e0:2d:1f:99:27:71:95:0a:c9:c6:4c: f2:d3:5e:7f:f5:77:67:1a:9f:8d:e5:56:e7:e1:f7: 15:89:f3:ff:52:b7:24:3d:d3:16:57:87:c4:cc:22: 7d:af:be:92:34:e0:9a:3e:95:4e:82:63:ea:1b:4b: c6:10:bc:49:f8:c4:fa:17:a5:06:8d:97:b3:9f:2a: ab:77:c6:d5:f5:23:77:64:14:f6:4b:37:62:01:c4: 89:8e:a3:84:dd:d6:7e:57:0b:31:8b:d7:cc:5c:a5: ec:7b:ec:97:58:93:95:57:a8:ee:cf:f3:4d:3e:6f: 20:e6:37:11:c8:07:3b:eb:7b:00:b4:1d:72:9c:d5: 61:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7F:DF:A2:AC:73:42:A4:3A:3E:88:46:E0:3E:3E:D7:47:38:34:95 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:af00::/40 Signature Algorithm: sha256WithRSAEncryption 14:19:f7:a1:b3:fc:7d:78:90:08:ec:e4:d6:54:35:d8:08:b8: 33:97:14:e6:a1:4e:df:65:3a:37:a3:5a:ca:0e:2d:f3:98:6a: 93:60:cc:62:a1:5c:3a:1c:b5:d1:1a:49:f3:7c:3e:d9:ba:8b: 2f:7a:b6:1b:57:c9:0b:d3:ff:c5:48:d1:e9:d6:ae:b7:e8:7c: d6:36:e6:dd:49:fa:8b:f9:d4:bf:4e:d7:04:57:c2:b7:71:33: 29:bc:50:bd:62:6b:d3:e8:7d:3b:af:e3:33:7d:28:50:9c:1a: 71:30:eb:0f:16:2a:e1:9f:e2:e4:59:9a:76:3b:4d:ef:47:c1: db:4f:87:05:09:e3:dd:2b:35:ff:22:37:52:3a:0f:0d:14:5d: 8a:06:a5:91:e8:4d:7f:94:aa:20:d7:a8:52:fc:13:89:f5:b0: 99:fa:41:22:29:7e:04:05:97:a6:cb:f6:b3:f5:dd:2f:e8:e0: f1:ec:f4:b7:dc:2a:59:ca:e2:34:4c:f0:06:bd:2a:f6:95:92: d2:48:d0:1c:36:d2:8b:3d:b7:f6:62:79:9b:e4:a6:14:11:64: b4:f7:70:93:a8:ec:0b:bc:c9:0c:98:ce:1b:41:bb:43:85:e7: b9:cc:52:39:14:63:b7:0e:2e:e8:f4:f1:02:64:54:f2:03:b2: 10:9b:69:a2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURV9Bu7kEwYbw0ODWcEbqGAFzGf0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKERFN0ZERkEyQUM3MzQyQTQzQTNFODg0NkUwM0UzRUQ3NDczODM0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjWToYZA5KOUBHDm4Y7CBS2VqR IoUEM0n4Y4rAJ+RipuPw4+NM8p+9rTqdu2hF3lBtg9DHBafIDBhpftnVn7WIjqDY URIIrkErRAv1OVaoH74KFO9NPMQjEf2lCIgswnT/neDqLKdk0Q4M0Gpg2YtElx8W AgC7BqwGYGfgLR+ZJ3GVCsnGTPLTXn/1d2can43lVufh9xWJ8/9StyQ90xZXh8TM In2vvpI04Jo+lU6CY+obS8YQvEn4xPoXpQaNl7OfKqt3xtX1I3dkFPZLN2IBxImO o4Td1n5XCzGL18xcpex77JdYk5VXqO7P800+byDmNxHIBzvrewC0HXKc1WE/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3n/foqxzQqQ6PohG4D4+10c4NJUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK8wDQYJKoZIhvcNAQELBQADggEBABQZ 96Gz/H14kAjs5NZUNdgIuDOXFOahTt9lOjejWsoOLfOYapNgzGKhXDoctdEaSfN8 Ptm6iy96thtXyQvT/8VI0enWrrfofNY25t1J+ov51L9O1wRXwrdxMym8UL1ia9Po fTuv4zN9KFCcGnEw6w8WKuGf4uRZmnY7Te9HwdtPhwUJ490rNf8iN1I6Dw0UXYoG pZHoTX+UqiDXqFL8E4n1sJn6QSIpfgQFl6bL9rP13S/o4PHs9LfcKlnK4jRM8Aa9 KvaVktJI0Bw20os9t/ZieZvkphQRZLT3cJOo7Au8yQyYzhtBu0OF57nMUjkUY7cO Luj08QJkVPIDshCbaaI= -----END CERTIFICATE-----Generated at Sat Jul 5 03:55:29 2025 by rpki-client