$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203470.roa File: AS203470.roa (raw, json) Hash identifier: qeXaYdSRNWmy+W7snrg/MFYg4c+LpyiTkq+/oRfe7Ao= Subject key identifier: C9:70:CE:4D:75:01:B0:0E:65:B8:FB:D2:C4:D7:2D:C3:19:45:5F:89 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 725978E3DF1EA277FCC567A3F3D01227FBFF5CC0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203470.roa Signing time: Fri 04 Jul 2025 06:53:07 +0000 ROA not before: Fri 04 Jul 2025 06:48:07 +0000 ROA not after: Fri 03 Jul 2026 06:53:07 +0000 asID: 203470 IP address blocks: 2a05:dfc1:8400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:59:78:e3:df:1e:a2:77:fc:c5:67:a3:f3:d0:12:27:fb:ff:5c:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:07 2025 GMT Not After : Jul 3 06:53:07 2026 GMT Subject: CN=C970CE4D7501B00E65B8FBD2C4D72DC319455F89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c2:35:39:e8:32:f7:58:b3:73:66:e1:26:77: c9:41:06:79:4b:84:94:9d:34:f4:9b:32:81:02:15: e6:b3:75:23:d8:c4:ce:28:e2:d4:70:fc:b8:d8:fd: b8:d0:1c:bd:2c:31:60:49:b3:33:e8:49:b7:32:de: af:e1:29:ed:fd:d0:4c:a0:8c:8f:21:1d:d2:c3:98: 01:71:ca:01:a0:19:7a:7e:ee:1c:dd:c5:ca:fc:40: eb:6a:a6:3d:d4:26:e3:6a:86:36:d2:bf:9d:f7:97: 19:f0:d9:a4:34:ef:80:a6:7e:83:c4:a9:fe:2e:49: 6b:4b:6b:5a:0e:86:a4:a4:d3:04:f7:56:7e:6d:a4: 18:02:f1:6c:6f:c7:de:25:fb:9a:56:bf:f6:7b:7d: b8:3f:2d:90:f2:d6:de:bb:31:45:67:05:5f:44:b2: d7:25:3b:f8:cd:7a:12:12:48:bd:66:33:cb:30:8b: 60:49:17:87:3f:6d:8e:4a:53:29:3f:34:e2:c7:30: 31:18:63:47:f0:ed:bd:ea:e8:ad:7d:89:8e:76:f1: a2:ab:68:a9:02:7e:db:95:7d:e7:53:7e:59:24:36: 35:9e:e3:63:af:f2:82:1d:d1:13:a1:1c:e8:fe:2d: c6:e1:49:c5:d1:f3:dc:cb:21:c7:80:60:d7:b2:56: d5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:70:CE:4D:75:01:B0:0E:65:B8:FB:D2:C4:D7:2D:C3:19:45:5F:89 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8400::/40 Signature Algorithm: sha256WithRSAEncryption 24:7f:14:5c:f2:38:9c:b7:d2:0c:5f:b9:6c:3e:fc:d0:ae:14: 31:ee:3d:7e:00:8f:a9:b8:ce:d1:86:69:4b:bd:50:b3:79:d7: e6:b9:68:e2:64:0f:9d:d9:c4:e5:b2:a2:05:83:b1:74:08:7f: 0d:3e:56:dc:b8:01:6d:28:60:32:8d:6a:6e:18:68:55:50:44: 0c:ef:37:d8:51:cd:44:19:6d:09:79:9c:37:6c:3b:7a:35:33: e6:d4:da:00:7d:ea:ae:a1:38:52:ff:65:45:c5:47:49:c3:d7: ca:d3:39:c0:76:35:aa:f8:02:1d:bc:0f:a3:03:16:23:70:f0: 2b:ff:f0:4a:08:55:2e:24:66:c8:b6:f0:1e:cf:d2:1b:92:b5: 97:97:a0:ad:dd:8e:7e:16:64:f9:50:fa:e5:71:fe:f4:d9:b4: 73:df:bb:e1:ca:24:db:af:e4:78:e5:de:ef:28:3d:42:25:59: 1f:32:3c:8b:e1:71:b3:e9:49:ce:61:d6:bb:e6:1e:3e:c6:28: 8c:ae:38:db:c6:23:7b:46:76:b0:9c:b5:9b:35:f6:c2:9c:3a: be:e2:54:2b:d4:dd:f8:4a:1e:68:92:b4:cc:b8:ad:f3:ee:5c: 49:d9:b0:25:cc:d4:d1:db:ae:87:d1:93:4a:9a:5e:aa:bd:5d: 54:fb:8d:7c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcll4498eonf8xWej89ASJ/v/XMAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDdaFw0yNjA3MDMwNjUzMDdaMDMxMTAvBgNV BAMTKEM5NzBDRTRENzUwMUIwMEU2NUI4RkJEMkM0RDcyREMzMTk0NTVGODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+wjU56DL3WLNzZuEmd8lBBnlL hJSdNPSbMoECFeazdSPYxM4o4tRw/LjY/bjQHL0sMWBJszPoSbcy3q/hKe390Eyg jI8hHdLDmAFxygGgGXp+7hzdxcr8QOtqpj3UJuNqhjbSv533lxnw2aQ074CmfoPE qf4uSWtLa1oOhqSk0wT3Vn5tpBgC8Wxvx94l+5pWv/Z7fbg/LZDy1t67MUVnBV9E stclO/jNehISSL1mM8swi2BJF4c/bY5KUyk/NOLHMDEYY0fw7b3q6K19iY528aKr aKkCftuVfedTflkkNjWe42Ov8oId0ROhHOj+LcbhScXR89zLIceAYNeyVtVFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUyXDOTXUBsA5luPvSxNctwxlFX4kwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzNDcwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYQwDQYJKoZIhvcNAQELBQADggEBACR/ FFzyOJy30gxfuWw+/NCuFDHuPX4Aj6m4ztGGaUu9ULN51+a5aOJkD53ZxOWyogWD sXQIfw0+Vty4AW0oYDKNam4YaFVQRAzvN9hRzUQZbQl5nDdsO3o1M+bU2gB96q6h OFL/ZUXFR0nD18rTOcB2Nar4Ah28D6MDFiNw8Cv/8EoIVS4kZsi28B7P0huStZeX oK3djn4WZPlQ+uVx/vTZtHPfu+HKJNuv5Hjl3u8oPUIlWR8yPIvhcbPpSc5h1rvm Hj7GKIyuONvGI3tGdrCctZs19sKcOr7iVCvU3fhKHmiStMy4rfPuXEnZsCXM1NHb rofRk0qaXqq9XVT7jXw= -----END CERTIFICATE-----Generated at Sat Jul 5 03:52:39 2025 by rpki-client