$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203539.roa File: AS203539.roa (raw, json) Hash identifier: 6pRiuJ6fHlm8addp64hQjlQZvvHfUhK1PuCTXm9/TFg= Subject key identifier: 94:98:39:71:78:2D:71:AD:C7:CC:9E:24:67:5D:91:52:79:E0:37:DE Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 72F02A49DC659E62785265A106642C3B049666FD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203539.roa Signing time: Fri 04 Jul 2025 06:53:14 +0000 ROA not before: Fri 04 Jul 2025 06:48:14 +0000 ROA not after: Fri 03 Jul 2026 06:53:14 +0000 asID: 203539 IP address blocks: 2a05:dfc1:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:f0:2a:49:dc:65:9e:62:78:52:65:a1:06:64:2c:3b:04:96:66:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:14 2025 GMT Not After : Jul 3 06:53:14 2026 GMT Subject: CN=94983971782D71ADC7CC9E24675D915279E037DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:c2:2b:c6:f3:ac:ff:35:e7:a0:f2:f3:19: df:8b:2d:8d:8b:f5:75:c6:df:ad:84:b1:3d:b3:7f: 4d:5f:e1:bd:ce:63:8e:ca:3f:df:04:56:8c:0e:6b: da:6f:be:60:67:56:32:80:fe:34:26:4b:96:8b:10: bf:06:ba:d4:ce:3d:b5:21:97:e4:26:1a:80:06:9d: 2f:0f:e3:90:77:19:dd:3b:79:37:35:59:32:de:1b: 3b:2e:35:ee:8a:9b:d5:fc:52:08:d7:49:ba:1d:62: 25:57:28:4f:fd:0b:f1:3f:bd:f0:46:ec:0f:f6:55: fa:ac:d0:ba:ff:17:c3:a1:78:a5:97:b9:89:96:16: 19:01:f9:05:30:8f:ab:5a:99:88:1a:b0:df:0e:a0: 0a:73:2d:5b:b0:f5:53:24:34:f1:71:78:bd:3a:b9: b0:7e:a6:4c:34:e5:77:30:06:ac:19:61:14:56:c9: 20:0f:6f:aa:d9:44:43:2d:e7:96:58:2d:9a:d3:ce: 80:f7:fd:22:66:66:ea:34:b2:8e:1e:b2:7b:ef:24: 58:be:9f:69:ef:c0:53:21:a3:79:1a:00:f9:dd:09: 41:08:07:da:e8:67:7f:5c:4c:f5:b0:b5:42:cb:3f: 34:c3:ef:e6:d8:10:99:1b:43:7a:fc:1b:7f:f6:4e: 54:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:98:39:71:78:2D:71:AD:C7:CC:9E:24:67:5D:91:52:79:E0:37:DE X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6500::/40 Signature Algorithm: sha256WithRSAEncryption 58:7f:da:f7:6e:42:b2:3c:00:7d:b8:af:46:05:df:55:c4:bf: 90:c9:f0:07:a8:3c:89:4f:45:27:96:a7:08:11:79:9d:bd:04: 6a:9b:14:de:bf:ae:4b:92:57:92:bc:db:f0:1f:83:af:fc:6d: 2f:7e:60:98:ba:d9:af:cc:e1:75:83:be:32:e1:d0:1c:81:21: 02:c3:82:57:0e:08:fc:f7:32:d8:6a:10:41:f1:be:bd:1c:9c: d3:7d:d7:4b:f5:56:fc:ed:7b:20:7d:64:30:00:6a:1f:52:41: 7d:de:5b:bb:d5:64:a6:42:76:50:cf:dc:44:ae:7b:2f:43:26: 41:dc:e7:24:f4:b3:54:5b:9d:b5:b7:0f:1b:fd:ed:2c:0e:34: 6c:18:bf:dc:a6:aa:6f:23:1e:ac:e3:d1:05:c7:d9:80:3e:70: 0f:30:27:6b:4a:58:da:75:a1:6e:8b:c9:0f:7d:39:f4:29:78: 71:c7:8f:d9:c4:bc:79:df:b6:a8:d0:7b:f7:87:0f:be:3d:51: 8f:37:66:05:a4:10:68:ac:56:f8:60:e9:ac:e7:87:31:35:8a: 92:e1:be:6e:29:c8:42:e9:65:df:3f:e6:18:f5:85:75:79:37: b6:70:59:7f:b5:35:68:10:31:56:94:a1:19:2a:14:1a:b1:c5: 4b:62:13:49 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcvAqSdxlnmJ4UmWhBmQsOwSWZv0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTRaFw0yNjA3MDMwNjUzMTRaMDMxMTAvBgNV BAMTKDk0OTgzOTcxNzgyRDcxQURDN0NDOUUyNDY3NUQ5MTUyNzlFMDM3REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9r8IrxvOs/zXnoPLzGd+LLY2L 9XXG362EsT2zf01f4b3OY47KP98EVowOa9pvvmBnVjKA/jQmS5aLEL8GutTOPbUh l+QmGoAGnS8P45B3Gd07eTc1WTLeGzsuNe6Km9X8UgjXSbodYiVXKE/9C/E/vfBG 7A/2Vfqs0Lr/F8OheKWXuYmWFhkB+QUwj6tamYgasN8OoApzLVuw9VMkNPFxeL06 ubB+pkw05XcwBqwZYRRWySAPb6rZREMt55ZYLZrTzoD3/SJmZuo0so4esnvvJFi+ n2nvwFMho3kaAPndCUEIB9roZ39cTPWwtULLPzTD7+bYEJkbQ3r8G3/2TlRvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlJg5cXgtca3HzJ4kZ12RUnngN94wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWUwDQYJKoZIhvcNAQELBQADggEBAFh/ 2vduQrI8AH24r0YF31XEv5DJ8AeoPIlPRSeWpwgReZ29BGqbFN6/rkuSV5K82/Af g6/8bS9+YJi62a/M4XWDvjLh0ByBIQLDglcOCPz3MthqEEHxvr0cnNN910v1Vvzt eyB9ZDAAah9SQX3eW7vVZKZCdlDP3ESuey9DJkHc5yT0s1RbnbW3Dxv97SwONGwY v9ymqm8jHqzj0QXH2YA+cA8wJ2tKWNp1oW6LyQ99OfQpeHHHj9nEvHnftqjQe/eH D749UY83ZgWkEGisVvhg6aznhzE1ipLhvm4pyELpZd8/5hj1hXV5N7ZwWX+1NWgQ MVaUoRkqFBqxxUtiE0k= -----END CERTIFICATE-----Generated at Sat Jul 5 06:09:41 2025 by rpki-client