$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203686.roa File: AS203686.roa (raw, json) Hash identifier: XQRSbAekX13Cg3Z7mOF9rMFpgVb+/l+cUD1GWCH6jis= Subject key identifier: 09:56:57:35:14:03:0F:F0:9A:36:EA:00:B2:11:0E:4E:D5:F8:7A:6A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 67A24A3AD521526A9FFE9C891DA3E578D99C2CE4 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203686.roa Signing time: Fri 04 Jul 2025 06:53:22 +0000 ROA not before: Fri 04 Jul 2025 06:48:22 +0000 ROA not after: Fri 03 Jul 2026 06:53:22 +0000 asID: 203686 IP address blocks: 2a05:dfc1:7e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a2:4a:3a:d5:21:52:6a:9f:fe:9c:89:1d:a3:e5:78:d9:9c:2c:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:22 2025 GMT Not After : Jul 3 06:53:22 2026 GMT Subject: CN=0956573514030FF09A36EA00B2110E4ED5F87A6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3a:3a:cc:e6:11:57:39:40:89:49:96:52:b1: 81:64:f4:d7:3e:24:71:8a:14:e5:91:b0:62:68:df: 25:b7:83:08:1c:76:a1:ee:90:9a:28:4d:8e:50:ca: b8:52:71:93:17:89:7f:ef:4f:2b:39:81:cc:a6:9b: b5:8f:54:cb:19:87:37:0a:50:4f:15:86:a4:36:c3: 8c:a2:26:a5:69:e3:78:e2:18:5d:ab:d4:2d:51:fd: ab:9e:30:52:9e:93:fd:a1:72:b7:3b:77:f0:14:fa: 48:96:d5:69:af:31:9d:af:0b:91:66:fa:52:64:e9: e2:25:42:35:43:f6:f7:6d:bc:6a:83:26:32:73:95: 58:1a:1a:44:57:5d:ab:ab:d1:4d:e9:d0:36:ce:5a: bf:06:6b:ad:66:16:8f:6c:de:76:f2:fe:24:28:30: 91:b3:0a:51:c9:ea:4d:a4:25:9b:14:4f:8d:ee:da: e2:fb:ac:79:d2:49:a1:15:75:3f:f7:38:fd:ed:b6: eb:70:98:b6:1c:1b:42:08:77:41:d5:55:40:8f:cc: 14:89:9b:d6:45:3a:97:22:03:e1:35:1a:e3:a1:40: 6d:ee:50:51:53:e4:3a:41:27:23:2a:f8:6c:2b:a4: 6b:88:53:ab:ba:af:89:6e:7d:f0:ea:8d:fc:08:a9: e9:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:56:57:35:14:03:0F:F0:9A:36:EA:00:B2:11:0E:4E:D5:F8:7A:6A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203686.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7e00::/40 Signature Algorithm: sha256WithRSAEncryption ac:a7:73:cb:cb:19:94:ac:e9:60:a2:4f:c1:0b:4a:ff:f6:91: 74:2d:46:d3:11:2b:5e:8e:c0:27:eb:fa:dd:e8:67:68:44:45: 97:69:3e:16:96:27:1f:bc:12:d9:80:9d:97:58:50:bb:d9:d1: c6:fd:0b:5c:24:28:63:15:85:b1:42:64:a1:54:57:51:18:e8: 1b:61:0e:3a:b7:33:99:d1:e4:2f:8e:30:2e:42:67:0d:22:e9: 16:4d:bb:bb:d9:75:30:f9:38:ae:ff:5b:14:d4:3f:60:6e:d4: c4:c0:af:f3:f0:92:b0:ae:01:fc:e2:11:9b:26:60:37:a1:7d: cf:05:30:cf:a7:b2:ec:36:bb:d2:bf:3e:67:53:2e:a4:71:26: ea:57:c2:c6:1f:b8:ba:ad:2b:61:fc:2f:b7:8b:62:52:64:ce: ba:06:89:46:4a:e2:3a:c5:72:02:b4:93:29:a4:98:bc:1f:f0: e9:2e:37:d4:e2:3f:a7:b2:62:14:d4:ba:c3:ef:41:f3:57:ed: 19:4d:73:c6:d8:e3:61:77:ed:1b:cd:25:0b:ba:9c:a1:e7:e2: 81:59:47:d6:45:2e:7a:48:07:38:42:51:5f:76:60:f1:d5:61: c2:cf:77:1a:cc:97:a5:74:04:7e:53:7c:47:5b:16:12:6c:36: 0d:b9:a1:4e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ6JKOtUhUmqf/pyJHaPleNmcLOQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjJaFw0yNjA3MDMwNjUzMjJaMDMxMTAvBgNV BAMTKDA5NTY1NzM1MTQwMzBGRjA5QTM2RUEwMEIyMTEwRTRFRDVGODdBNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmOjrM5hFXOUCJSZZSsYFk9Nc+ JHGKFOWRsGJo3yW3gwgcdqHukJooTY5QyrhScZMXiX/vTys5gcymm7WPVMsZhzcK UE8VhqQ2w4yiJqVp43jiGF2r1C1R/aueMFKek/2hcrc7d/AU+kiW1WmvMZ2vC5Fm +lJk6eIlQjVD9vdtvGqDJjJzlVgaGkRXXaur0U3p0DbOWr8Ga61mFo9s3nby/iQo MJGzClHJ6k2kJZsUT43u2uL7rHnSSaEVdT/3OP3ttutwmLYcG0IId0HVVUCPzBSJ m9ZFOpciA+E1GuOhQG3uUFFT5DpBJyMq+GwrpGuIU6u6r4luffDqjfwIqelnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCVZXNRQDD/CaNuoAshEOTtX4emowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzNjg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwX4wDQYJKoZIhvcNAQELBQADggEBAKyn c8vLGZSs6WCiT8ELSv/2kXQtRtMRK16OwCfr+t3oZ2hERZdpPhaWJx+8EtmAnZdY ULvZ0cb9C1wkKGMVhbFCZKFUV1EY6BthDjq3M5nR5C+OMC5CZw0i6RZNu7vZdTD5 OK7/WxTUP2Bu1MTAr/PwkrCuAfziEZsmYDehfc8FMM+nsuw2u9K/PmdTLqRxJupX wsYfuLqtK2H8L7eLYlJkzroGiUZK4jrFcgK0kymkmLwf8OkuN9TiP6eyYhTUusPv QfNX7RlNc8bY42F37RvNJQu6nKHn4oFZR9ZFLnpIBzhCUV92YPHVYcLPdxrMl6V0 BH5TfEdbFhJsNg25oU4= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:39 2025 by rpki-client