$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203843.roa File: AS203843.roa (raw, json) Hash identifier: qdZszpEE6A5oMXn1atoOLnuB6qq3bBROGWTRI1yQlGA= Subject key identifier: 97:71:31:83:4F:AC:67:B1:B6:9C:0F:17:C8:5B:A1:29:1C:5B:E5:E3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6DEF843DEB040157FA7926600E7BFFE3112743AE Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203843.roa Signing time: Fri 04 Jul 2025 06:53:22 +0000 ROA not before: Fri 04 Jul 2025 06:48:22 +0000 ROA not after: Fri 03 Jul 2026 06:53:22 +0000 asID: 203843 IP address blocks: 2a0a:6040:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ef:84:3d:eb:04:01:57:fa:79:26:60:0e:7b:ff:e3:11:27:43:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:22 2025 GMT Not After : Jul 3 06:53:22 2026 GMT Subject: CN=977131834FAC67B1B69C0F17C85BA1291C5BE5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:90:9f:ce:f0:81:62:4e:85:6f:5b:f7:e7:0e: d6:e8:6d:9b:b2:29:46:9f:f4:ae:a8:29:0c:af:a5: 64:ca:3e:8a:90:b7:16:12:ee:0b:ac:70:46:35:88: 3f:61:95:ca:4b:66:62:fd:e2:31:48:be:db:31:4c: 44:43:05:6d:86:b1:df:dc:e6:ce:07:5a:c0:22:f4: a6:14:11:64:8c:93:93:f7:00:76:f8:59:17:9f:7f: 5f:99:fd:e5:ff:c2:a4:95:5a:33:f5:0a:88:6f:32: f2:8b:30:89:c2:70:10:cf:77:96:bc:1b:27:4e:b9: 77:24:97:62:a2:1c:42:d5:0e:cb:06:08:1e:68:93: 6e:39:5b:9e:70:2e:4d:39:95:5d:a9:f0:74:f7:81: 8c:0b:1f:cf:52:36:55:9c:02:f9:f0:c2:de:91:b9: 3f:92:bd:37:12:90:b3:ee:e3:67:53:9c:73:c7:cd: a9:63:90:7a:1a:47:31:ca:57:de:65:13:61:2f:47: aa:ae:ec:90:22:da:98:cd:1b:de:73:cb:4c:2a:f5: 3f:e2:48:6d:cf:05:15:af:f5:17:56:76:3c:fb:93: 9c:a4:30:2b:29:49:b1:b3:c0:26:a3:62:90:d7:7c: d2:53:47:9d:d8:6c:0b:3f:5d:2f:52:1f:42:90:52: 23:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:71:31:83:4F:AC:67:B1:B6:9C:0F:17:C8:5B:A1:29:1C:5B:E5:E3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203843.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:a100::/40 Signature Algorithm: sha256WithRSAEncryption 15:84:e9:eb:e8:e5:8e:f1:0a:b0:1e:05:ef:13:79:bd:8c:6e: dc:16:21:76:d8:54:ce:fe:31:c0:8e:54:96:e3:3d:01:86:eb: 21:b9:6f:d3:27:52:19:2b:53:dc:ca:0f:1b:3a:83:61:9d:d1: 71:c9:6d:46:9c:06:ff:84:ec:dc:b6:4f:8d:4c:56:b7:d7:37: 37:3c:67:50:9d:ee:68:75:13:68:93:1b:52:4b:98:e3:9c:0d: 71:ed:04:42:bc:0d:3d:34:5b:54:53:5a:54:fb:86:94:e1:67: 81:4c:e6:45:f8:99:40:de:26:0d:d3:40:fd:80:24:de:d1:4b: 0e:5c:11:7f:36:6b:5f:54:a2:15:f0:67:52:9c:8f:3d:8a:eb: 32:b3:41:26:24:61:19:d2:b4:62:06:fd:db:83:0b:1b:23:32: f7:04:16:27:3a:bc:89:d3:ce:be:ae:3b:3d:af:77:5b:1f:8d: 64:3b:ed:3e:90:ff:86:00:fd:80:88:6a:37:0d:70:ae:a2:d2: 81:8a:ec:28:fe:11:75:f2:fa:58:d3:83:fa:45:ae:14:f1:00: 0c:b1:af:f7:57:09:6d:ab:35:e7:3b:64:df:55:b9:93:82:ff: 09:15:c8:9b:8b:bc:d6:bb:93:4d:7c:87:60:15:6a:06:10:30: 93:2e:b1:c0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbe+EPesEAVf6eSZgDnv/4xEnQ64wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjJaFw0yNjA3MDMwNjUzMjJaMDMxMTAvBgNV BAMTKDk3NzEzMTgzNEZBQzY3QjFCNjlDMEYxN0M4NUJBMTI5MUM1QkU1RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFkJ/O8IFiToVvW/fnDtbobZuy KUaf9K6oKQyvpWTKPoqQtxYS7guscEY1iD9hlcpLZmL94jFIvtsxTERDBW2Gsd/c 5s4HWsAi9KYUEWSMk5P3AHb4WReff1+Z/eX/wqSVWjP1CohvMvKLMInCcBDPd5a8 GydOuXckl2KiHELVDssGCB5ok245W55wLk05lV2p8HT3gYwLH89SNlWcAvnwwt6R uT+SvTcSkLPu42dTnHPHzaljkHoaRzHKV95lE2EvR6qu7JAi2pjNG95zy0wq9T/i SG3PBRWv9RdWdjz7k5ykMCspSbGzwCajYpDXfNJTR53YbAs/XS9SH0KQUiMrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUl3Exg0+sZ7G2nA8XyFuhKRxb5eMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzODQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQKEwDQYJKoZIhvcNAQELBQADggEBABWE 6evo5Y7xCrAeBe8Teb2MbtwWIXbYVM7+McCOVJbjPQGG6yG5b9MnUhkrU9zKDxs6 g2Gd0XHJbUacBv+E7Ny2T41MVrfXNzc8Z1Cd7mh1E2iTG1JLmOOcDXHtBEK8DT00 W1RTWlT7hpThZ4FM5kX4mUDeJg3TQP2AJN7RSw5cEX82a19UohXwZ1Kcjz2K6zKz QSYkYRnStGIG/duDCxsjMvcEFic6vInTzr6uOz2vd1sfjWQ77T6Q/4YA/YCIajcN cK6i0oGK7Cj+EXXy+ljTg/pFrhTxAAyxr/dXCW2rNec7ZN9VuZOC/wkVyJuLvNa7 k018h2AVagYQMJMuscA= -----END CERTIFICATE-----Generated at Sat Jul 5 04:13:11 2025 by rpki-client