$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203868.roa File: AS203868.roa (raw, json) Hash identifier: 1cLt6vQy65zj/qHlEgN011BgHQLtDyCVyrXnFd04v0U= Subject key identifier: 5F:05:91:47:74:16:4B:23:CD:28:66:4E:A3:1A:CD:DC:DF:B8:C3:66 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 28529990CC1D52015399930BD1EF1F3434A4363C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203868.roa Signing time: Fri 04 Jul 2025 06:53:05 +0000 ROA not before: Fri 04 Jul 2025 06:48:05 +0000 ROA not after: Fri 03 Jul 2026 06:53:05 +0000 asID: 203868 IP address blocks: 2a0a:6040:dd00::/40 maxlen: 48 2a0a:6040:fb00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:52:99:90:cc:1d:52:01:53:99:93:0b:d1:ef:1f:34:34:a4:36:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:05 2025 GMT Not After : Jul 3 06:53:05 2026 GMT Subject: CN=5F05914774164B23CD28664EA31ACDDCDFB8C366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:db:83:b9:71:63:fd:5d:02:ea:47:c2:5c:9d: ee:b9:ce:a3:63:2f:3e:24:f0:0b:a9:97:98:e6:bd: c0:48:f5:04:a6:03:15:ed:3e:3b:fa:67:87:7b:27: cf:b9:fe:93:03:41:ec:e8:3f:27:5c:2c:3c:e7:a1: 45:3f:ba:43:b2:d1:ce:43:b9:0a:96:41:4b:09:ef: 43:10:66:fe:56:95:29:28:99:ed:c2:81:84:2c:66: 35:85:67:2e:53:ae:45:5b:98:07:18:83:a8:ca:44: d4:10:93:ae:34:57:dc:d7:61:3d:73:f0:45:76:e0: 1f:2c:93:cc:b2:7f:0b:09:e2:80:f0:9c:00:f4:7e: ab:75:aa:46:61:1a:4e:46:c1:41:e2:3c:77:10:e7: 25:f8:6b:10:c4:a9:50:c5:70:ec:c6:ab:95:73:e9: f2:dc:69:6d:e7:77:80:af:9c:56:fc:27:02:e8:9e: 47:33:34:f1:47:71:71:9d:7f:c5:f1:0d:cb:d1:d0: d0:6e:13:e3:ac:ff:b8:ad:f5:e3:1d:5c:f3:83:37: c4:ee:f1:16:71:57:eb:ba:e9:fe:a4:2b:5a:e3:eb: 83:d2:97:1e:c7:83:33:89:9d:a4:5d:c1:f1:a5:00: b2:c6:2c:d1:71:a8:44:f4:a8:cb:b8:8d:ff:f9:b9: a2:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:05:91:47:74:16:4B:23:CD:28:66:4E:A3:1A:CD:DC:DF:B8:C3:66 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203868.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:dd00::/40 2a0a:6040:fb00::/40 Signature Algorithm: sha256WithRSAEncryption b3:96:94:5b:50:e9:08:65:66:d1:cd:fa:39:96:61:19:43:f0: f4:a4:99:c1:a0:c3:3b:88:4a:f2:2c:2a:f3:e6:10:2c:89:f5: 36:fc:fc:34:20:6a:5d:72:22:d5:9f:1a:39:0e:ed:c8:99:13: 03:29:df:48:d0:c0:11:2a:64:b7:9e:6c:85:d8:10:95:31:2f: 7d:f0:52:b2:a2:b8:cb:d9:68:91:09:57:0b:ca:1b:21:d4:34: b9:05:7c:2e:b1:62:26:1b:6e:cb:05:3f:81:54:21:b9:d4:b7: f8:a9:9f:b2:f9:38:51:70:21:f9:76:44:f6:a8:6a:b3:c6:8a: 72:76:f4:1f:35:3f:58:35:da:8e:52:d7:e6:36:c7:5b:10:a9: a5:a0:0f:e3:b4:1b:e0:3d:a8:cd:3b:24:31:7b:97:14:04:98: d1:22:6a:e7:a5:86:87:4d:43:40:48:60:a7:a3:a4:e0:12:a1: 9f:a8:7b:71:78:49:4b:2f:53:4d:06:eb:9e:ea:d5:03:df:7f: bc:5f:74:81:f9:54:9b:6f:a9:17:61:78:98:47:56:54:d9:89: a5:55:56:31:71:22:a7:0f:3a:72:0b:2e:ae:28:d1:f5:03:65: 6f:aa:1f:6e:f3:49:11:85:0e:54:94:1d:7a:76:ed:07:9a:e2: 98:ff:44:e9 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUKFKZkMwdUgFTmZML0e8fNDSkNjwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDVaFw0yNjA3MDMwNjUzMDVaMDMxMTAvBgNV BAMTKDVGMDU5MTQ3NzQxNjRCMjNDRDI4NjY0RUEzMUFDRERDREZCOEMzNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb24O5cWP9XQLqR8Jcne65zqNj Lz4k8Aupl5jmvcBI9QSmAxXtPjv6Z4d7J8+5/pMDQezoPydcLDznoUU/ukOy0c5D uQqWQUsJ70MQZv5WlSkome3CgYQsZjWFZy5TrkVbmAcYg6jKRNQQk640V9zXYT1z 8EV24B8sk8yyfwsJ4oDwnAD0fqt1qkZhGk5GwUHiPHcQ5yX4axDEqVDFcOzGq5Vz 6fLcaW3nd4CvnFb8JwLonkczNPFHcXGdf8XxDcvR0NBuE+Os/7it9eMdXPODN8Tu 8RZxV+u66f6kK1rj64PSlx7HgzOJnaRdwfGlALLGLNFxqET0qMu4jf/5uaLzAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUXwWRR3QWSyPNKGZOoxrN3N+4w2YwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzODY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQN0DBgAqCmBA+zANBgkqhkiG9w0BAQsF AAOCAQEAs5aUW1DpCGVm0c36OZZhGUPw9KSZwaDDO4hK8iwq8+YQLIn1Nvz8NCBq XXIi1Z8aOQ7tyJkTAynfSNDAESpkt55shdgQlTEvffBSsqK4y9lokQlXC8obIdQ0 uQV8LrFiJhtuywU/gVQhudS3+Kmfsvk4UXAh+XZE9qhqs8aKcnb0HzU/WDXajlLX 5jbHWxCppaAP47Qb4D2ozTskMXuXFASY0SJq56WGh01DQEhgp6Ok4BKhn6h7cXhJ Sy9TTQbrnurVA99/vF90gflUm2+pF2F4mEdWVNmJpVVWMXEipw86cgsurijR9QNl b6ofbvNJEYUOVJQdenbtB5rimP9E6Q== -----END CERTIFICATE-----Generated at Sat Jul 5 04:12:39 2025 by rpki-client