$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203888.roa File: AS203888.roa (raw, json) Hash identifier: eoL62eZk7D5G4P1W1blgA5qextMNUZ4gFk4EJYP9jzE= Subject key identifier: 7F:39:AC:F4:11:77:27:57:80:F5:C0:AF:56:DD:98:38:64:E5:E6:EF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0563AB14FEBDFB08565C6915FF52E8D73011CA31 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203888.roa Signing time: Fri 05 Jun 2026 07:12:29 +0000 ROA not before: Fri 05 Jun 2026 07:07:29 +0000 ROA not after: Fri 04 Jun 2027 07:12:29 +0000 asID: 203888 IP address blocks: 2a0a:6040:300::/40 maxlen: 48 2a0a:6040:e300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:63:ab:14:fe:bd:fb:08:56:5c:69:15:ff:52:e8:d7:30:11:ca:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:29 2026 GMT Not After : Jun 4 07:12:29 2027 GMT Subject: CN=7F39ACF41177275780F5C0AF56DD983864E5E6EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:11:57:b3:0b:34:72:53:94:c4:26:a0:76: 5c:e1:c4:88:96:9b:56:7a:4b:7f:c2:d3:4c:15:a6: 3e:cc:5a:1c:ca:94:1c:39:a1:15:04:d4:0b:66:a5: c6:1a:53:9e:bb:d2:87:d4:6d:5d:94:4b:22:57:a7: b9:77:56:5a:7a:5e:71:81:0f:b0:93:51:06:e4:54: eb:00:71:65:5a:38:43:8a:b8:60:fc:17:10:5e:d6: 68:e4:98:40:c8:b3:6e:fd:36:cb:d0:51:f2:19:16: e4:a9:8a:a4:e0:f3:fc:b3:40:45:a5:eb:a5:89:e7: ba:4f:21:92:87:f0:ab:eb:03:05:56:1b:e5:43:5a: d0:4b:f2:f5:eb:f8:9d:2a:35:fd:44:37:81:2b:1e: 9a:01:8e:db:80:67:3e:83:f5:b8:c4:f7:63:86:a4: 9e:d7:b5:01:c5:df:29:69:d8:87:ab:6f:d4:02:d4: 40:f7:d2:dc:0d:dc:e1:9e:38:c6:1c:2b:54:8b:57: c7:89:4d:fa:cf:30:a4:14:b8:bb:3e:da:3b:9e:d6: 80:fa:f7:66:f6:2b:84:69:42:2d:14:00:53:70:c0: a3:f2:0b:0e:f8:33:e0:d8:8b:99:bc:2e:44:66:08: f1:45:a9:cf:f7:46:ee:c2:35:1f:05:35:da:cb:0d: 96:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:39:AC:F4:11:77:27:57:80:F5:C0:AF:56:DD:98:38:64:E5:E6:EF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203888.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:300::/40 2a0a:6040:e300::/40 Signature Algorithm: sha256WithRSAEncryption 90:14:60:82:62:51:d9:c1:61:88:5c:76:0c:1f:75:30:2f:2e: 06:44:97:fc:1e:69:78:cb:25:45:94:0e:52:ba:f7:1a:c0:29: c7:9f:06:b2:05:ab:18:48:2a:4f:53:bf:51:9b:b1:a4:28:55: 95:26:94:b8:01:fa:03:88:3f:5a:c5:0f:19:c6:2c:43:bf:32: 1c:42:fd:87:eb:af:a5:c9:7d:c3:94:9b:66:5c:d1:1a:80:e9: 76:1a:90:17:57:2d:fb:90:91:07:d2:69:a1:e0:fa:3b:95:17: ab:d6:1a:c0:54:15:21:6c:5d:f1:81:5b:a7:62:1b:d3:2a:a5: 45:31:42:da:c3:93:ed:e7:0b:38:01:f7:33:68:34:c7:e1:5b: 49:3b:07:4b:30:be:86:1f:90:09:44:39:d9:cc:5b:ab:0f:09: ad:cb:c6:73:e1:a1:2a:a3:1d:70:7d:68:90:99:5e:76:2f:9b: 59:4a:df:74:85:01:6a:26:36:64:17:90:4d:15:3f:7a:ec:b7: a8:a3:be:f3:c2:0c:83:49:d2:e1:26:85:44:bd:76:2b:1b:28: ca:a3:2c:a9:ea:cd:72:a5:00:ef:4d:92:c1:ad:d7:b5:4d:dc: 56:6e:42:2c:55:b8:15:a6:f2:63:13:bf:de:9d:c9:cf:6f:0b: 01:ea:84:ca -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUBWOrFP69+whWXGkV/1Lo1zARyjEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjlaFw0yNzA2MDQwNzEyMjlaMDMxMTAvBgNV BAMTKDdGMzlBQ0Y0MTE3NzI3NTc4MEY1QzBBRjU2REQ5ODM4NjRFNUU2RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDuxFXsws0clOUxCagdlzhxIiW m1Z6S3/C00wVpj7MWhzKlBw5oRUE1AtmpcYaU5670ofUbV2USyJXp7l3Vlp6XnGB D7CTUQbkVOsAcWVaOEOKuGD8FxBe1mjkmEDIs279NsvQUfIZFuSpiqTg8/yzQEWl 66WJ57pPIZKH8KvrAwVWG+VDWtBL8vXr+J0qNf1EN4ErHpoBjtuAZz6D9bjE92OG pJ7XtQHF3ylp2Ierb9QC1ED30twN3OGeOMYcK1SLV8eJTfrPMKQUuLs+2jue1oD6 92b2K4RpQi0UAFNwwKPyCw74M+DYi5m8LkRmCPFFqc/3Ru7CNR8FNdrLDZa3AgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUfzms9BF3J1eA9cCvVt2YOGTl5u8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzODg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQAMDBgAqCmBA4zANBgkqhkiG9w0BAQsF AAOCAQEAkBRggmJR2cFhiFx2DB91MC8uBkSX/B5peMslRZQOUrr3GsApx58GsgWr GEgqT1O/UZuxpChVlSaUuAH6A4g/WsUPGcYsQ78yHEL9h+uvpcl9w5SbZlzRGoDp dhqQF1ct+5CRB9JpoeD6O5UXq9YawFQVIWxd8YFbp2Ib0yqlRTFC2sOT7ecLOAH3 M2g0x+FbSTsHSzC+hh+QCUQ52cxbqw8JrcvGc+GhKqMdcH1okJledi+bWUrfdIUB aiY2ZBeQTRU/euy3qKO+88IMg0nS4SaFRL12KxsoyqMsqerNcqUA702Swa3XtU3c Vm5CLFW4FabyYxO/3p3Jz28LAeqEyg== -----END CERTIFICATE-----Generated at Sat Jun 6 06:42:34 2026 by rpki-client