$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203888.roa File: AS203888.roa (raw, json) Hash identifier: +hIQY1kzS//OKIaEDee3ucDzhX8CN17D0OnMA8zXQ2A= Subject key identifier: A1:89:63:F4:E9:AD:42:D0:2C:53:BA:B2:0C:0B:FD:BA:84:02:19:56 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 06C23BE93C0BCE73ED46431B27978BEF811554E3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203888.roa Signing time: Fri 04 Jul 2025 06:52:59 +0000 ROA not before: Fri 04 Jul 2025 06:47:59 +0000 ROA not after: Fri 03 Jul 2026 06:52:59 +0000 asID: 203888 IP address blocks: 2a0a:6040:300::/40 maxlen: 48 2a0a:6040:e300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c2:3b:e9:3c:0b:ce:73:ed:46:43:1b:27:97:8b:ef:81:15:54:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:59 2025 GMT Not After : Jul 3 06:52:59 2026 GMT Subject: CN=A18963F4E9AD42D02C53BAB20C0BFDBA84021956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7e:2e:8a:28:54:03:07:70:0f:87:ed:58:b6: 77:91:c8:58:91:73:f0:0d:b0:ee:aa:5a:b4:9a:5f: 6a:4a:e4:d3:bc:e3:3b:ef:78:61:47:af:ea:68:06: 9c:94:ca:88:48:5c:b0:5a:b4:39:1a:90:94:8f:4a: 05:d6:63:58:3a:27:2b:0d:08:47:d1:96:67:ba:63: 7a:80:2d:aa:b2:27:47:92:d3:29:df:bf:a0:19:21: de:35:dd:9f:25:b1:be:04:1a:89:e9:37:b9:de:ca: 2c:ae:4b:f5:11:e1:80:40:e9:1d:2c:50:43:bb:5e: a4:3f:5b:ed:2b:40:a9:99:af:c5:ac:79:4e:6e:6f: 6a:7e:2e:33:27:4d:02:7c:fc:0e:c1:0f:3b:da:f2: 2f:7d:be:5b:2e:1d:48:b0:4f:85:e4:99:7a:3d:ce: 6d:34:f0:de:7a:39:01:18:c4:7e:7f:a3:95:50:62: 4f:1d:fb:46:88:42:11:e0:cd:b2:0c:6d:94:7f:24: 18:bd:05:7d:80:f0:5b:1a:0b:fc:ca:b4:3d:af:33: b7:09:15:1d:f9:c8:02:7f:5e:9b:cc:d3:77:bb:0b: 65:4d:4b:71:2d:78:77:24:1a:32:c9:b4:f2:1f:7f: 8c:9e:43:dd:aa:be:18:71:59:59:e3:6f:a2:63:29: ea:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:89:63:F4:E9:AD:42:D0:2C:53:BA:B2:0C:0B:FD:BA:84:02:19:56 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203888.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:300::/40 2a0a:6040:e300::/40 Signature Algorithm: sha256WithRSAEncryption 9e:fb:e6:46:08:e7:2d:c4:4c:97:68:b8:b7:af:0a:95:83:45: 56:c7:07:c8:79:a4:29:55:91:86:d0:3f:03:21:9c:64:02:7b: 9b:9d:5a:80:25:33:40:2f:67:eb:cf:04:16:04:d1:11:23:03: cb:f3:cc:89:e9:7c:9f:90:51:c1:23:97:24:69:61:80:22:50: d3:e9:f8:9e:18:b7:f8:29:b9:2e:8b:d8:d6:2c:d8:f1:43:36: 63:32:46:b6:13:03:19:d1:b0:82:60:de:ad:af:46:d0:f1:87: 7f:a9:fd:a9:a3:46:51:3b:83:c0:f5:fd:13:c5:d8:4f:ed:60: 3f:e0:b8:14:48:5c:7d:6c:24:1a:4e:65:5c:be:57:67:73:11: be:bd:b3:9e:65:a0:cf:4a:10:14:d9:9f:50:47:62:1c:49:3f: 49:08:49:a8:ab:13:7a:d6:68:03:ff:04:75:b0:b9:46:d1:d7: 19:53:40:6b:2b:39:30:38:65:ac:c7:4e:c2:45:47:85:c1:c7: 9a:3e:de:83:98:ef:5e:e2:92:8e:31:b8:ee:08:2f:84:f9:91: 3a:1a:48:17:dd:81:19:66:11:ce:9a:e9:ed:2a:82:41:58:1e: be:f9:54:81:1a:16:85:4d:38:4a:56:65:54:97:67:e7:e3:c0: 14:df:4c:49 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUBsI76TwLznPtRkMbJ5eL74EVVOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTlaFw0yNjA3MDMwNjUyNTlaMDMxMTAvBgNV BAMTKEExODk2M0Y0RTlBRDQyRDAyQzUzQkFCMjBDMEJGREJBODQwMjE5NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCfi6KKFQDB3APh+1YtneRyFiR c/ANsO6qWrSaX2pK5NO84zvveGFHr+poBpyUyohIXLBatDkakJSPSgXWY1g6JysN CEfRlme6Y3qALaqyJ0eS0ynfv6AZId413Z8lsb4EGonpN7neyiyuS/UR4YBA6R0s UEO7XqQ/W+0rQKmZr8WseU5ub2p+LjMnTQJ8/A7BDzva8i99vlsuHUiwT4XkmXo9 zm008N56OQEYxH5/o5VQYk8d+0aIQhHgzbIMbZR/JBi9BX2A8FsaC/zKtD2vM7cJ FR35yAJ/XpvM03e7C2VNS3EteHckGjLJtPIff4yeQ92qvhhxWVnjb6JjKeoVAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUoYlj9OmtQtAsU7qyDAv9uoQCGVYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzODg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgpgQAMDBgAqCmBA4zANBgkqhkiG9w0BAQsF AAOCAQEAnvvmRgjnLcRMl2i4t68KlYNFVscHyHmkKVWRhtA/AyGcZAJ7m51agCUz QC9n688EFgTRESMDy/PMiel8n5BRwSOXJGlhgCJQ0+n4nhi3+Cm5LovY1izY8UM2 YzJGthMDGdGwgmDera9G0PGHf6n9qaNGUTuDwPX9E8XYT+1gP+C4FEhcfWwkGk5l XL5XZ3MRvr2znmWgz0oQFNmfUEdiHEk/SQhJqKsTetZoA/8EdbC5RtHXGVNAays5 MDhlrMdOwkVHhcHHmj7eg5jvXuKSjjG47ggvhPmROhpIF92BGWYRzprp7SqCQVge vvlUgRoWhU04SlZlVJdn5+PAFN9MSQ== -----END CERTIFICATE-----Generated at Sat Jul 5 04:20:11 2025 by rpki-client