$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS204676.roa File: AS204676.roa (raw, json) Hash identifier: PboDicICrt4SiEMSHip9OsWZq70p2JXonBqKSjPFPPc= Subject key identifier: 70:78:75:F7:5F:3F:AE:A4:D7:39:AA:D6:68:EA:F3:2A:22:3B:12:E1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5A746C53479F208DA643173CD73F4EE7F9B99D62 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS204676.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 204676 IP address blocks: 2a0a:6040:7000::/40 maxlen: 40 2a0a:6040:8000::/40 maxlen: 48 2a0a:6040:9000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:74:6c:53:47:9f:20:8d:a6:43:17:3c:d7:3f:4e:e7:f9:b9:9d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=707875F75F3FAEA4D739AAD668EAF32A223B12E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ed:8d:70:b4:07:28:81:3f:03:72:7d:2e:4d: 12:69:f3:ed:2a:39:d1:b2:44:98:85:5d:3f:e8:e1: 3f:9d:bf:b2:be:17:e7:97:08:c0:73:d3:ad:90:87: 92:5e:d7:b7:ea:29:a1:13:3b:dd:ea:4e:8c:7d:dc: 22:c0:a7:e7:d7:a5:88:d3:df:1f:92:2d:ee:75:18: 21:1a:09:39:df:f3:88:a7:98:7f:a1:01:9e:8f:ce: fa:c7:c3:da:a5:32:7b:63:26:2d:af:40:ac:3a:e7: 34:73:e9:49:5f:d8:56:c7:e9:9a:c7:d7:4c:e9:6d: 29:ce:be:ba:1f:98:e2:a2:f4:1f:e6:31:c1:af:df: 5b:cc:71:b1:28:72:a0:7a:91:95:b6:a6:75:58:9e: b5:32:48:78:82:02:21:9d:30:12:f1:6c:9f:2b:21: a2:75:71:d6:1c:c7:47:b2:46:8b:2b:de:34:c3:6a: f4:46:30:0f:bc:63:be:fd:c8:48:10:de:30:fa:a8: 1c:6a:3e:fa:5a:db:cf:43:36:31:6c:93:dd:e2:ea: db:b1:e1:52:2f:46:3f:85:32:4b:f5:95:9e:da:95: 2d:49:2c:da:d4:d2:8b:00:8c:d7:da:b1:3f:e4:89: 60:a4:19:f9:ae:b3:37:cd:03:48:0f:2c:b8:7c:ec: 8a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:78:75:F7:5F:3F:AE:A4:D7:39:AA:D6:68:EA:F3:2A:22:3B:12:E1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS204676.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7000::/40 2a0a:6040:8000::/40 2a0a:6040:9000::/40 Signature Algorithm: sha256WithRSAEncryption bc:b8:0a:3d:f6:2e:97:8f:49:4a:56:db:67:e3:7a:49:54:eb: d9:bb:04:b4:40:74:2e:1a:a7:60:6b:74:33:e8:b0:28:91:d2: 38:6f:96:b9:6c:02:38:18:e9:45:06:2e:8e:b8:cb:fa:72:68: a0:f9:50:69:07:f1:07:ed:c6:31:07:38:67:d2:58:01:52:12: d5:44:3d:1f:cd:07:04:41:79:11:2f:ff:2c:f1:01:0c:e6:3e: df:cd:17:a7:8f:38:c7:d5:ea:37:69:ee:ea:dd:3b:31:25:fa: ce:43:cb:0c:4b:e2:bb:ee:17:a9:90:0b:40:63:1b:73:48:c4: 3d:8d:a2:75:1a:28:0c:9f:10:41:84:3f:d9:13:d2:de:cb:7a: 19:f4:35:4a:ba:c4:8d:b7:41:1d:dc:29:75:b5:51:23:2f:a2: 87:ce:94:f1:14:c2:8c:5d:8d:d1:c8:0e:ab:db:94:66:a9:5e: ad:9f:d7:05:a5:b1:4b:9b:a7:10:45:0e:2d:5f:cc:94:4d:8c: ac:6b:e3:06:98:58:97:22:de:f5:8c:c7:a3:1f:4c:0c:cb:04: cf:a5:4a:b9:d0:1f:f5:4a:98:14:6d:e7:40:62:a1:64:63:2c: c8:ab:79:c6:29:8e:76:b1:3c:7f:9f:0b:9f:e2:0f:7c:65:4a: 4f:7f:b9:31 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUWnRsU0efII2mQxc81z9O5/m5nWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKDcwNzg3NUY3NUYzRkFFQTRENzM5QUFENjY4RUFGMzJBMjIzQjEyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm7Y1wtAcogT8Dcn0uTRJp8+0q OdGyRJiFXT/o4T+dv7K+F+eXCMBz062Qh5Je17fqKaETO93qTox93CLAp+fXpYjT 3x+SLe51GCEaCTnf84inmH+hAZ6PzvrHw9qlMntjJi2vQKw65zRz6Ulf2FbH6ZrH 10zpbSnOvrofmOKi9B/mMcGv31vMcbEocqB6kZW2pnVYnrUySHiCAiGdMBLxbJ8r IaJ1cdYcx0eyRosr3jTDavRGMA+8Y779yEgQ3jD6qBxqPvpa289DNjFsk93i6tux 4VIvRj+FMkv1lZ7alS1JLNrU0osAjNfasT/kiWCkGfmuszfNA0gPLLh87Ip/AgMB AAGjggIEMIICADAdBgNVHQ4EFgQUcHh1918/rqTXOarWaOrzKiI7EuEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA0Njc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQHADBgAqCmBAgAMGACoKYECQMA0GCSqG SIb3DQEBCwUAA4IBAQC8uAo99i6Xj0lKVttn43pJVOvZuwS0QHQuGqdga3Qz6LAo kdI4b5a5bAI4GOlFBi6OuMv6cmig+VBpB/EH7cYxBzhn0lgBUhLVRD0fzQcEQXkR L/8s8QEM5j7fzRenjzjH1eo3ae7q3TsxJfrOQ8sMS+K77hepkAtAYxtzSMQ9jaJ1 GigMnxBBhD/ZE9Ley3oZ9DVKusSNt0Ed3Cl1tVEjL6KHzpTxFMKMXY3RyA6r25Rm qV6tn9cFpbFLm6cQRQ4tX8yUTYysa+MGmFiXIt71jMejH0wMywTPpUq50B/1SpgU bedAYqFkYyzIq3nGKY52sTx/nwuf4g98ZUpPf7kx -----END CERTIFICATE-----Generated at Sat Jul 5 04:21:02 2025 by rpki-client