$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS204931.roa File: AS204931.roa (raw, json) Hash identifier: excUxv13Vtv+GGLFiWcP3x8rI8Xw3YSWUdcq3Mucwfs= Subject key identifier: 6D:F5:B6:44:DA:B0:36:43:93:16:EC:60:D9:46:BF:0D:EF:AC:FB:E0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2512864157199DED0E06B67A4CB72F42603399DB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS204931.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 204931 IP address blocks: 2a05:dfc1:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:12:86:41:57:19:9d:ed:0e:06:b6:7a:4c:b7:2f:42:60:33:99:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=6DF5B644DAB036439316EC60D946BF0DEFACFBE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b8:41:ce:1f:e6:14:ed:dd:83:dd:f7:6e:69: 93:2e:4b:5d:6a:56:e4:2b:f7:92:35:d8:1e:25:d8: 4c:98:9a:dc:80:e0:19:ca:d1:e3:fa:a8:23:cc:42: 1b:6a:39:e2:d7:48:84:d7:c4:cb:16:98:a4:9d:22: 4e:ea:60:aa:8d:9c:8b:f9:f4:64:0e:4b:28:74:2d: 8e:3f:56:e0:65:5f:14:ac:30:80:b6:b0:7f:59:9f: 54:90:20:f5:2d:e1:10:72:0f:3b:73:79:3c:a0:bc: 86:79:7c:3b:93:b3:60:83:23:d1:e9:e9:42:e7:f2: 53:11:8c:0a:97:8d:c0:90:ed:f7:45:a6:78:c4:57: fd:07:ca:62:6a:4e:4f:06:ec:91:0a:67:e5:39:43: f9:4e:94:a6:78:5e:2a:6b:3d:c7:a6:fb:1f:f7:79: 44:ea:e7:77:f2:4e:98:d5:13:db:44:e4:ad:9e:09: 24:5f:54:a1:42:49:99:3f:be:91:d8:61:99:b9:b6: 27:f2:84:ca:d1:43:7d:c9:e1:d9:20:a3:29:8c:22: f6:2e:93:7b:bb:54:a1:b1:47:d6:a3:e9:99:79:76: bd:78:35:64:b4:21:a0:a7:f1:ac:1d:da:0a:29:31: ba:80:da:1c:8f:a6:67:53:e2:50:fd:de:ed:c8:57: 2e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F5:B6:44:DA:B0:36:43:93:16:EC:60:D9:46:BF:0D:EF:AC:FB:E0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS204931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4c00::/40 Signature Algorithm: sha256WithRSAEncryption 48:88:5b:99:0a:c5:c2:6b:c9:8e:a6:a1:ea:97:98:77:2c:e3: c6:4c:93:fc:b1:b2:20:84:c3:d9:4f:36:73:66:8a:08:e0:f8: ad:c1:ee:03:b1:f8:00:77:9b:83:9e:b2:95:2f:07:eb:53:60: 41:41:a9:dd:8a:70:4c:ec:0b:d6:14:43:e7:15:14:6c:49:e6: 42:af:7a:c1:a8:e4:f7:f5:b6:6c:88:a2:b1:8f:4a:2c:38:17: c7:13:f4:ea:a3:ec:af:9d:6a:fa:7e:46:38:9b:3c:3e:a4:c7: 58:0d:69:f5:fa:fe:84:cf:a3:9d:bc:f4:36:0b:93:e6:3b:b6: 46:78:97:e8:c6:7f:c0:40:b7:f7:fa:e5:a0:06:b0:70:1a:49: ce:9d:2a:84:95:00:2e:fb:42:ef:6c:a8:28:20:1b:69:13:fb: 2c:b7:4e:85:e0:a0:ec:9d:7e:44:af:7e:18:2e:7e:67:dc:31: cc:b7:0d:f0:b8:ea:9e:c5:39:2f:79:0a:27:f9:05:82:9d:b5: 8e:87:b2:3b:e7:07:d2:91:45:f7:ec:85:54:26:54:db:3b:eb: 26:bd:d3:ed:fb:66:de:14:71:cb:52:8a:31:1c:01:d6:5a:3e: df:58:3c:bb:d9:b0:d8:de:37:1f:09:74:5d:00:22:bf:ca:1c: 1f:ca:b6:cf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJRKGQVcZne0OBrZ6TLcvQmAzmdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKDZERjVCNjQ0REFCMDM2NDM5MzE2RUM2MEQ5NDZCRjBERUZBQ0ZCRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPuEHOH+YU7d2D3fduaZMuS11q VuQr95I12B4l2EyYmtyA4BnK0eP6qCPMQhtqOeLXSITXxMsWmKSdIk7qYKqNnIv5 9GQOSyh0LY4/VuBlXxSsMIC2sH9Zn1SQIPUt4RByDztzeTygvIZ5fDuTs2CDI9Hp 6ULn8lMRjAqXjcCQ7fdFpnjEV/0HymJqTk8G7JEKZ+U5Q/lOlKZ4XiprPcem+x/3 eUTq53fyTpjVE9tE5K2eCSRfVKFCSZk/vpHYYZm5tifyhMrRQ33J4dkgoymMIvYu k3u7VKGxR9aj6Zl5dr14NWS0IaCn8awd2gopMbqA2hyPpmdT4lD93u3IVy5lAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUbfW2RNqwNkOTFuxg2Ua/De+s++AwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA0OTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwUwwDQYJKoZIhvcNAQELBQADggEBAEiI W5kKxcJryY6moeqXmHcs48ZMk/yxsiCEw9lPNnNmigjg+K3B7gOx+AB3m4OespUv B+tTYEFBqd2KcEzsC9YUQ+cVFGxJ5kKvesGo5Pf1tmyIorGPSiw4F8cT9Oqj7K+d avp+RjibPD6kx1gNafX6/oTPo5289DYLk+Y7tkZ4l+jGf8BAt/f65aAGsHAaSc6d KoSVAC77Qu9sqCggG2kT+yy3ToXgoOydfkSvfhgufmfcMcy3DfC46p7FOS95Cif5 BYKdtY6HsjvnB9KRRffshVQmVNs76ya90+37Zt4UcctSijEcAdZaPt9YPLvZsNje Nx8JdF0AIr/KHB/Kts8= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:42 2025 by rpki-client