$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205232.roa File: AS205232.roa (raw, json) Hash identifier: Ys/LbzF8KM9lo0blHKY7HOND4mfIqka4wcLthywLles= Subject key identifier: 76:F6:C0:76:8A:E2:8A:F6:4A:6D:2D:F3:5A:A4:40:69:2F:9A:BF:E4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 557856022B4F2338919D490FB97BD5BAD7694721 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205232.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 205232 IP address blocks: 2a0a:6040:9c00::/40 maxlen: 40 2a0a:6040:a000::/40 maxlen: 48 2a0a:6040:f800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:78:56:02:2b:4f:23:38:91:9d:49:0f:b9:7b:d5:ba:d7:69:47:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=76F6C0768AE28AF64A6D2DF35AA440692F9ABFE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:11:8b:e9:27:29:9f:57:75:fa:1b:46:03:76: 32:0e:b7:6f:fe:d0:0c:f1:d5:cf:75:95:80:85:f8: fa:4d:b6:16:30:26:53:42:11:2b:76:4d:a3:d3:57: cb:b9:4f:64:30:14:f1:86:d2:7d:aa:16:ae:91:a8: 7d:aa:3c:51:6b:d1:09:13:d7:b8:54:0d:e8:90:b2: 53:36:79:1b:d6:c0:56:f1:e2:5c:d5:93:a9:ef:bd: a7:a1:14:0d:3f:c8:3d:da:49:15:f7:01:a5:e3:e9: 43:35:15:de:e3:ef:7f:d2:ae:52:20:f6:aa:c5:1f: ce:1d:25:0a:c0:f9:65:97:c2:73:66:1b:a0:16:28: 5c:75:37:e7:09:d0:07:90:ac:08:c4:f6:76:c2:d7: 61:f7:b7:5b:a4:cd:3e:95:aa:b1:e8:f5:61:67:c9: 18:e5:b5:41:d7:82:01:0f:f6:b5:90:aa:c1:7f:f0: 8c:05:2a:78:7c:e7:fc:ba:5e:f1:b7:d5:78:83:4e: 28:a1:bd:ec:5b:c2:9c:ad:1a:99:ff:21:d5:08:70: fe:85:5b:83:dd:1a:87:4d:c5:c7:13:cc:47:7b:59: 80:54:71:ae:38:4f:e7:69:90:0a:e2:17:fe:ab:be: 8a:be:48:1c:77:e2:72:19:3b:4d:47:81:c3:f3:16: f7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:F6:C0:76:8A:E2:8A:F6:4A:6D:2D:F3:5A:A4:40:69:2F:9A:BF:E4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205232.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9c00::/40 2a0a:6040:a000::/40 2a0a:6040:f800::/40 Signature Algorithm: sha256WithRSAEncryption 72:c3:f3:fe:a3:ef:c3:83:ad:bf:f2:57:fb:3d:ed:f2:0a:ea: b8:b6:1e:f5:db:d3:eb:12:98:69:49:af:82:c2:c5:ee:81:76: 36:aa:c7:87:82:fa:da:65:38:46:2a:89:ce:15:da:60:ef:42: 4e:b4:4d:a7:c4:28:d9:24:71:79:18:c8:f8:56:ec:bc:fb:b3: 97:cd:09:2b:4d:0a:ab:a1:76:f9:3d:21:f1:b1:0a:63:eb:68: 18:ce:dd:d6:19:f4:c4:82:da:36:46:e4:47:b9:1c:39:e7:c2: 8b:b5:0a:95:8f:c4:dc:de:ce:14:1d:0a:10:1d:d9:4d:d6:bb: 2a:b1:30:a3:ac:cd:ab:8f:41:53:d2:ba:21:30:81:1f:bf:f6: 53:0f:61:7b:ee:6a:e8:7c:50:9d:5a:bc:09:f3:d1:05:d9:dc: 4a:77:4e:86:3e:15:0c:2e:aa:5a:b3:3e:92:28:6c:df:a5:44: 59:a6:d4:bc:28:93:45:51:33:be:c0:15:9d:a9:f0:34:32:57: 22:2c:77:a6:03:4a:8d:97:33:bd:2c:9f:6c:6e:74:70:2a:1a: 6d:70:95:01:56:b7:f1:0a:6f:d4:46:f4:df:5c:c6:85:ef:43: 72:02:47:11:ad:c1:34:d7:99:0c:b9:e7:d3:8e:40:aa:29:c2: c4:25:aa:c1 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUVXhWAitPIziRnUkPuXvVutdpRyEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKDc2RjZDMDc2OEFFMjhBRjY0QTZEMkRGMzVBQTQ0MDY5MkY5QUJGRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYEYvpJymfV3X6G0YDdjIOt2/+ 0Azx1c91lYCF+PpNthYwJlNCESt2TaPTV8u5T2QwFPGG0n2qFq6RqH2qPFFr0QkT 17hUDeiQslM2eRvWwFbx4lzVk6nvvaehFA0/yD3aSRX3AaXj6UM1Fd7j73/SrlIg 9qrFH84dJQrA+WWXwnNmG6AWKFx1N+cJ0AeQrAjE9nbC12H3t1ukzT6VqrHo9WFn yRjltUHXggEP9rWQqsF/8IwFKnh85/y6XvG31XiDTiihvexbwpytGpn/IdUIcP6F W4PdGodNxccTzEd7WYBUca44T+dpkAriF/6rvoq+SBx34nIZO01HgcPzFvcXAgMB AAGjggIEMIICADAdBgNVHQ4EFgQUdvbAdoriivZKbS3zWqRAaS+av+QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA1MjMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQJwDBgAqCmBAoAMGACoKYED4MA0GCSqG SIb3DQEBCwUAA4IBAQByw/P+o+/Dg62/8lf7Pe3yCuq4th7129PrEphpSa+CwsXu gXY2qseHgvraZThGKonOFdpg70JOtE2nxCjZJHF5GMj4Vuy8+7OXzQkrTQqroXb5 PSHxsQpj62gYzt3WGfTEgto2RuRHuRw558KLtQqVj8Tc3s4UHQoQHdlN1rsqsTCj rM2rj0FT0rohMIEfv/ZTD2F77mrofFCdWrwJ89EF2dxKd06GPhUMLqpasz6SKGzf pURZptS8KJNFUTO+wBWdqfA0MlciLHemA0qNlzO9LJ9sbnRwKhptcJUBVrfxCm/U RvTfXMaF70NyAkcRrcE015kMuefTjkCqKcLEJarB -----END CERTIFICATE-----Generated at Sat Jul 5 03:49:02 2025 by rpki-client