$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205794.roa File: AS205794.roa (raw, json) Hash identifier: oXsNR4ew1h+ihz+xwpJeVSCpJUFJ6go5M/c0G1Osby0= Subject key identifier: AD:87:D9:93:91:17:C9:2D:66:F7:95:ED:2F:18:DD:9D:EF:6B:F4:45 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7AD8D19BE421F2627B66902628CC952539A89BC9 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205794.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 205794 IP address blocks: 2a0a:6040:ec00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d8:d1:9b:e4:21:f2:62:7b:66:90:26:28:cc:95:25:39:a8:9b:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=AD87D9939117C92D66F795ED2F18DD9DEF6BF445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8c:3c:58:f1:b9:e2:94:96:32:39:5e:f0:ba: e1:14:58:20:38:ba:91:56:ed:cc:2c:41:46:88:5c: 98:9d:97:4c:ac:4a:1e:ec:fe:33:0b:59:e2:bb:e2: d9:8c:da:a9:84:d0:75:ad:46:4a:05:66:3b:a2:2f: 3f:e7:2f:98:38:b9:20:a5:b1:59:16:e0:d3:4b:0a: 11:e7:70:2d:20:d5:70:49:5e:14:d5:2d:1a:2e:2b: 5d:e6:1d:7d:f2:99:d9:24:b0:39:99:94:38:07:f0: ba:6f:0b:7c:a8:70:97:5f:ed:4c:a9:4a:ed:50:2a: ed:ff:fd:24:7b:e5:79:51:57:8c:40:1b:89:47:9c: 6f:02:15:d9:01:97:a9:fe:fc:ad:13:5a:a1:5f:ce: ee:0c:20:21:73:ea:2b:13:30:b4:b8:db:36:77:ee: 4e:78:17:99:c6:b6:d9:97:4a:90:8d:80:73:b4:a5: 62:ac:9c:e3:41:0c:24:05:69:8b:ce:d9:18:eb:ad: f9:eb:e6:51:5f:e1:77:c9:dc:d1:5c:14:33:a2:15: 99:1d:fd:ed:31:98:0d:5a:d2:ed:a1:ac:2d:d5:96: ed:46:58:84:94:a8:f2:f0:95:0b:bc:8d:09:33:9c: a0:15:32:5b:eb:87:e8:59:39:0d:66:49:74:f3:9f: f8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:87:D9:93:91:17:C9:2D:66:F7:95:ED:2F:18:DD:9D:EF:6B:F4:45 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205794.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ec00::/40 Signature Algorithm: sha256WithRSAEncryption c3:9f:47:3e:51:d9:84:9c:79:57:19:74:b6:f6:83:09:7a:a4: f0:ca:f6:76:7f:e5:b6:5d:3a:0f:66:f3:1e:a2:f7:b2:6b:89: a1:46:06:c2:2b:71:e7:9f:8a:a2:90:68:93:43:60:a6:94:0f: 2f:7f:27:2d:0b:aa:9a:26:32:59:4c:ec:ca:7a:d9:61:d8:bb: 9f:d4:ed:00:17:75:01:fa:ee:13:03:47:d1:0f:2f:b4:6d:12: 48:ca:6d:dd:32:5f:80:15:a7:03:cc:79:e2:1d:85:31:af:10: e7:af:33:65:aa:25:79:e7:76:e8:00:74:d2:13:29:e1:44:f5: cd:ef:c5:7b:25:3a:32:2b:2e:d1:30:a0:a7:77:1c:f5:47:77: fa:5c:ac:b1:e3:47:6f:75:09:ad:3e:62:1f:eb:b5:bf:7d:62: f6:1d:7a:5b:67:10:50:da:10:f0:9c:ba:f1:96:57:79:8d:7b: 5d:d3:34:26:52:23:8a:46:b4:f1:7a:e7:fb:e5:2b:ff:66:b2: 4f:25:59:3f:e8:5b:fc:67:15:fa:3d:eb:5f:06:15:c7:bf:5b: bc:42:8b:a2:c8:a2:ea:64:5b:45:fe:d8:fa:ac:26:d8:9a:19: 68:c9:97:ca:e0:04:95:9f:a0:bd:4b:8c:db:2c:a3:03:a8:66: d0:6c:70:82 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUetjRm+Qh8mJ7ZpAmKMyVJTmom8kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKEFEODdEOTkzOTExN0M5MkQ2NkY3OTVFRDJGMThERDlERUY2QkY0NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDjDxY8bnilJYyOV7wuuEUWCA4 upFW7cwsQUaIXJidl0ysSh7s/jMLWeK74tmM2qmE0HWtRkoFZjuiLz/nL5g4uSCl sVkW4NNLChHncC0g1XBJXhTVLRouK13mHX3ymdkksDmZlDgH8LpvC3yocJdf7Uyp Su1QKu3//SR75XlRV4xAG4lHnG8CFdkBl6n+/K0TWqFfzu4MICFz6isTMLS42zZ3 7k54F5nGttmXSpCNgHO0pWKsnONBDCQFaYvO2Rjrrfnr5lFf4XfJ3NFcFDOiFZkd /e0xmA1a0u2hrC3Vlu1GWISUqPLwlQu8jQkznKAVMlvrh+hZOQ1mSXTzn/gtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrYfZk5EXyS1m95XtLxjdne9r9EUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA1Nzk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOwwDQYJKoZIhvcNAQELBQADggEBAMOf Rz5R2YSceVcZdLb2gwl6pPDK9nZ/5bZdOg9m8x6i97JriaFGBsIrceefiqKQaJND YKaUDy9/Jy0LqpomMllM7Mp62WHYu5/U7QAXdQH67hMDR9EPL7RtEkjKbd0yX4AV pwPMeeIdhTGvEOevM2WqJXnndugAdNITKeFE9c3vxXslOjIrLtEwoKd3HPVHd/pc rLHjR291Ca0+Yh/rtb99YvYdeltnEFDaEPCcuvGWV3mNe13TNCZSI4pGtPF65/vl K/9msk8lWT/oW/xnFfo9618GFce/W7xCi6LIoupkW0X+2PqsJtiaGWjJl8rgBJWf oL1LjNssowOoZtBscII= -----END CERTIFICATE-----Generated at Sat Jul 5 04:13:12 2025 by rpki-client