$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205848.roa File: AS205848.roa (raw, json) Hash identifier: 7kdtNuQ/XxdbZr0GEOZrgeZwdJJONb8ZHuqB8E7rdxY= Subject key identifier: 34:A6:A1:C9:08:54:A9:64:16:EF:70:70:D1:2C:0B:BF:71:1F:7A:0E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 38DBF45E5A8A1C9664ABC175535BE0D81566A9D5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205848.roa Signing time: Fri 04 Jul 2025 06:53:00 +0000 ROA not before: Fri 04 Jul 2025 06:48:00 +0000 ROA not after: Fri 03 Jul 2026 06:53:00 +0000 asID: 205848 IP address blocks: 2a0a:6040:f500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:db:f4:5e:5a:8a:1c:96:64:ab:c1:75:53:5b:e0:d8:15:66:a9:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:00 2025 GMT Not After : Jul 3 06:53:00 2026 GMT Subject: CN=34A6A1C90854A96416EF7070D12C0BBF711F7A0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8c:4d:fa:ae:ff:f5:1a:08:99:d3:f5:03:dd: 0c:18:cb:72:ea:02:4f:a3:fb:ae:40:12:74:86:1a: 6a:04:71:74:57:d5:b2:06:87:2a:c8:03:9b:4b:37: b2:b5:7d:ac:4e:5b:18:35:74:ec:fa:10:fc:67:e1: 5b:e2:40:c6:ca:11:e5:f6:20:99:7a:31:a2:b6:e1: 7e:a4:4f:f1:d7:21:c1:3e:40:8d:54:53:0d:50:69: 30:2b:ad:67:f3:1c:96:d2:68:49:e5:9f:87:a6:fd: d6:5f:6d:41:12:dc:f6:be:c4:9d:ac:ec:a5:11:b7: f2:c9:10:e7:89:65:53:4c:95:cf:25:7f:8b:a0:a2: 5b:fa:72:9b:17:01:53:10:99:ee:67:14:b7:49:5e: 84:f5:c1:12:97:23:33:9e:78:5b:8e:5e:f8:d4:7f: 53:85:0d:f2:3d:a2:59:e5:b6:04:b7:06:02:a4:0e: 6f:e4:68:23:c1:dd:0d:7f:07:c7:7f:a1:a4:c9:3f: c1:02:08:ac:ca:58:02:b5:a3:b1:de:ba:b1:d6:e8: f8:44:90:59:32:e8:1e:aa:79:63:7e:50:ac:bb:64: b1:3f:90:f1:4e:dc:c9:4d:07:95:0a:32:8b:66:25: 3b:50:40:32:cf:e1:8c:9b:3c:6d:b9:14:c4:e5:bc: 17:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A6:A1:C9:08:54:A9:64:16:EF:70:70:D1:2C:0B:BF:71:1F:7A:0E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205848.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f500::/40 Signature Algorithm: sha256WithRSAEncryption d0:61:32:bd:62:c3:5c:75:19:24:46:2a:6f:3a:71:58:7b:8a: b2:95:3f:18:56:7f:8c:1d:48:6f:0a:4d:8c:5d:94:1a:5f:2f: a6:d0:ce:fe:f8:82:5a:07:ad:9a:7e:a6:bb:d7:28:6f:42:83: 09:5c:da:66:55:4d:c9:8a:4a:45:cb:48:87:27:eb:a8:32:14: 69:3a:d6:d1:5b:42:fa:ec:33:e9:30:01:c7:47:28:96:6e:95: 07:9d:78:c6:5f:de:9b:f3:92:3a:85:ae:32:c7:8d:d2:4f:a0: cf:44:57:80:7b:68:df:e1:4e:48:f7:1e:57:bf:7a:72:19:b0: 18:ae:9b:01:a2:37:33:1d:32:47:5c:35:5e:36:83:af:7c:83: 02:f0:b2:8d:08:3a:e8:9c:a1:34:f3:b7:87:4a:96:f7:6f:26: 6b:e0:b4:33:32:80:86:ce:ef:71:8c:bc:1a:46:af:e6:85:73: dc:a1:32:0f:3f:b4:14:ee:c8:c4:bb:13:3b:34:35:78:a4:ef: de:6c:64:15:82:cb:dc:cf:79:12:05:d8:47:1d:ca:d6:23:06: 70:03:01:9f:67:3a:8b:aa:ef:d2:46:32:14:7d:e7:40:e6:e0: 61:b5:08:74:51:eb:22:a7:cf:51:cf:5a:27:96:d0:c1:d6:46: c9:cc:67:8d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUONv0XlqKHJZkq8F1U1vg2BVmqdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDBaFw0yNjA3MDMwNjUzMDBaMDMxMTAvBgNV BAMTKDM0QTZBMUM5MDg1NEE5NjQxNkVGNzA3MEQxMkMwQkJGNzExRjdBMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jE36rv/1GgiZ0/UD3QwYy3Lq Ak+j+65AEnSGGmoEcXRX1bIGhyrIA5tLN7K1faxOWxg1dOz6EPxn4VviQMbKEeX2 IJl6MaK24X6kT/HXIcE+QI1UUw1QaTArrWfzHJbSaEnln4em/dZfbUES3Pa+xJ2s 7KURt/LJEOeJZVNMlc8lf4ugolv6cpsXAVMQme5nFLdJXoT1wRKXIzOeeFuOXvjU f1OFDfI9olnltgS3BgKkDm/kaCPB3Q1/B8d/oaTJP8ECCKzKWAK1o7HeurHW6PhE kFky6B6qeWN+UKy7ZLE/kPFO3MlNB5UKMotmJTtQQDLP4YybPG25FMTlvBc5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUNKahyQhUqWQW73Bw0SwLv3Efeg4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA1ODQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPUwDQYJKoZIhvcNAQELBQADggEBANBh Mr1iw1x1GSRGKm86cVh7irKVPxhWf4wdSG8KTYxdlBpfL6bQzv74gloHrZp+prvX KG9Cgwlc2mZVTcmKSkXLSIcn66gyFGk61tFbQvrsM+kwAcdHKJZulQedeMZf3pvz kjqFrjLHjdJPoM9EV4B7aN/hTkj3Hle/enIZsBiumwGiNzMdMkdcNV42g698gwLw so0IOuicoTTzt4dKlvdvJmvgtDMygIbO73GMvBpGr+aFc9yhMg8/tBTuyMS7Ezs0 NXik795sZBWCy9zPeRIF2EcdytYjBnADAZ9nOouq79JGMhR950Dm4GG1CHRR6yKn z1HPWieW0MHWRsnMZ40= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:52 2025 by rpki-client