$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205987.roa File: AS205987.roa (raw, json) Hash identifier: O+HBpKFXTaDmskkxHWV51pFZJQqpIY/7HlYt7KgOy5g= Subject key identifier: 58:7C:F8:AF:A3:38:49:C1:8F:AB:8D:8C:01:3A:96:EF:CC:DA:25:7E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2BCB8982AF045B3A3588B77031276B61CCE82D57 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205987.roa Signing time: Fri 05 Jun 2026 07:12:36 +0000 ROA not before: Fri 05 Jun 2026 07:07:36 +0000 ROA not after: Fri 04 Jun 2027 07:12:36 +0000 asID: 205987 IP address blocks: 2a0a:6040:de00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 22:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:cb:89:82:af:04:5b:3a:35:88:b7:70:31:27:6b:61:cc:e8:2d:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:36 2026 GMT Not After : Jun 4 07:12:36 2027 GMT Subject: CN=587CF8AFA33849C18FAB8D8C013A96EFCCDA257E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ad:97:4b:09:20:c8:00:88:53:cf:e2:8f:3c: 90:52:4d:0c:fe:af:1c:f8:e1:77:e9:c5:f0:ef:ac: ac:17:8f:41:11:06:22:3c:14:52:7a:cc:96:66:c2: 72:92:a5:cf:89:5f:d0:aa:eb:cd:f1:a8:23:46:12: 8f:82:85:6f:c1:f6:da:6a:aa:0f:ab:b7:8e:1f:d0: 1d:10:9e:c6:ae:68:f2:64:df:bf:2d:fb:39:e7:54: 21:48:25:b2:eb:e5:43:85:f2:22:0c:92:11:30:83: d3:ac:c5:b4:ca:67:c7:68:ed:f3:d7:cc:31:63:5f: 7e:04:65:86:1e:f7:b5:9c:4e:8e:ad:1f:1c:13:9c: 88:ad:f6:bb:d3:51:31:13:e4:2a:53:f4:2c:19:07: b7:91:d5:48:84:79:17:ac:74:db:54:c6:2c:97:89: a3:94:53:59:db:18:ec:fd:58:00:d5:e1:6b:64:4a: 49:ec:3f:45:5c:06:37:8e:c4:25:6d:6d:cb:dc:d0: 42:80:05:65:e8:54:df:39:06:62:61:9c:8f:ec:5c: 61:f8:02:e1:c8:b3:42:10:4b:a6:82:b7:82:6c:0b: de:68:cd:54:9c:59:b9:83:09:5f:ad:9c:07:5d:a7: 10:6a:cd:c4:31:2b:de:66:6a:6b:6c:10:80:04:83: 37:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7C:F8:AF:A3:38:49:C1:8F:AB:8D:8C:01:3A:96:EF:CC:DA:25:7E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS205987.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:de00::/40 Signature Algorithm: sha256WithRSAEncryption 6a:48:c2:c7:f7:28:5b:0d:6b:17:3b:62:2d:de:92:0d:86:7a: e4:a9:fd:49:bf:11:7f:73:d7:68:33:86:cb:9f:50:47:71:ed: 71:38:6b:43:f9:19:4f:56:c9:99:10:47:6b:33:0b:02:e0:52: 14:c5:58:a5:63:80:3b:30:d0:fd:74:b5:9c:c0:f0:6d:cc:9d: 8d:9a:b5:f9:1e:0e:51:b1:66:8b:43:21:0c:10:a0:f7:f4:fa: e1:86:ce:4a:13:33:a9:08:d9:d9:8f:51:10:43:66:58:fe:b1: 46:41:84:73:95:fb:35:d9:ac:3c:56:32:d4:6e:ee:2e:f8:99: 09:72:19:f3:35:38:11:4a:78:3a:70:f1:cf:00:4b:3a:c6:ff: b0:09:52:eb:c1:48:12:d9:cf:46:12:c6:59:64:a8:06:a2:a6: 9a:d9:17:b1:4c:c7:ff:08:76:07:8f:fd:a6:73:26:d9:26:65: 16:bd:a1:43:94:f7:77:5f:21:ac:3f:69:d7:15:39:4d:1a:d9: 12:5e:8e:af:9a:e9:58:04:6b:06:72:e9:fb:4f:58:f8:7d:b7: 19:c7:81:d7:32:59:f0:8a:cc:74:39:b5:56:8f:13:6e:50:35: 02:5b:bb:13:15:8f:13:13:ed:23:a1:ed:da:74:28:25:91:6f: 2d:df:d8:c1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUK8uJgq8EWzo1iLdwMSdrYczoLVcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzZaFw0yNzA2MDQwNzEyMzZaMDMxMTAvBgNV BAMTKDU4N0NGOEFGQTMzODQ5QzE4RkFCOEQ4QzAxM0E5NkVGQ0NEQTI1N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDirZdLCSDIAIhTz+KPPJBSTQz+ rxz44XfpxfDvrKwXj0ERBiI8FFJ6zJZmwnKSpc+JX9Cq683xqCNGEo+ChW/B9tpq qg+rt44f0B0QnsauaPJk378t+znnVCFIJbLr5UOF8iIMkhEwg9OsxbTKZ8do7fPX zDFjX34EZYYe97WcTo6tHxwTnIit9rvTUTET5CpT9CwZB7eR1UiEeResdNtUxiyX iaOUU1nbGOz9WADV4WtkSknsP0VcBjeOxCVtbcvc0EKABWXoVN85BmJhnI/sXGH4 AuHIs0IQS6aCt4JsC95ozVScWbmDCV+tnAddpxBqzcQxK95mamtsEIAEgzfhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWHz4r6M4ScGPq42MATqW78zaJX4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA1OTg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQN4wDQYJKoZIhvcNAQELBQADggEBAGpI wsf3KFsNaxc7Yi3ekg2GeuSp/Um/EX9z12gzhsufUEdx7XE4a0P5GU9WyZkQR2sz CwLgUhTFWKVjgDsw0P10tZzA8G3MnY2atfkeDlGxZotDIQwQoPf0+uGGzkoTM6kI 2dmPURBDZlj+sUZBhHOV+zXZrDxWMtRu7i74mQlyGfM1OBFKeDpw8c8ASzrG/7AJ UuvBSBLZz0YSxllkqAaipprZF7FMx/8IdgeP/aZzJtkmZRa9oUOU93dfIaw/adcV OU0a2RJejq+a6VgEawZy6ftPWPh9txnHgdcyWfCKzHQ5tVaPE25QNQJbuxMVjxMT 7SOh7dp0KCWRby3f2ME= -----END CERTIFICATE-----Generated at Fri Jun 12 08:07:35 2026 by rpki-client