$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS206439.roa File: AS206439.roa (raw, json) Hash identifier: TlwmZGD5AyqZ4zXkebOSIAxkZ6pEpTM22nIZ12FQTJs= Subject key identifier: D5:1D:8D:E0:7E:F6:6B:12:47:E1:5B:D0:99:16:C2:44:E8:F1:59:10 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4EB425A215CD59A09CE319EBD185540A8E6CB0CE Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS206439.roa Signing time: Fri 04 Jul 2025 06:52:54 +0000 ROA not before: Fri 04 Jul 2025 06:47:54 +0000 ROA not after: Fri 03 Jul 2026 06:52:54 +0000 asID: 206439 IP address blocks: 2a0a:6040:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:b4:25:a2:15:cd:59:a0:9c:e3:19:eb:d1:85:54:0a:8e:6c:b0:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:54 2025 GMT Not After : Jul 3 06:52:54 2026 GMT Subject: CN=D51D8DE07EF66B1247E15BD09916C244E8F15910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:39:eb:21:9f:ab:1d:6e:df:22:98:4b:46:af: b0:4c:28:b9:e1:41:02:0d:ca:78:fd:db:2f:6b:3b: 4c:4e:84:a6:54:84:96:77:3b:7d:d0:70:a0:43:2f: 3b:1a:f9:61:cf:6b:1c:44:65:7a:50:c3:4e:eb:95: 4d:7f:28:76:00:7f:5d:4c:54:0d:16:91:17:01:fa: 6e:d9:38:87:1e:d8:5e:22:54:d7:b5:95:00:76:32: c0:c6:7d:0c:27:c3:08:0e:aa:1e:74:97:33:34:8f: d5:24:75:8f:28:6f:af:d4:4b:c6:83:bc:ca:3a:3f: eb:2a:bd:b3:98:5b:57:0b:b4:9b:14:02:a1:26:47: 7e:41:63:3c:ba:fd:19:e2:40:ef:be:83:3c:be:1b: 20:10:f1:36:2b:7a:4e:bf:01:94:1f:bb:c0:fd:a4: c2:2a:4e:25:67:97:b0:4b:29:70:ac:5c:d6:c5:23: d1:50:8e:0f:9e:e2:73:7d:60:35:3e:d9:70:3e:ae: 6c:c1:92:bd:fa:0d:12:e8:c4:7f:10:9d:30:b5:28: 82:77:18:cb:3b:37:62:2f:04:04:f1:28:0f:da:5b: 3f:db:4d:96:7b:4d:92:5b:bf:2c:d6:e1:14:af:bb: 80:05:9a:77:47:cc:65:7d:ee:77:ba:0e:82:54:d4: 39:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:1D:8D:E0:7E:F6:6B:12:47:E1:5B:D0:99:16:C2:44:E8:F1:59:10 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS206439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3900::/40 Signature Algorithm: sha256WithRSAEncryption 16:e8:3c:22:fc:5f:de:1f:5f:8c:4a:aa:22:a1:65:25:11:47: 6c:65:bf:8d:9a:71:cd:0c:0c:f0:d9:30:8b:6d:2b:34:c3:0c: 6d:34:bd:dd:24:c6:96:01:79:d5:bc:68:b8:c8:dc:d8:f5:3f: e7:0e:6e:fb:2f:98:0e:d1:15:80:39:c4:5c:0a:64:95:44:b2: 95:2d:44:ee:a5:de:8c:d9:a5:c9:fe:4f:38:78:8d:4c:f0:d4: 52:43:1d:34:56:ad:2f:bc:81:9c:19:49:01:f8:7e:74:2e:36: 1c:64:17:7f:18:69:a4:b0:3d:c9:7e:30:af:41:97:0b:a1:70: b7:12:0a:36:ef:28:54:1e:7c:43:30:ec:c9:45:66:ad:99:45: f6:8c:56:9a:61:99:06:e7:73:b6:8b:49:fb:e6:cb:2f:de:8f: f6:bd:6a:93:08:5b:bb:b1:fc:bc:86:34:ab:8f:75:07:fc:c8: 95:ce:44:17:69:9c:ed:72:a0:70:bc:b0:a1:8b:ce:39:ab:4b: c0:b9:df:4a:7a:f1:73:72:62:8c:b1:58:d1:fb:5c:fc:93:c4: c0:ef:20:4a:4e:8a:73:8a:cb:69:dc:58:0c:70:33:b7:9b:45: 7a:dc:60:44:33:5c:c0:df:03:13:e4:78:40:a2:6c:c8:3d:28: d8:69:f0:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTrQlohXNWaCc4xnr0YVUCo5ssM4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTRaFw0yNjA3MDMwNjUyNTRaMDMxMTAvBgNV BAMTKEQ1MUQ4REUwN0VGNjZCMTI0N0UxNUJEMDk5MTZDMjQ0RThGMTU5MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDsOeshn6sdbt8imEtGr7BMKLnh QQINynj92y9rO0xOhKZUhJZ3O33QcKBDLzsa+WHPaxxEZXpQw07rlU1/KHYAf11M VA0WkRcB+m7ZOIce2F4iVNe1lQB2MsDGfQwnwwgOqh50lzM0j9UkdY8ob6/US8aD vMo6P+sqvbOYW1cLtJsUAqEmR35BYzy6/RniQO++gzy+GyAQ8TYrek6/AZQfu8D9 pMIqTiVnl7BLKXCsXNbFI9FQjg+e4nN9YDU+2XA+rmzBkr36DRLoxH8QnTC1KIJ3 GMs7N2IvBATxKA/aWz/bTZZ7TZJbvyzW4RSvu4AFmndHzGV97ne6DoJU1DmLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1R2N4H72axJH4VvQmRbCROjxWRAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA2NDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDkwDQYJKoZIhvcNAQELBQADggEBABbo PCL8X94fX4xKqiKhZSURR2xlv42acc0MDPDZMIttKzTDDG00vd0kxpYBedW8aLjI 3Nj1P+cObvsvmA7RFYA5xFwKZJVEspUtRO6l3ozZpcn+Tzh4jUzw1FJDHTRWrS+8 gZwZSQH4fnQuNhxkF38YaaSwPcl+MK9BlwuhcLcSCjbvKFQefEMw7MlFZq2ZRfaM VpphmQbnc7aLSfvmyy/ej/a9apMIW7ux/LyGNKuPdQf8yJXORBdpnO1yoHC8sKGL zjmrS8C530p68XNyYoyxWNH7XPyTxMDvIEpOinOKy2ncWAxwM7ebRXrcYEQzXMDf AxPkeECibMg9KNhp8BQ= -----END CERTIFICATE-----Generated at Sat Jul 5 04:15:57 2025 by rpki-client