$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207079.roa File: AS207079.roa (raw, json) Hash identifier: yx6tfyp+NJLAEUn5SmQMHqPgdXGxLlnMXd5GyjZd9s4= Subject key identifier: 27:67:3D:6B:71:13:FC:5B:34:76:2E:08:A9:9C:AD:A1:9D:27:19:2C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1EB2C6EEE208B892559CBA200C5528B8DE0D18E9 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207079.roa Signing time: Fri 04 Jul 2025 06:52:56 +0000 ROA not before: Fri 04 Jul 2025 06:47:56 +0000 ROA not after: Fri 03 Jul 2026 06:52:56 +0000 asID: 207079 IP address blocks: 2a0a:6040:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b2:c6:ee:e2:08:b8:92:55:9c:ba:20:0c:55:28:b8:de:0d:18:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:56 2025 GMT Not After : Jul 3 06:52:56 2026 GMT Subject: CN=27673D6B7113FC5B34762E08A99CADA19D27192C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:80:9d:c5:d1:b3:d1:8b:29:37:ac:1f:a6:48: b8:1a:db:e6:5e:8a:c0:8e:88:48:3f:03:95:a4:c3: c6:2c:e5:4d:d1:81:65:a8:36:7e:ad:10:bb:ba:00: 46:94:eb:44:0b:7b:e6:cf:38:2e:98:2a:d4:de:34: 66:04:d8:6f:83:4f:22:87:97:1a:1b:21:3a:12:9c: 3c:6a:12:d8:d5:22:3c:aa:00:02:2d:fe:a2:27:99: ec:0a:34:bf:4e:27:40:df:6a:03:ce:3a:c7:cc:be: b8:b2:ca:62:19:ff:fa:4e:49:50:f2:e5:6e:75:76: be:10:97:b8:08:ef:22:92:f4:c1:2b:3f:fc:c1:8f: 97:12:67:a0:12:79:08:d0:3f:01:09:6e:8f:04:00: 86:c1:b7:4c:75:f2:02:c8:0d:4e:96:c8:54:55:bb: 31:da:4b:64:0a:ba:ba:51:09:f1:c4:6a:0b:a0:7e: f4:54:88:47:e0:14:af:c3:e7:a2:63:84:35:b2:e3: 39:e6:4a:fc:70:71:19:53:16:7d:da:37:30:a5:c4: 10:91:57:bf:3b:93:12:9b:a7:10:57:1b:5d:6a:b8: 98:5d:a1:b4:91:9d:c2:42:42:fa:ef:a6:1e:bc:09: 5a:bd:98:d8:e7:16:2e:13:3c:f1:31:65:d8:8e:67: 59:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:67:3D:6B:71:13:FC:5B:34:76:2E:08:A9:9C:AD:A1:9D:27:19:2C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2800::/40 Signature Algorithm: sha256WithRSAEncryption de:7e:70:c5:a6:8e:56:ad:b2:76:63:5b:3a:b0:36:de:e5:35: 7e:0a:77:84:8e:1e:ae:6e:4e:49:2b:a9:0a:48:d4:c5:cd:5c: 41:1d:27:b9:fb:ad:bc:bc:aa:26:dc:52:a3:86:05:1e:c6:37: a6:0c:3e:85:43:29:ac:2b:7a:75:a7:f4:e6:6b:1a:50:91:38: 80:03:c5:19:2c:9c:15:b3:bf:79:58:c1:cd:1b:6c:92:7b:22: c1:ea:3a:6f:31:cf:97:c2:d7:26:06:4d:23:6b:9f:28:bc:f6: c8:a3:3d:ed:32:d6:28:4e:34:71:1f:95:10:23:56:ae:d6:b9: 32:6d:c3:11:dc:cf:b0:f4:60:f8:67:46:07:c8:74:f4:3d:59: e1:16:91:6b:45:40:60:cc:8a:d1:24:99:2d:b8:a2:29:36:d6: 9c:d2:1b:12:9d:7b:20:47:e6:11:58:b1:41:55:27:73:f0:91: a0:e5:47:08:6b:be:cb:ba:f5:c0:6d:d8:6e:eb:25:06:8c:11: 05:6c:0b:da:0a:8b:1a:d2:54:55:5b:8d:bc:d4:5a:46:ec:f3: 4d:9d:31:41:eb:05:2f:e9:d1:39:4b:7e:4d:b7:92:a0:d1:09: 41:9f:02:3a:20:ea:18:3f:ec:ce:e6:bb:15:ae:02:a3:5c:13: 54:61:18:6c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHrLG7uIIuJJVnLogDFUouN4NGOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTZaFw0yNjA3MDMwNjUyNTZaMDMxMTAvBgNV BAMTKDI3NjczRDZCNzExM0ZDNUIzNDc2MkUwOEE5OUNBREExOUQyNzE5MkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzgJ3F0bPRiyk3rB+mSLga2+Ze isCOiEg/A5Wkw8Ys5U3RgWWoNn6tELu6AEaU60QLe+bPOC6YKtTeNGYE2G+DTyKH lxobIToSnDxqEtjVIjyqAAIt/qInmewKNL9OJ0DfagPOOsfMvriyymIZ//pOSVDy 5W51dr4Ql7gI7yKS9MErP/zBj5cSZ6ASeQjQPwEJbo8EAIbBt0x18gLIDU6WyFRV uzHaS2QKurpRCfHEagugfvRUiEfgFK/D56JjhDWy4znmSvxwcRlTFn3aNzClxBCR V787kxKbpxBXG11quJhdobSRncJCQvrvph68CVq9mNjnFi4TPPExZdiOZ1mZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJ2c9a3ET/Fs0di4IqZytoZ0nGSwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3MDc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCgwDQYJKoZIhvcNAQELBQADggEBAN5+ cMWmjlatsnZjWzqwNt7lNX4Kd4SOHq5uTkkrqQpI1MXNXEEdJ7n7rby8qibcUqOG BR7GN6YMPoVDKawrenWn9OZrGlCROIADxRksnBWzv3lYwc0bbJJ7IsHqOm8xz5fC 1yYGTSNrnyi89sijPe0y1ihONHEflRAjVq7WuTJtwxHcz7D0YPhnRgfIdPQ9WeEW kWtFQGDMitEkmS24oik21pzSGxKdeyBH5hFYsUFVJ3PwkaDlRwhrvsu69cBt2G7r JQaMEQVsC9oKixrSVFVbjbzUWkbs802dMUHrBS/p0TlLfk23kqDRCUGfAjog6hg/ 7M7muxWuAqNcE1RhGGw= -----END CERTIFICATE-----Generated at Sat Jul 5 03:50:38 2025 by rpki-client