$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207427.roa File: AS207427.roa (raw, json) Hash identifier: b/l9jY1+GNMd+DBEBFZvGJHJrupClijMP/0NxzgHhDE= Subject key identifier: B0:56:A9:88:C2:E5:B1:A1:3C:8A:C4:E0:2D:9A:2F:E9:02:04:9F:B9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 41F70588EFD1DEF42A2C8343B94F11EA2D208123 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207427.roa Signing time: Fri 04 Jul 2025 06:53:13 +0000 ROA not before: Fri 04 Jul 2025 06:48:13 +0000 ROA not after: Fri 03 Jul 2026 06:53:13 +0000 asID: 207427 IP address blocks: 2a05:dfc1:6400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f7:05:88:ef:d1:de:f4:2a:2c:83:43:b9:4f:11:ea:2d:20:81:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:13 2025 GMT Not After : Jul 3 06:53:13 2026 GMT Subject: CN=B056A988C2E5B1A13C8AC4E02D9A2FE902049FB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:2c:05:27:67:da:ea:7c:16:82:94:ba:f5:91: cc:23:7d:7c:83:c9:43:7c:f7:00:f7:e7:d6:36:0a: 84:38:82:a6:0f:d8:87:3b:92:ca:0b:46:4a:d1:83: e6:b5:02:3e:6e:7f:f4:86:21:ae:e2:0f:53:1f:e8: a5:14:02:f9:ff:6d:6b:dd:e3:72:d5:54:17:d8:7e: d3:4b:c9:b3:4e:cd:f5:d6:34:ee:3b:e2:5b:49:4d: fd:44:d0:12:02:6f:c1:ad:12:0d:10:bc:4f:ed:f7: 2f:9f:14:62:7b:e1:9b:e9:7b:10:34:bf:62:3d:c2: 35:27:0c:c3:c8:ce:52:a5:4c:74:21:6c:0c:f9:f7: a3:f2:4f:6a:59:0a:09:b9:1b:e6:a6:b1:05:86:d9: c1:5c:70:78:04:2a:90:e2:51:39:22:c2:ff:e3:5a: 02:63:e4:24:11:d6:6c:a7:0f:62:a4:f3:2e:bc:b7: 75:df:e3:53:52:17:cd:00:65:f0:0f:4d:b1:68:25: 96:71:64:ae:99:ea:c7:c2:ab:0b:21:c1:3c:76:f4: e4:18:fa:14:0a:d9:d8:9b:b1:10:e5:f7:ca:7e:3b: 3f:63:56:02:d8:44:97:7f:84:89:02:e1:d7:0f:fc: 2a:f5:46:ad:66:b8:0d:59:db:9d:81:fb:75:f7:ee: be:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:56:A9:88:C2:E5:B1:A1:3C:8A:C4:E0:2D:9A:2F:E9:02:04:9F:B9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207427.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6400::/40 Signature Algorithm: sha256WithRSAEncryption 3f:c7:a1:8b:fc:8f:a3:43:e1:67:1b:7d:c1:6f:4d:4d:1c:38: aa:bb:6a:d4:74:9f:45:22:0b:7c:0a:bc:96:bc:28:d3:b4:91: ed:b7:c7:f8:03:0c:49:04:15:fa:76:10:be:2d:c8:39:2b:5a: 20:84:5c:21:6a:41:ac:aa:85:e6:ed:2e:d3:15:aa:fd:f7:73: 9c:16:19:4b:22:66:f1:75:b4:72:8b:2e:73:23:c7:f3:02:36: f2:40:f4:52:7b:56:a2:d2:00:92:b5:3d:c6:cd:fb:85:ee:e9: 8e:af:ab:be:b1:63:69:47:33:d4:28:8e:b5:ed:07:2e:98:0f: 24:05:a5:27:90:0b:f3:24:23:51:3e:99:49:89:f7:ec:90:c3: 7e:81:82:2e:07:7d:f6:86:b4:0c:cc:89:f8:73:32:fc:b0:17: d3:ad:22:59:a6:c9:43:b3:a1:91:44:30:78:23:37:66:b2:da: 7d:95:3b:36:c6:8e:aa:42:6d:50:ab:b1:64:c7:69:2f:87:40: cd:ad:68:c9:d0:f1:1a:c0:62:e6:eb:b7:bc:d5:48:31:8e:12: 44:a0:bb:3a:3e:04:58:97:43:5b:54:d2:5e:61:40:ad:78:4d: 73:b8:73:d8:1e:77:15:a4:89:20:4a:e6:a2:66:1d:c6:0e:fc: 8c:58:ca:4b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQfcFiO/R3vQqLINDuU8R6i0ggSMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTNaFw0yNjA3MDMwNjUzMTNaMDMxMTAvBgNV BAMTKEIwNTZBOTg4QzJFNUIxQTEzQzhBQzRFMDJEOUEyRkU5MDIwNDlGQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWLAUnZ9rqfBaClLr1kcwjfXyD yUN89wD359Y2CoQ4gqYP2Ic7ksoLRkrRg+a1Aj5uf/SGIa7iD1Mf6KUUAvn/bWvd 43LVVBfYftNLybNOzfXWNO474ltJTf1E0BICb8GtEg0QvE/t9y+fFGJ74ZvpexA0 v2I9wjUnDMPIzlKlTHQhbAz596PyT2pZCgm5G+amsQWG2cFccHgEKpDiUTkiwv/j WgJj5CQR1mynD2Kk8y68t3Xf41NSF80AZfAPTbFoJZZxZK6Z6sfCqwshwTx29OQY +hQK2dibsRDl98p+Oz9jVgLYRJd/hIkC4dcP/Cr1Rq1muA1Z252B+3X37r6LAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsFapiMLlsaE8isTgLZov6QIEn7kwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3NDI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWQwDQYJKoZIhvcNAQELBQADggEBAD/H oYv8j6ND4WcbfcFvTU0cOKq7atR0n0UiC3wKvJa8KNO0ke23x/gDDEkEFfp2EL4t yDkrWiCEXCFqQayqhebtLtMVqv33c5wWGUsiZvF1tHKLLnMjx/MCNvJA9FJ7VqLS AJK1PcbN+4Xu6Y6vq76xY2lHM9QojrXtBy6YDyQFpSeQC/MkI1E+mUmJ9+yQw36B gi4HffaGtAzMifhzMvywF9OtIlmmyUOzoZFEMHgjN2ay2n2VOzbGjqpCbVCrsWTH aS+HQM2taMnQ8RrAYubrt7zVSDGOEkSguzo+BFiXQ1tU0l5hQK14TXO4c9gedxWk iSBK5qJmHcYO/IxYyks= -----END CERTIFICATE-----Generated at Sat Jul 5 03:50:37 2025 by rpki-client