$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207466.roa File: AS207466.roa (raw, json) Hash identifier: aFpHIMsKNZ6Wr7vDZ3vHYpcazphFrGzDaNh+0rQB3/k= Subject key identifier: 92:3A:6D:C9:D5:8F:41:59:86:05:62:0F:A5:5C:A1:F1:5C:59:D3:DA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 049DC7374DA7230E8A53A701E9E87D3B2C87F83D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207466.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 207466 IP address blocks: 2a0a:6040:d900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:9d:c7:37:4d:a7:23:0e:8a:53:a7:01:e9:e8:7d:3b:2c:87:f8:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=923A6DC9D58F41598605620FA55CA1F15C59D3DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:52:b6:7d:ac:07:eb:1f:95:31:78:a6:75:23: af:61:2d:28:cc:91:6f:62:73:6c:af:05:eb:d4:3c: 56:dd:c1:58:82:b7:39:ba:61:1a:f7:fe:ad:6d:19: 53:0f:85:fa:cc:a5:6b:3e:06:c9:9e:15:47:de:a8: bf:4d:e8:c4:0f:29:df:8b:61:ea:c3:ed:01:24:da: b4:d8:d1:68:fb:65:2c:0d:19:4b:ac:ef:f5:8b:a3: ac:66:c4:62:67:91:33:33:c6:cb:af:e4:cd:f0:3a: 57:4e:42:dd:9b:43:f2:22:d3:27:1e:7a:67:d8:d3: 9b:d5:9b:94:0d:b3:5e:0c:c1:89:2c:eb:9f:2f:f4: 56:a9:d8:ff:80:e7:0f:b6:08:d1:dc:9f:6b:30:1b: 30:28:45:dd:9f:98:ab:95:ac:6c:fa:ac:3e:ee:d9: 92:a7:6a:39:d5:8f:00:d3:f7:75:3f:93:62:4d:bb: 32:eb:64:90:b1:54:da:c4:2d:ce:88:7d:c3:69:b0: 3f:27:7b:03:ef:09:48:61:30:b4:cf:bd:8b:2c:bb: 10:62:29:4c:d3:b8:be:61:24:9b:1c:81:7d:d1:93: 65:f1:7f:56:68:fe:98:3d:83:65:65:30:0e:5d:3e: 0e:59:1d:12:9d:f7:7a:c2:69:b7:28:e5:ed:71:7e: 78:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:3A:6D:C9:D5:8F:41:59:86:05:62:0F:A5:5C:A1:F1:5C:59:D3:DA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207466.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d900::/40 Signature Algorithm: sha256WithRSAEncryption 63:69:d5:28:ba:20:05:3c:36:4d:89:b2:09:b9:74:48:88:ae: c0:a0:55:5d:58:66:fa:2f:08:1a:e7:46:65:38:94:1b:9b:1c: aa:7a:1d:14:da:f0:87:c2:eb:d9:11:98:06:97:a2:b6:99:4f: c0:e4:67:bf:18:f7:b8:ef:33:8c:b3:0f:bf:30:d7:85:8f:d8: 38:1c:ff:9b:73:f0:e3:2d:99:ec:92:da:81:74:4d:9b:3e:2e: 0e:ec:ef:ee:cb:1a:a0:1c:0b:33:52:a4:d0:cd:d4:3c:e6:a9: f2:d6:b5:cf:7f:13:f9:5c:70:4e:8c:e8:87:d2:ef:61:58:07: 9b:fb:18:14:5d:64:6b:60:c8:14:dd:f3:95:bc:ec:ce:f2:fe: 3d:9e:29:bc:50:32:12:81:eb:85:ca:be:72:b7:d2:8a:18:d0: 58:f5:bb:8e:3c:ee:85:99:a9:d7:c0:e5:c6:e9:b6:5d:60:ed: 5d:51:a8:b4:fb:0b:9a:5f:9b:fc:e1:c4:c2:34:b6:fc:0d:3b: bf:55:48:77:cf:41:b0:b6:5d:e1:dd:de:cc:d2:bc:c3:7e:b1: 05:c4:f5:84:ca:e5:f9:13:94:9f:af:8e:18:e3:d0:bd:03:fe: 80:27:34:17:c9:3b:2c:de:94:5a:9e:7f:14:b0:fd:0b:08:e9: 50:46:1e:de -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBJ3HN02nIw6KU6cB6eh9OyyH+D0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKDkyM0E2REM5RDU4RjQxNTk4NjA1NjIwRkE1NUNBMUYxNUM1OUQzREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCeUrZ9rAfrH5UxeKZ1I69hLSjM kW9ic2yvBevUPFbdwViCtzm6YRr3/q1tGVMPhfrMpWs+BsmeFUfeqL9N6MQPKd+L YerD7QEk2rTY0Wj7ZSwNGUus7/WLo6xmxGJnkTMzxsuv5M3wOldOQt2bQ/Ii0yce emfY05vVm5QNs14MwYks658v9Fap2P+A5w+2CNHcn2swGzAoRd2fmKuVrGz6rD7u 2ZKnajnVjwDT93U/k2JNuzLrZJCxVNrELc6IfcNpsD8newPvCUhhMLTPvYssuxBi KUzTuL5hJJscgX3Rk2Xxf1Zo/pg9g2VlMA5dPg5ZHRKd93rCabco5e1xfngfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUkjptydWPQVmGBWIPpVyh8VxZ09owHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3NDY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNkwDQYJKoZIhvcNAQELBQADggEBAGNp 1Si6IAU8Nk2Jsgm5dEiIrsCgVV1YZvovCBrnRmU4lBubHKp6HRTa8IfC69kRmAaX oraZT8DkZ78Y97jvM4yzD78w14WP2Dgc/5tz8OMtmeyS2oF0TZs+Lg7s7+7LGqAc CzNSpNDN1DzmqfLWtc9/E/lccE6M6IfS72FYB5v7GBRdZGtgyBTd85W87M7y/j2e KbxQMhKB64XKvnK30ooY0Fj1u4487oWZqdfA5cbptl1g7V1RqLT7C5pfm/zhxMI0 tvwNO79VSHfPQbC2XeHd3szSvMN+sQXE9YTK5fkTlJ+vjhjj0L0D/oAnNBfJOyze lFqefxSw/QsI6VBGHt4= -----END CERTIFICATE-----Generated at Sat Jul 5 03:53:46 2025 by rpki-client