$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207762.roa File: AS207762.roa (raw, json) Hash identifier: XLM8rQYcwlFjAqxLOnXTTbI7Tht0BO5bVph60l8TA/w= Subject key identifier: F0:B4:3A:3E:A0:E2:18:C9:7F:85:3E:06:92:BD:C5:47:7A:97:D7:79 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 21AACDF00A54A4E3227E34539F243A93C6F695D7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207762.roa Signing time: Fri 04 Jul 2025 06:53:23 +0000 ROA not before: Fri 04 Jul 2025 06:48:23 +0000 ROA not after: Fri 03 Jul 2026 06:53:23 +0000 asID: 207762 IP address blocks: 2a0a:6040:f000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:aa:cd:f0:0a:54:a4:e3:22:7e:34:53:9f:24:3a:93:c6:f6:95:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:23 2025 GMT Not After : Jul 3 06:53:23 2026 GMT Subject: CN=F0B43A3EA0E218C97F853E0692BDC5477A97D779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:20:18:31:cd:9c:92:ed:e5:72:6d:55:b0:8d: 0d:55:3c:3a:78:2f:2c:29:5b:8c:6a:e9:4a:d4:78: 33:6c:73:61:a4:01:40:44:1f:45:dc:c9:0d:e9:44: e0:07:38:19:54:7c:87:42:50:4e:1c:b2:75:20:0f: 12:a1:e3:70:8c:2b:0d:f9:34:fb:25:54:77:1c:03: e1:f3:d5:9a:01:ad:95:67:cf:f9:51:64:97:4c:b3: 97:d0:cc:4f:01:c8:99:99:1a:53:d0:c0:c8:af:c6: 64:ab:4e:7c:f1:72:6a:4a:54:84:5c:ad:82:6d:9d: 32:64:3c:0b:83:dd:19:99:96:bf:a4:fc:01:1d:de: bc:60:08:b0:f6:41:e7:4b:f0:67:88:6f:e9:95:31: fb:a7:5b:e7:b2:0b:4b:bc:6d:06:05:19:a1:77:73: 2e:a2:d6:fc:d1:71:fb:32:e7:2a:73:77:e5:e4:76: c9:2c:0b:c4:ba:b8:4a:d7:1e:cd:28:08:b9:7a:93: bd:e7:da:09:bd:24:18:4e:c9:67:9f:c2:d0:ec:4e: 89:f9:bc:81:d1:ae:1b:d3:c9:c1:a7:a7:25:f4:1f: 2c:2f:37:53:97:e4:f6:48:59:4c:81:98:99:45:51: eb:de:c6:68:e0:6e:97:f3:c0:48:91:99:31:6e:73: 51:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B4:3A:3E:A0:E2:18:C9:7F:85:3E:06:92:BD:C5:47:7A:97:D7:79 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207762.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f000::/40 Signature Algorithm: sha256WithRSAEncryption 70:c6:f3:25:b3:50:a2:ef:f4:ba:c1:f5:24:66:8c:b1:91:85: 03:92:58:ca:00:d4:ab:b0:b1:40:70:22:f7:ce:c0:a7:18:f2: e6:09:7b:25:69:ed:be:e3:cc:6f:fa:cb:cc:58:06:49:e7:c2: 60:65:41:c9:7d:a2:e6:df:ca:73:8c:11:24:d6:a5:86:63:2c: 52:e5:d4:45:17:8c:23:9f:69:c2:1b:a7:26:7d:65:7c:bc:2d: 43:67:e9:67:82:1e:94:4c:a2:58:c9:88:c1:c8:f1:ea:df:1b: 65:3d:b7:5b:09:31:a5:eb:a3:85:42:6a:87:74:96:91:c2:72: 32:4a:c0:20:65:0d:e7:23:62:3b:7e:f2:f0:f9:3d:76:04:f7: a1:79:89:98:2c:a6:b5:2b:de:31:07:3a:da:a2:3e:6a:dd:4b: 5e:2d:e2:88:9c:51:bb:34:09:78:eb:c7:ff:34:d0:81:ff:ca: 27:c1:33:b8:9e:db:68:80:97:62:0e:51:e1:8e:5d:fb:10:18: 80:bb:30:38:66:c8:65:0a:ee:4f:a9:4d:40:ed:a2:87:9d:05: 17:47:5d:c2:e7:8c:4b:5f:f2:4d:49:25:83:18:59:6f:62:d7: b4:f6:d4:21:8b:0d:32:46:11:b3:3b:af:f0:d3:0c:9c:3f:e6: da:45:9c:81 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIarN8ApUpOMifjRTnyQ6k8b2ldcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjNaFw0yNjA3MDMwNjUzMjNaMDMxMTAvBgNV BAMTKEYwQjQzQTNFQTBFMjE4Qzk3Rjg1M0UwNjkyQkRDNTQ3N0E5N0Q3NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1IBgxzZyS7eVybVWwjQ1VPDp4 LywpW4xq6UrUeDNsc2GkAUBEH0XcyQ3pROAHOBlUfIdCUE4csnUgDxKh43CMKw35 NPslVHccA+Hz1ZoBrZVnz/lRZJdMs5fQzE8ByJmZGlPQwMivxmSrTnzxcmpKVIRc rYJtnTJkPAuD3RmZlr+k/AEd3rxgCLD2QedL8GeIb+mVMfunW+eyC0u8bQYFGaF3 cy6i1vzRcfsy5ypzd+XkdsksC8S6uErXHs0oCLl6k73n2gm9JBhOyWefwtDsTon5 vIHRrhvTycGnpyX0HywvN1OX5PZIWUyBmJlFUevexmjgbpfzwEiRmTFuc1GHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8LQ6PqDiGMl/hT4Gkr3FR3qX13kwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3NzYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPAwDQYJKoZIhvcNAQELBQADggEBAHDG 8yWzUKLv9LrB9SRmjLGRhQOSWMoA1KuwsUBwIvfOwKcY8uYJeyVp7b7jzG/6y8xY BknnwmBlQcl9oubfynOMESTWpYZjLFLl1EUXjCOfacIbpyZ9ZXy8LUNn6WeCHpRM oljJiMHI8erfG2U9t1sJMaXro4VCaod0lpHCcjJKwCBlDecjYjt+8vD5PXYE96F5 iZgsprUr3jEHOtqiPmrdS14t4oicUbs0CXjrx/800IH/yifBM7ie22iAl2IOUeGO XfsQGIC7MDhmyGUK7k+pTUDtooedBRdHXcLnjEtf8k1JJYMYWW9i17T21CGLDTJG EbM7r/DTDJw/5tpFnIE= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:24 2025 by rpki-client