$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207941.roa File: AS207941.roa (raw, json) Hash identifier: z64FRrD08hToYEFQrKlssCB7dOv0Qtt+C0YyRTSpyQ8= Subject key identifier: 42:45:83:FE:71:E6:83:1D:2E:A6:56:61:33:5A:C2:D4:73:8C:9B:7C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4B078A386FE39F5BA398710B88D22F505C3ADE08 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207941.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 207941 IP address blocks: 2a05:dfc1:4800::/40 maxlen: 48 2a05:dfc1:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:07:8a:38:6f:e3:9f:5b:a3:98:71:0b:88:d2:2f:50:5c:3a:de:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=424583FE71E6831D2EA65661335AC2D4738C9B7C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:da:1f:33:51:30:2c:b7:b0:b2:c3:09:1d:63: f0:d3:b7:57:8a:b0:af:79:70:14:13:85:4b:2a:a3: f1:39:69:21:6f:c7:1f:04:e2:36:0d:55:55:1d:42: 41:d4:7a:5e:3d:d3:ed:80:39:b3:10:85:b3:64:67: ec:ae:fa:15:1e:77:98:74:0d:2d:21:b0:59:ce:db: 14:d4:53:c3:af:88:9c:4a:cf:0a:9d:ac:e4:c9:26: fd:24:63:f6:d0:63:e6:46:c0:c1:cc:dd:0f:fa:d9: f5:de:9d:39:7b:1a:b6:3f:57:5d:96:4e:c4:2b:7c: 78:02:2e:fb:f7:9c:ce:3c:50:15:85:1f:ec:35:4a: e9:9e:4a:96:6f:23:22:f5:6e:d8:db:ed:62:e4:6e: 93:2d:91:36:35:80:e4:3e:a7:cd:92:03:0d:6c:27: 6f:ab:b6:9f:b3:c7:6e:4f:cf:ea:ae:78:06:db:e0: d7:cd:57:7d:82:79:e0:72:4c:23:59:5c:57:cf:29: 70:fa:fe:1a:e8:96:4d:90:fc:42:a9:47:c2:8f:48: ff:0f:92:3e:4b:d8:2b:90:de:e1:d4:5a:60:3d:44: e9:3b:47:22:84:b1:32:d4:a6:54:fa:de:51:60:d1: 53:5d:54:b2:c5:09:0d:bb:39:08:2c:48:8e:93:dc: c0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:45:83:FE:71:E6:83:1D:2E:A6:56:61:33:5A:C2:D4:73:8C:9B:7C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207941.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4800::/39 Signature Algorithm: sha256WithRSAEncryption 0c:ae:0c:91:1d:4a:58:36:84:ce:4a:21:f2:63:87:ad:aa:14: 0a:c7:65:c2:fc:a8:aa:98:e2:e4:a6:74:ec:24:04:fe:ac:e5: c2:cb:28:ab:9e:20:39:b5:66:92:00:33:ef:50:2e:73:06:ca: e2:30:9b:d6:d4:ca:97:43:5b:1d:f5:fe:70:fa:98:2e:9c:3d: 8c:e4:bf:71:25:f7:bd:63:95:c3:e3:56:69:5e:a7:1f:d1:48: a1:8f:8d:fe:f6:cd:0b:f5:94:4c:ce:fc:1a:b7:cd:d0:42:65: 6c:3e:24:04:7d:1e:cb:b7:a9:b4:c7:10:33:1a:66:d2:7f:96: fd:c9:d0:d6:7f:cb:dc:c2:14:d9:db:30:47:34:2e:f4:56:4e: 20:9a:31:92:79:3a:ad:73:76:56:49:48:dd:a3:15:2f:3e:38: 50:aa:c1:07:88:b8:81:41:04:70:15:a9:27:6b:82:88:cb:52: 33:36:28:6a:56:be:aa:9a:76:ff:aa:b4:49:d2:6f:87:79:38: 40:f9:c1:5b:e5:1b:a0:8b:ae:e9:75:dc:d0:7d:b9:d3:1b:35: 9d:0e:bf:c1:19:23:50:57:09:48:d9:62:74:df:78:53:76:5a: 83:5e:cc:6b:da:9d:07:94:55:4b:79:03:99:5c:a7:7b:c9:48: ba:43:fd:68 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSweKOG/jn1ujmHELiNIvUFw63ggwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKDQyNDU4M0ZFNzFFNjgzMUQyRUE2NTY2MTMzNUFDMkQ0NzM4QzlCN0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF2h8zUTAst7CywwkdY/DTt1eK sK95cBQThUsqo/E5aSFvxx8E4jYNVVUdQkHUel490+2AObMQhbNkZ+yu+hUed5h0 DS0hsFnO2xTUU8OviJxKzwqdrOTJJv0kY/bQY+ZGwMHM3Q/62fXenTl7GrY/V12W TsQrfHgCLvv3nM48UBWFH+w1SumeSpZvIyL1btjb7WLkbpMtkTY1gOQ+p82SAw1s J2+rtp+zx25Pz+queAbb4NfNV32CeeByTCNZXFfPKXD6/hrolk2Q/EKpR8KPSP8P kj5L2CuQ3uHUWmA9ROk7RyKEsTLUplT63lFg0VNdVLLFCQ27OQgsSI6T3MDVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQkWD/nHmgx0uplZhM1rC1HOMm3wwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3OTQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwUgwDQYJKoZIhvcNAQELBQADggEBAAyu DJEdSlg2hM5KIfJjh62qFArHZcL8qKqY4uSmdOwkBP6s5cLLKKueIDm1ZpIAM+9Q LnMGyuIwm9bUypdDWx31/nD6mC6cPYzkv3El971jlcPjVmlepx/RSKGPjf72zQv1 lEzO/Bq3zdBCZWw+JAR9Hsu3qbTHEDMaZtJ/lv3J0NZ/y9zCFNnbMEc0LvRWTiCa MZJ5Oq1zdlZJSN2jFS8+OFCqwQeIuIFBBHAVqSdrgojLUjM2KGpWvqqadv+qtEnS b4d5OED5wVvlG6CLrul13NB9udMbNZ0Ov8EZI1BXCUjZYnTfeFN2WoNezGvanQeU VUt5A5lcp3vJSLpD/Wg= -----END CERTIFICATE-----Generated at Sat Jul 5 03:44:16 2025 by rpki-client