$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208548.roa File: AS208548.roa (raw, json) Hash identifier: eIcCLirlinN2dzTwZWHzUj143NaAEpe4FMj8GIZWVGc= Subject key identifier: A2:19:7D:0D:97:43:EB:48:C8:81:94:53:AE:9E:B5:EC:EE:6C:CD:EE Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 124911686AE92D02A9F762CBC1DBA4F51189981D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208548.roa Signing time: Fri 04 Jul 2025 06:53:05 +0000 ROA not before: Fri 04 Jul 2025 06:48:05 +0000 ROA not after: Fri 03 Jul 2026 06:53:05 +0000 asID: 208548 IP address blocks: 2a05:dfc1:ff00::/40 maxlen: 48 2a05:dfc1:ff08::/48 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:49:11:68:6a:e9:2d:02:a9:f7:62:cb:c1:db:a4:f5:11:89:98:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:05 2025 GMT Not After : Jul 3 06:53:05 2026 GMT Subject: CN=A2197D0D9743EB48C8819453AE9EB5ECEE6CCDEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ad:97:39:26:3b:93:b9:01:70:e2:cd:70:da: a1:9d:d4:fc:7e:01:2f:11:4c:c0:43:d4:e0:3c:21: 15:0f:5a:ae:fc:e2:64:aa:32:79:89:6a:88:bc:ff: 52:40:1d:13:a3:6f:08:5a:d0:d3:e0:95:5e:77:3b: 71:f7:f5:ae:a3:d0:a3:a8:b7:19:a4:70:a3:fe:fe: da:2f:4f:ba:bc:07:d0:3c:5b:a0:ff:07:df:a1:b5: 8f:dd:db:33:74:69:79:cd:a4:3c:84:15:a7:c0:63: 26:87:3c:ce:e5:53:ff:a8:0e:26:cf:9d:2b:1d:3a: 3e:38:76:b4:49:10:53:ee:75:4a:a7:8d:9d:a4:19: 2f:93:98:79:90:81:50:06:40:71:63:6d:38:d6:45: e6:6f:bb:1d:62:81:71:86:13:ed:c2:78:99:e6:5c: 81:e6:ce:fd:e7:20:69:45:72:0b:54:ef:6b:9d:50: f0:ee:af:03:5e:8c:e6:18:f0:42:27:b0:f6:53:f0: 9e:2c:b0:72:84:71:ba:0f:03:de:2e:45:35:c1:50: 85:48:b6:85:d5:85:33:06:d3:a1:08:a7:c4:a9:93: a2:8d:aa:77:fa:44:84:f5:af:0d:98:ff:fa:ef:34: 1c:3e:52:3e:1c:d3:cd:10:3a:9c:d6:f6:c4:d8:69: 95:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:19:7D:0D:97:43:EB:48:C8:81:94:53:AE:9E:B5:EC:EE:6C:CD:EE X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208548.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 92:44:98:b6:df:96:8a:d8:d1:c9:64:a5:d1:97:f8:be:8a:6a: b2:6a:a2:0e:99:4e:e5:81:9c:55:77:8f:53:15:3d:0d:83:b5: be:c2:f3:3b:c7:0e:ac:df:5c:1d:22:61:c2:a0:fc:25:4e:f9: bb:11:29:98:88:c2:aa:73:45:94:54:ba:22:4d:1d:b0:0c:9a: e8:75:7b:e8:66:dd:aa:41:c5:1c:d2:d9:31:77:f4:47:42:30: 71:72:d5:6a:b6:9a:5a:de:7d:2b:45:eb:b0:88:33:75:36:55: 5a:a5:fd:67:6b:8d:11:c1:9b:2f:ea:5b:03:cf:27:10:d4:26: b3:00:14:4b:6b:08:4d:28:12:9a:6d:a3:83:6e:0c:46:93:d6: ca:32:46:da:c2:be:18:4e:10:47:20:2e:8a:ab:bf:da:e1:36: f6:62:40:a6:03:df:40:3a:75:41:0c:67:4a:b7:10:1d:10:a0: 32:40:9c:cc:79:d7:66:50:be:b7:31:90:74:94:63:c6:99:a6: c8:01:ca:7e:1f:2d:ec:d4:43:4f:b9:05:5b:13:c4:92:ce:92: c0:73:b3:42:f2:2c:31:94:6c:a4:63:c6:58:7b:33:db:22:85: 2f:58:99:e9:71:6b:14:32:61:df:b5:25:cf:be:eb:2f:d6:b9: db:70:cd:87 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEkkRaGrpLQKp92LLwduk9RGJmB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDVaFw0yNjA3MDMwNjUzMDVaMDMxMTAvBgNV BAMTKEEyMTk3RDBEOTc0M0VCNDhDODgxOTQ1M0FFOUVCNUVDRUU2Q0NERUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNrZc5JjuTuQFw4s1w2qGd1Px+ AS8RTMBD1OA8IRUPWq784mSqMnmJaoi8/1JAHROjbwha0NPglV53O3H39a6j0KOo txmkcKP+/tovT7q8B9A8W6D/B9+htY/d2zN0aXnNpDyEFafAYyaHPM7lU/+oDibP nSsdOj44drRJEFPudUqnjZ2kGS+TmHmQgVAGQHFjbTjWReZvux1igXGGE+3CeJnm XIHmzv3nIGlFcgtU72udUPDurwNejOYY8EInsPZT8J4ssHKEcboPA94uRTXBUIVI toXVhTMG06EIp8Spk6KNqnf6RIT1rw2Y//rvNBw+Uj4c080QOpzW9sTYaZVlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUohl9DZdD60jIgZRTrp617O5sze4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA4NTQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwf8wDQYJKoZIhvcNAQELBQADggEBAJJE mLbflorY0clkpdGX+L6KarJqog6ZTuWBnFV3j1MVPQ2Dtb7C8zvHDqzfXB0iYcKg /CVO+bsRKZiIwqpzRZRUuiJNHbAMmuh1e+hm3apBxRzS2TF39EdCMHFy1Wq2mlre fStF67CIM3U2VVql/WdrjRHBmy/qWwPPJxDUJrMAFEtrCE0oEppto4NuDEaT1soy RtrCvhhOEEcgLoqrv9rhNvZiQKYD30A6dUEMZ0q3EB0QoDJAnMx512ZQvrcxkHSU Y8aZpsgByn4fLezUQ0+5BVsTxJLOksBzs0LyLDGUbKRjxlh7M9sihS9YmelxaxQy Yd+1Jc++6y/WudtwzYc= -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:32 2025 by rpki-client