$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208699.roa File: AS208699.roa (raw, json) Hash identifier: j2OTNC0/ZXVMdwBJkEHD7iwTELUHHfFCInXa0I2V340= Subject key identifier: 61:F3:14:FE:9C:27:75:29:F2:44:50:1C:87:F8:A3:55:16:E6:C9:E4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5FA475D207A835BAD851299E11BD77C1D8A6006E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208699.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 208699 IP address blocks: 2a06:9f81:5500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a4:75:d2:07:a8:35:ba:d8:51:29:9e:11:bd:77:c1:d8:a6:00:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=61F314FE9C277529F244501C87F8A35516E6C9E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ef:cf:9c:36:ad:e8:e5:b8:94:c1:2c:9f:ad: db:5d:f3:24:e0:45:23:e7:a6:c6:1d:db:56:98:75: d9:df:a9:a8:b0:ae:f2:cb:15:d5:e5:5c:51:16:b8: 71:1d:f8:6f:db:10:3e:e3:52:b6:ae:5a:8c:85:e0: 61:0d:04:7c:76:5a:1f:19:de:7a:b9:17:da:f4:f2: df:71:c5:6c:bc:b8:b6:f9:02:03:63:80:4d:bd:c1: 6d:e6:ac:0f:1d:1a:04:69:c4:9c:16:c9:dc:21:13: 39:ca:4f:6d:12:79:1e:a5:44:f2:5d:29:78:44:6c: 46:e2:de:35:10:c4:44:04:e0:2d:f1:70:63:7d:6c: a9:ee:d9:36:ad:c7:6f:6c:2f:8d:ff:04:27:9b:7f: f9:34:cc:e1:e7:9b:c7:e7:9f:20:92:4c:c5:ae:0f: c4:cb:72:7d:7d:43:51:03:89:43:af:7d:10:44:e5: 3b:45:87:5e:e0:62:6f:3e:b2:da:24:7b:40:68:9f: 8e:be:30:bf:cf:28:5a:8a:39:f3:ff:a5:55:78:e7: 4f:b7:42:87:6c:db:21:80:94:d6:0a:3f:86:2e:65: 5f:21:94:87:30:e0:87:17:2f:88:4f:f0:6b:eb:16: 91:f2:e0:85:b6:fe:15:a0:36:f0:40:08:56:83:10: 5e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F3:14:FE:9C:27:75:29:F2:44:50:1C:87:F8:A3:55:16:E6:C9:E4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5500::/40 Signature Algorithm: sha256WithRSAEncryption 3d:79:f3:3a:3b:fc:1a:2c:e3:44:bd:cd:94:33:d4:b7:2d:88: 11:5c:e9:bb:fa:9b:f5:ac:2d:e1:55:5d:bc:18:d1:0a:f2:a7: 59:9e:99:bb:ed:d0:fc:f2:71:8d:82:75:e8:37:3e:73:f5:f5: 29:bd:64:86:af:8e:bf:44:d1:60:26:21:43:cd:55:db:3b:ca: 83:e7:00:09:fe:0c:21:00:23:b1:fa:9c:45:d3:a8:4f:5f:73: b1:92:ae:66:18:80:61:c7:a2:38:e5:56:13:b1:a0:d2:dc:8f: e7:54:a2:f1:c6:73:e6:ca:59:9e:1a:59:49:f2:e7:d1:17:b7: 1a:13:e9:27:73:52:0b:1b:58:1a:30:54:8b:aa:dc:ec:40:12: b2:1c:77:56:c1:0d:d0:c0:ab:01:7b:cf:ba:ae:5b:7c:8d:85: 1e:74:ca:60:14:2b:ca:bd:c9:67:2b:1f:0b:f0:d6:bd:d0:cb: ba:c1:3d:d9:89:3e:44:0a:8f:28:e4:ac:a3:39:9d:e2:69:a3: 00:4d:c2:08:4a:cc:c9:92:9b:33:21:ee:c6:0b:b5:7f:7b:9f: a6:cd:e4:ad:ba:bf:0c:9f:6b:40:18:8f:13:04:19:e5:ba:b1: 4b:28:17:88:76:b8:04:bb:fc:fd:f3:2c:73:3a:41:f5:64:7a: 4e:b3:d5:3f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX6R10geoNbrYUSmeEb13wdimAG4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKDYxRjMxNEZFOUMyNzc1MjlGMjQ0NTAxQzg3RjhBMzU1MTZFNkM5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm78+cNq3o5biUwSyfrdtd8yTg RSPnpsYd21aYddnfqaiwrvLLFdXlXFEWuHEd+G/bED7jUrauWoyF4GENBHx2Wh8Z 3nq5F9r08t9xxWy8uLb5AgNjgE29wW3mrA8dGgRpxJwWydwhEznKT20SeR6lRPJd KXhEbEbi3jUQxEQE4C3xcGN9bKnu2Tatx29sL43/BCebf/k0zOHnm8fnnyCSTMWu D8TLcn19Q1EDiUOvfRBE5TtFh17gYm8+stoke0Bon46+ML/PKFqKOfP/pVV450+3 Qods2yGAlNYKP4YuZV8hlIcw4IcXL4hP8GvrFpHy4IW2/hWgNvBACFaDEF5BAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYfMU/pwndSnyRFAch/ijVRbmyeQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA4Njk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVUwDQYJKoZIhvcNAQELBQADggEBAD15 8zo7/Bos40S9zZQz1LctiBFc6bv6m/WsLeFVXbwY0Qryp1membvt0PzycY2Cdeg3 PnP19Sm9ZIavjr9E0WAmIUPNVds7yoPnAAn+DCEAI7H6nEXTqE9fc7GSrmYYgGHH ojjlVhOxoNLcj+dUovHGc+bKWZ4aWUny59EXtxoT6SdzUgsbWBowVIuq3OxAErIc d1bBDdDAqwF7z7quW3yNhR50ymAUK8q9yWcrHwvw1r3Qy7rBPdmJPkQKjyjkrKM5 neJpowBNwghKzMmSmzMh7sYLtX97n6bN5K26vwyfa0AYjxMEGeW6sUsoF4h2uAS7 /P3zLHM6QfVkek6z1T8= -----END CERTIFICATE-----Generated at Sat Jul 5 04:20:13 2025 by rpki-client