$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209512.roa File: AS209512.roa (raw, json) Hash identifier: JztuvqvlNU/+p6iyaKDWeqpdj6wdcbyyI+hZmPDCNS4= Subject key identifier: F2:27:7D:3E:AE:F5:0A:CD:7B:B1:08:D1:F7:F2:87:F0:E9:41:38:EB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3873E0678131DDBA17EBE0D31DA3C6663E67A6AF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209512.roa Signing time: Fri 04 Jul 2025 06:52:54 +0000 ROA not before: Fri 04 Jul 2025 06:47:54 +0000 ROA not after: Fri 03 Jul 2026 06:52:54 +0000 asID: 209512 IP address blocks: 2a05:dfc1:c500::/40 maxlen: 48 2a05:dfc1:c600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:73:e0:67:81:31:dd:ba:17:eb:e0:d3:1d:a3:c6:66:3e:67:a6:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:54 2025 GMT Not After : Jul 3 06:52:54 2026 GMT Subject: CN=F2277D3EAEF50ACD7BB108D1F7F287F0E94138EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c8:d7:5d:be:73:fa:f8:c1:67:a6:7e:89:01: 55:7a:6d:ea:d0:f4:ba:ff:f3:fd:d3:3c:d1:a9:86: 28:b8:88:5a:cf:49:1e:fb:88:11:15:28:55:30:71: 4f:44:00:04:f2:ad:79:23:1e:2d:85:4c:4c:69:ca: 57:12:89:24:c6:37:1f:00:0d:40:43:bc:0f:32:42: 9d:c0:41:62:f3:2b:fc:ec:11:43:96:40:90:43:c1: 29:97:47:09:74:b8:ad:92:49:1c:f3:68:0c:b8:1d: 3b:65:2f:21:86:06:a8:bd:63:55:21:2b:9e:23:42: 50:11:3d:75:76:a6:32:fc:fc:bd:16:4f:5a:b8:73: 9f:b2:f2:91:69:7b:6b:2e:41:b5:20:25:55:4d:7f: c8:1b:03:97:67:f8:72:b7:88:4c:b1:26:d6:3c:48: 42:e0:cd:7f:23:43:84:d8:55:00:d1:01:88:bd:b6: c1:d3:4c:a9:07:ff:76:b1:07:ae:9d:e9:15:65:81: 01:64:6e:e6:42:45:8e:54:5b:39:e0:b7:59:c4:71: 2b:a3:d7:6d:7d:29:e9:7d:ff:3f:22:0d:40:3c:18: e3:07:7c:a8:7a:88:dc:57:e8:f5:8c:c1:3a:32:1e: 7d:43:ea:07:32:b2:20:d0:05:9f:dc:35:67:c5:27: c0:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:27:7D:3E:AE:F5:0A:CD:7B:B1:08:D1:F7:F2:87:F0:E9:41:38:EB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209512.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c500::-2a05:dfc1:c6ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8f:61:9e:66:43:f6:34:d6:66:dd:77:17:a1:c4:52:36:fc:3f: 15:03:a9:86:70:0e:6b:af:58:37:db:37:d9:40:bc:0b:9a:ea: ef:b6:50:05:42:e0:36:df:67:ce:e7:d2:6c:36:a0:d7:3e:e2: 28:f9:2f:95:61:5b:db:94:03:45:45:50:cd:62:f9:7d:a4:af: 80:73:98:79:8f:b5:61:2a:29:6b:40:fe:ca:df:ca:02:29:6f: b6:20:37:bd:1a:ab:fe:cd:46:d2:56:4c:13:b4:1b:6a:6d:5d: 7c:a0:50:d9:93:5d:86:91:a0:00:0d:f6:a0:02:04:a4:3e:66: b4:f1:e9:ca:78:a1:3b:9b:21:f5:31:99:95:e2:4d:57:94:21: 45:ee:a9:1b:4b:d3:92:59:62:05:5d:0f:57:77:1c:85:0e:78: 36:5c:74:2c:83:15:d8:4c:af:71:6f:0e:ef:d5:1f:f2:e0:48: 50:e3:50:f3:bc:ce:64:9c:bc:aa:02:bc:60:fd:83:33:4c:fe: 13:4f:76:5c:d4:c7:a3:d5:dc:42:7e:6f:5a:f1:a2:d9:fb:bc: 3d:b1:d4:dd:ae:7d:ed:1d:c8:a3:05:03:8f:59:f0:1e:68:7a: 80:5c:19:60:b1:e6:f4:56:9b:cd:a5:95:39:ca:fc:a1:00:c7: 5c:09:eb:e9 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUOHPgZ4Ex3boX6+DTHaPGZj5npq8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTRaFw0yNjA3MDMwNjUyNTRaMDMxMTAvBgNV BAMTKEYyMjc3RDNFQUVGNTBBQ0Q3QkIxMDhEMUY3RjI4N0YwRTk0MTM4RUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNyNddvnP6+MFnpn6JAVV6berQ 9Lr/8/3TPNGphii4iFrPSR77iBEVKFUwcU9EAATyrXkjHi2FTExpylcSiSTGNx8A DUBDvA8yQp3AQWLzK/zsEUOWQJBDwSmXRwl0uK2SSRzzaAy4HTtlLyGGBqi9Y1Uh K54jQlARPXV2pjL8/L0WT1q4c5+y8pFpe2suQbUgJVVNf8gbA5dn+HK3iEyxJtY8 SELgzX8jQ4TYVQDRAYi9tsHTTKkH/3axB66d6RVlgQFkbuZCRY5UWzngt1nEcSuj 1219Kel9/z8iDUA8GOMHfKh6iNxX6PWMwToyHn1D6gcysiDQBZ/cNWfFJ8B3AgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQU8id9Pq71Cs17sQjR9/KH8OlBOOswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTEyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASMBADBgAqBd/BxQMGACoF38HGMA0GCSqGSIb3DQEB CwUAA4IBAQCPYZ5mQ/Y01mbddxehxFI2/D8VA6mGcA5rr1g32zfZQLwLmurvtlAF QuA232fO59JsNqDXPuIo+S+VYVvblANFRVDNYvl9pK+Ac5h5j7VhKilrQP7K38oC KW+2IDe9Gqv+zUbSVkwTtBtqbV18oFDZk12GkaAADfagAgSkPma08enKeKE7myH1 MZmV4k1XlCFF7qkbS9OSWWIFXQ9XdxyFDng2XHQsgxXYTK9xbw7v1R/y4EhQ41Dz vM5knLyqArxg/YMzTP4TT3Zc1Mej1dxCfm9a8aLZ+7w9sdTdrn3tHcijBQOPWfAe aHqAXBlgseb0VpvNpZU5yvyhAMdcCevp -----END CERTIFICATE-----Generated at Sat Jul 5 03:50:37 2025 by rpki-client