$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209554.roa File: AS209554.roa (raw, json) Hash identifier: 5M+diqVzaiW8tjt4ZQq38ePRfBF/PF11WXzB4isHBF8= Subject key identifier: F7:2C:16:80:DE:FC:E9:CD:CC:53:28:2E:8A:A7:A3:82:72:7B:F9:08 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 65AC8B8F6C32CC1632BD8A0D6FCBA30F2514734B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209554.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 209554 IP address blocks: 2a0a:6040:ad00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ac:8b:8f:6c:32:cc:16:32:bd:8a:0d:6f:cb:a3:0f:25:14:73:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=F72C1680DEFCE9CDCC53282E8AA7A382727BF908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:11:27:55:a3:c4:a2:4e:dd:40:df:29:99: 69:fc:53:ec:93:68:82:c4:f0:29:86:76:c2:e9:6f: de:1d:64:5b:8b:bd:a8:76:62:a6:4a:92:ad:d4:53: 30:3f:03:f9:28:a7:b0:9e:c4:cb:b3:bf:38:1f:9a: b3:1d:1c:69:f8:ed:1b:57:bf:15:2c:c4:36:91:26: 55:25:5e:31:6d:03:6f:d7:90:60:50:a7:47:d5:25: 70:d6:65:83:87:5e:5c:0d:19:43:50:24:42:9d:c4: 20:7a:c1:a2:ac:ed:18:cd:bb:16:4f:97:30:52:85: 97:07:55:bd:60:21:d0:df:19:85:19:97:bd:f2:08: 3d:96:f5:82:e0:ba:da:39:21:c1:84:e4:9d:e9:e3: d3:bb:5d:09:86:c5:8e:7e:f3:31:27:8c:72:18:05: f9:d2:d6:34:26:b1:da:36:09:08:d8:de:2a:74:4b: 68:0d:56:a8:a4:fb:22:61:99:a7:dc:4a:94:e9:15: 09:a8:5d:00:23:3f:92:81:4a:e3:48:37:a9:ef:1c: 59:40:c3:3d:8a:be:83:b1:ef:23:e5:39:53:e5:a6: b1:0b:98:f2:93:05:2a:06:3f:50:73:62:3e:35:27: 6f:8e:55:66:87:eb:07:ba:ad:a7:a5:8f:a9:af:64: 77:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:2C:16:80:DE:FC:E9:CD:CC:53:28:2E:8A:A7:A3:82:72:7B:F9:08 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ad00::/40 Signature Algorithm: sha256WithRSAEncryption ca:ca:98:51:18:6c:f9:86:68:06:3d:76:ab:7e:fb:01:cb:69: 65:8d:ac:e8:b3:0f:d9:c3:78:03:11:72:88:e3:7a:3d:a2:d0: 01:47:b0:44:f0:2a:ac:5d:02:da:7e:be:52:d8:8a:6d:33:db: b0:50:68:39:26:f1:6f:b7:97:95:7a:31:d8:b3:9a:1c:51:fc: 5c:56:a8:cc:24:d8:97:83:d7:05:5a:03:8a:e3:b7:3f:8e:00: de:79:4d:1d:7e:b5:7d:2f:a5:2b:0d:bc:91:f3:fa:dc:a5:a0: 64:fb:5f:51:40:34:ff:7d:b0:0a:90:33:61:e0:48:a0:da:05: 82:7a:ab:3b:22:04:02:d4:85:1e:9d:3c:4e:9c:c1:6c:dd:da: 48:a9:fa:5c:db:db:5a:6f:83:18:77:90:0c:72:aa:4d:75:74: 50:77:3c:8e:af:c7:dc:8f:92:1b:6c:95:c6:32:97:ab:3b:fd: fc:0f:d5:10:b5:08:1d:31:4a:6b:dc:cb:90:bb:37:f4:4f:36: 20:f3:e9:c0:7d:e9:06:34:15:53:34:d4:06:fb:19:b3:a0:9f: ab:ad:58:57:d2:8e:3f:f3:8d:a1:a2:d4:cd:5c:fc:a8:cc:fb: e5:a8:c2:4e:7f:8b:9d:ae:f6:c2:11:11:8f:e9:80:7a:16:ad: ee:f3:a7:6a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZayLj2wyzBYyvYoNb8ujDyUUc0swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKEY3MkMxNjgwREVGQ0U5Q0RDQzUzMjgyRThBQTdBMzgyNzI3QkY5MDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaAxEnVaPEok7dQN8pmWn8U+yT aILE8CmGdsLpb94dZFuLvah2YqZKkq3UUzA/A/kop7CexMuzvzgfmrMdHGn47RtX vxUsxDaRJlUlXjFtA2/XkGBQp0fVJXDWZYOHXlwNGUNQJEKdxCB6waKs7RjNuxZP lzBShZcHVb1gIdDfGYUZl73yCD2W9YLguto5IcGE5J3p49O7XQmGxY5+8zEnjHIY BfnS1jQmsdo2CQjY3ip0S2gNVqik+yJhmafcSpTpFQmoXQAjP5KBSuNIN6nvHFlA wz2KvoOx7yPlOVPlprELmPKTBSoGP1BzYj41J2+OVWaH6we6raelj6mvZHdFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU9ywWgN786c3MUyguiqejgnJ7+QgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK0wDQYJKoZIhvcNAQELBQADggEBAMrK mFEYbPmGaAY9dqt++wHLaWWNrOizD9nDeAMRcojjej2i0AFHsETwKqxdAtp+vlLY im0z27BQaDkm8W+3l5V6MdizmhxR/FxWqMwk2JeD1wVaA4rjtz+OAN55TR1+tX0v pSsNvJHz+tyloGT7X1FANP99sAqQM2HgSKDaBYJ6qzsiBALUhR6dPE6cwWzd2kip +lzb21pvgxh3kAxyqk11dFB3PI6vx9yPkhtslcYyl6s7/fwP1RC1CB0xSmvcy5C7 N/RPNiDz6cB96QY0FVM01Ab7GbOgn6utWFfSjj/zjaGi1M1c/KjM++Wowk5/i52u 9sIREY/pgHoWre7zp2o= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:42 2025 by rpki-client