$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209574.roa File: AS209574.roa (raw, json) Hash identifier: ds9n6OW13tmFlEjvkjzyyb5ImqlDRjoBIVKXnmox558= Subject key identifier: 38:28:63:CE:04:F8:D4:02:3C:D7:68:68:95:07:8C:BA:3B:61:4A:13 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 46B1B41F93BB80616E08539CCFB79F0A854C6709 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209574.roa Signing time: Fri 04 Jul 2025 06:53:04 +0000 ROA not before: Fri 04 Jul 2025 06:48:04 +0000 ROA not after: Fri 03 Jul 2026 06:53:04 +0000 asID: 209574 IP address blocks: 2a05:dfc1:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:b1:b4:1f:93:bb:80:61:6e:08:53:9c:cf:b7:9f:0a:85:4c:67:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:04 2025 GMT Not After : Jul 3 06:53:04 2026 GMT Subject: CN=382863CE04F8D4023CD7686895078CBA3B614A13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8d:22:30:3b:3e:ec:f0:27:39:d3:01:9f:5c: 5c:bc:12:f2:40:a9:a7:0b:d5:60:8d:16:81:46:32: c6:60:32:c7:d7:7d:06:01:73:fc:76:50:ba:30:08: 04:44:5f:39:37:bf:a8:98:25:73:4b:ab:45:7a:38: 58:91:ee:c7:3f:73:4d:18:76:8a:d5:e7:a6:b9:9b: e0:bc:ca:69:0c:f8:8c:4f:b4:17:56:f9:2b:32:8f: 50:92:a0:a6:1f:5f:a7:f2:01:60:13:95:b0:87:84: 8c:c2:5c:85:91:8e:9e:5c:07:8e:e4:20:cb:1c:9b: 9a:61:2d:74:13:af:5a:23:12:96:b6:2b:19:9f:7e: fc:de:08:08:43:79:25:fc:dd:db:ef:97:3a:d5:4b: aa:31:b0:58:ce:98:d2:5c:43:e9:c7:42:9e:5a:8d: 63:1b:10:e2:58:35:df:3c:dc:ec:36:03:85:a2:1c: 92:0c:ba:44:86:90:ff:ce:99:3d:8c:39:54:a0:f1: e8:10:09:20:36:b9:4e:b5:e7:fd:42:19:ed:fd:7b: 5a:32:61:cc:22:6d:9c:2a:42:dc:ae:e4:06:a4:e7: 37:23:c3:78:dd:82:1d:17:d3:08:e2:1d:ff:ff:1b: 39:74:19:6e:26:35:75:f5:f8:71:f3:90:e2:d2:ce: 54:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:28:63:CE:04:F8:D4:02:3C:D7:68:68:95:07:8C:BA:3B:61:4A:13 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7100::/40 Signature Algorithm: sha256WithRSAEncryption b3:1d:a4:b8:3f:fc:f5:0b:63:ea:89:a9:08:1c:95:9c:ad:d5: 36:19:40:62:d0:9c:a1:b5:ec:95:6e:38:0b:08:25:17:46:39: d7:03:41:d9:5b:bd:1c:40:7b:d3:a8:9c:91:aa:c1:9f:02:5d: 1c:84:22:80:35:71:c6:03:94:cc:19:67:fe:0a:b4:d8:a4:b7: 61:35:ca:78:6f:65:bd:d5:7a:df:f6:24:7e:1e:ca:df:95:5f: 8a:91:e5:9b:3d:20:42:80:57:dc:de:f5:10:3e:ba:73:a0:9b: c3:dd:d1:90:d1:06:92:e6:fe:57:a6:7a:6a:07:43:55:df:8e: 21:9e:38:9a:0a:ef:ef:5e:e9:82:ce:bd:af:82:82:1d:d9:11: 2a:28:2e:86:f9:0f:78:f4:ee:a8:85:1c:f5:97:12:db:3c:dd: f7:aa:ea:94:3f:b7:18:d0:5c:69:2c:63:24:f0:a1:78:4b:7b: 69:b9:a4:e2:62:12:79:14:38:0a:57:f1:b0:b8:7b:6c:e3:bf: 49:d3:88:1a:d3:e5:94:52:2c:02:5b:d6:e1:16:a5:52:03:25: dd:9d:16:43:f4:30:95:6f:2b:a6:5c:e5:2c:8c:c1:b8:f7:73: 29:83:83:bc:f4:35:1a:e4:33:26:3f:fe:9e:08:07:c2:1a:01: 1d:61:b0:48 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURrG0H5O7gGFuCFOcz7efCoVMZwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDRaFw0yNjA3MDMwNjUzMDRaMDMxMTAvBgNV BAMTKDM4Mjg2M0NFMDRGOEQ0MDIzQ0Q3Njg2ODk1MDc4Q0JBM0I2MTRBMTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzjSIwOz7s8Cc50wGfXFy8EvJA qacL1WCNFoFGMsZgMsfXfQYBc/x2ULowCAREXzk3v6iYJXNLq0V6OFiR7sc/c00Y dorV56a5m+C8ymkM+IxPtBdW+Ssyj1CSoKYfX6fyAWATlbCHhIzCXIWRjp5cB47k IMscm5phLXQTr1ojEpa2KxmffvzeCAhDeSX83dvvlzrVS6oxsFjOmNJcQ+nHQp5a jWMbEOJYNd883Ow2A4WiHJIMukSGkP/OmT2MOVSg8egQCSA2uU615/1CGe39e1oy YcwibZwqQtyu5Aak5zcjw3jdgh0X0wjiHf//Gzl0GW4mNXX1+HHzkOLSzlTLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOChjzgT41AI812holQeMujthShMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXEwDQYJKoZIhvcNAQELBQADggEBALMd pLg//PULY+qJqQgclZyt1TYZQGLQnKG17JVuOAsIJRdGOdcDQdlbvRxAe9OonJGq wZ8CXRyEIoA1ccYDlMwZZ/4KtNikt2E1ynhvZb3Vet/2JH4eyt+VX4qR5Zs9IEKA V9ze9RA+unOgm8Pd0ZDRBpLm/lememoHQ1XfjiGeOJoK7+9e6YLOva+Cgh3ZESoo Lob5D3j07qiFHPWXEts83feq6pQ/txjQXGksYyTwoXhLe2m5pOJiEnkUOApX8bC4 e2zjv0nTiBrT5ZRSLAJb1uEWpVIDJd2dFkP0MJVvK6Zc5SyMwbj3cymDg7z0NRrk MyY//p4IB8IaAR1hsEg= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:07 2025 by rpki-client