$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209652.roa File: AS209652.roa (raw, json) Hash identifier: C9hESc2qRWbm8nEfi6tDzKdCqYuJqHXyZT8qGM1cu2s= Subject key identifier: 6F:22:4C:72:1A:CD:57:2A:8E:88:C9:DE:D4:F1:01:F3:62:50:3A:61 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1E3A0FCA311D21C42C78764D1FE79948CA895655 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209652.roa Signing time: Fri 04 Jul 2025 06:53:17 +0000 ROA not before: Fri 04 Jul 2025 06:48:17 +0000 ROA not after: Fri 03 Jul 2026 06:53:17 +0000 asID: 209652 IP address blocks: 2a0a:6040:2400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:3a:0f:ca:31:1d:21:c4:2c:78:76:4d:1f:e7:99:48:ca:89:56:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:17 2025 GMT Not After : Jul 3 06:53:17 2026 GMT Subject: CN=6F224C721ACD572A8E88C9DED4F101F362503A61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ad:bb:37:ed:67:4c:74:1e:47:a2:2f:f8:42: e4:85:b4:5a:cd:72:f8:79:40:07:99:2f:e6:ff:7f: 8c:c9:58:0b:3f:74:92:e1:82:79:57:78:e7:8e:35: e6:a4:63:86:82:24:9b:98:a7:b5:ed:69:e6:87:f2: d2:41:98:9a:03:f0:ce:ea:fe:a8:55:5b:d8:97:ae: 42:bd:c9:bb:2d:12:13:1b:7d:70:56:1f:c9:aa:a6: 31:72:a3:cb:66:49:21:b5:9b:a6:de:10:e1:25:92: 67:c2:00:d8:97:dc:1e:02:56:e8:2a:9a:88:c6:2a: 7a:a9:1d:43:9d:9a:2b:7e:a2:e3:3a:a0:8a:ac:94: db:77:46:31:56:7f:38:f1:28:7e:e6:dd:ee:7b:8a: 25:2f:c6:01:92:8f:e4:be:c7:26:20:f0:b0:be:ad: 02:32:5d:74:4c:b2:8f:43:bd:de:75:a3:67:08:08: f3:6a:07:99:48:22:8b:49:6c:44:d8:ce:d3:01:d9: 26:6a:eb:8c:38:48:2d:46:29:d3:c3:36:8c:1e:f6: 74:bf:4d:1c:b1:bb:e6:0e:7f:ab:7b:fc:26:02:8f: 2d:25:49:18:05:f7:41:8a:2b:f0:6d:99:f4:a4:1f: 12:e5:ae:e4:e8:0b:1d:56:5d:3c:a4:5a:2f:1e:e0: 3f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:22:4C:72:1A:CD:57:2A:8E:88:C9:DE:D4:F1:01:F3:62:50:3A:61 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209652.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2400::/40 Signature Algorithm: sha256WithRSAEncryption c5:85:ae:23:88:2a:be:be:9c:29:d7:09:e4:e3:a9:b6:a2:71: 93:7f:d7:e7:6f:b2:b3:25:bb:0c:a3:81:25:96:e0:91:b8:02: ac:55:0c:38:bf:50:e2:d0:18:b0:19:15:dc:6e:21:c9:f6:2d: 57:66:1b:c4:f3:c5:b2:92:55:8f:df:19:71:e1:13:de:67:f1: d5:29:b3:94:f4:f4:b4:7a:17:ed:6d:25:2a:5e:3d:e3:36:68: 97:c7:a6:d1:0e:7a:90:22:3e:be:d3:06:08:86:2d:d7:8d:f6: af:1e:2b:70:73:6e:04:d5:00:52:b3:97:ea:b6:da:eb:e0:68: 9a:1c:0c:38:78:c6:80:b9:b0:bf:3a:33:84:ee:4b:f0:e6:9b: c4:36:6b:f9:e4:5a:3e:1a:97:39:ff:0b:59:67:22:bd:c4:4f: 6b:ca:ff:4a:c4:a9:3f:b8:db:30:42:46:7f:e3:26:02:7b:ce: 01:66:1b:38:c3:a6:f7:df:0b:a4:c4:23:be:b4:3f:23:5c:a6: f4:24:78:0b:b4:64:c5:a5:b5:d2:85:f0:df:7e:19:3e:78:ad: 00:46:0e:58:61:4e:74:f8:41:a8:9d:cc:08:0e:eb:bd:85:c6: 8a:49:b0:9c:e0:43:18:37:00:cc:71:60:05:41:7e:50:46:f1: 0d:07:9a:9e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHjoPyjEdIcQseHZNH+eZSMqJVlUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTdaFw0yNjA3MDMwNjUzMTdaMDMxMTAvBgNV BAMTKDZGMjI0QzcyMUFDRDU3MkE4RTg4QzlERUQ0RjEwMUYzNjI1MDNBNjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcrbs37WdMdB5Hoi/4QuSFtFrN cvh5QAeZL+b/f4zJWAs/dJLhgnlXeOeONeakY4aCJJuYp7XtaeaH8tJBmJoD8M7q /qhVW9iXrkK9ybstEhMbfXBWH8mqpjFyo8tmSSG1m6beEOElkmfCANiX3B4CVugq mojGKnqpHUOdmit+ouM6oIqslNt3RjFWfzjxKH7m3e57iiUvxgGSj+S+xyYg8LC+ rQIyXXRMso9Dvd51o2cICPNqB5lIIotJbETYztMB2SZq64w4SC1GKdPDNowe9nS/ TRyxu+YOf6t7/CYCjy0lSRgF90GKK/BtmfSkHxLlruToCx1WXTykWi8e4D9TAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUbyJMchrNVyqOiMne1PEB82JQOmEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NjUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCQwDQYJKoZIhvcNAQELBQADggEBAMWF riOIKr6+nCnXCeTjqbaicZN/1+dvsrMluwyjgSWW4JG4AqxVDDi/UOLQGLAZFdxu Icn2LVdmG8TzxbKSVY/fGXHhE95n8dUps5T09LR6F+1tJSpePeM2aJfHptEOepAi Pr7TBgiGLdeN9q8eK3BzbgTVAFKzl+q22uvgaJocDDh4xoC5sL86M4TuS/Dmm8Q2 a/nkWj4alzn/C1lnIr3ET2vK/0rEqT+42zBCRn/jJgJ7zgFmGzjDpvffC6TEI760 PyNcpvQkeAu0ZMWltdKF8N9+GT54rQBGDlhhTnT4QaidzAgO672FxopJsJzgQxg3 AMxxYAVBflBG8Q0Hmp4= -----END CERTIFICATE-----Generated at Sat Jul 5 06:07:34 2025 by rpki-client