$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209686.roa File: AS209686.roa (raw, json) Hash identifier: s8lCO/F1LmpShllu60x+kUAyFZydWwF58Wj5BvSL8TI= Subject key identifier: 54:80:08:6D:4B:93:7A:BE:C7:35:88:56:6F:8F:C3:A9:E7:A7:DC:8C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 59AB3BB40AD3DA913D22CB0765D49B436202DF1E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209686.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 209686 IP address blocks: 2a05:dfc1:5a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:ab:3b:b4:0a:d3:da:91:3d:22:cb:07:65:d4:9b:43:62:02:df:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=5480086D4B937ABEC73588566F8FC3A9E7A7DC8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:44:96:96:12:e0:81:cb:a7:02:e8:93:a6:22: 07:88:11:01:e6:52:76:9e:9f:e3:4c:72:27:af:6f: 57:22:b2:8f:38:4d:61:60:24:9e:3a:88:94:02:c8: cc:77:77:75:a3:ef:74:dd:89:72:b9:e1:72:81:85: b7:67:14:80:15:fa:c0:36:66:8c:92:1d:db:e5:17: ef:9a:c9:75:89:71:34:b9:24:4f:9f:01:46:8a:0b: 8b:30:0e:83:47:be:df:de:60:25:ff:6c:c9:01:15: a6:c5:5e:3c:a4:ef:f5:48:d2:58:bb:1d:b0:57:cc: 7e:48:74:b7:c6:92:9b:b8:18:99:0c:ec:8d:83:aa: fc:ff:42:ee:c0:41:3c:4a:14:3e:b1:f6:65:76:f5: e8:fa:da:8c:e6:f2:cf:d6:c3:93:81:36:f2:30:1a: 88:8c:b7:08:97:4f:52:3c:4e:00:10:70:87:82:14: e9:88:48:bf:f2:67:5a:61:5e:11:2b:57:49:ec:e5: 73:ea:d5:30:4f:55:32:20:f3:20:6f:61:91:45:8a: e8:06:4c:dd:3c:64:3b:34:30:d3:03:bd:3d:26:f7: 32:00:10:e8:47:c2:02:91:1c:54:c1:bd:f7:af:68: 8c:c6:4e:ee:9e:a8:27:82:49:58:c0:7d:cc:a7:7d: f5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:80:08:6D:4B:93:7A:BE:C7:35:88:56:6F:8F:C3:A9:E7:A7:DC:8C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209686.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5a00::/40 Signature Algorithm: sha256WithRSAEncryption 5f:6a:40:f5:0d:5f:ec:28:75:81:bb:7c:90:5c:5e:da:bc:5b: f8:93:dc:4d:31:fa:4f:3e:77:f8:09:9a:aa:1c:25:d4:02:26: 2b:f7:59:5d:bd:5f:76:eb:d4:63:22:d2:75:00:cc:5e:05:4d: cf:94:91:57:06:ea:83:78:f2:6f:a6:0e:bc:07:c3:1f:43:86: b0:70:93:b3:e6:5e:17:28:3c:23:10:34:2e:ca:52:96:33:6b: ee:3f:18:2b:66:8d:6b:e3:bb:75:b2:0b:2e:c4:b4:79:a9:8c: 57:11:ed:ce:66:98:e9:39:c7:f0:39:fe:ee:ad:72:d6:1f:2d: 0d:c1:d9:90:68:3b:31:fc:a4:de:20:6c:99:f8:6f:27:0c:be: 30:a0:d2:ba:56:10:ed:8b:55:5e:0f:5c:57:1c:7b:11:4f:b8: f7:4d:27:76:6e:96:a0:50:1b:0c:fd:d7:0e:9d:10:34:bf:a9: 02:d6:d6:41:82:32:98:e0:11:3a:4a:82:d2:84:43:1d:40:92: fc:2c:c1:3b:37:d0:6f:ac:b5:05:33:64:e3:86:34:54:78:5d: 00:cc:97:0f:f1:8b:89:6d:c2:03:74:55:15:e9:e7:48:f1:75: 53:78:a8:81:e6:88:8c:7b:03:c4:0d:b6:6b:db:88:de:dd:80: a7:83:f8:71 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWas7tArT2pE9IssHZdSbQ2IC3x4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKDU0ODAwODZENEI5MzdBQkVDNzM1ODg1NjZGOEZDM0E5RTdBN0RDOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxRJaWEuCBy6cC6JOmIgeIEQHm Unaen+NMcievb1ciso84TWFgJJ46iJQCyMx3d3Wj73TdiXK54XKBhbdnFIAV+sA2 ZoySHdvlF++ayXWJcTS5JE+fAUaKC4swDoNHvt/eYCX/bMkBFabFXjyk7/VI0li7 HbBXzH5IdLfGkpu4GJkM7I2Dqvz/Qu7AQTxKFD6x9mV29ej62ozm8s/Ww5OBNvIw GoiMtwiXT1I8TgAQcIeCFOmISL/yZ1phXhErV0ns5XPq1TBPVTIg8yBvYZFFiugG TN08ZDs0MNMDvT0m9zIAEOhHwgKRHFTBvfevaIzGTu6eqCeCSVjAfcynffUDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUVIAIbUuTer7HNYhWb4/Dqeen3IwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5Njg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVowDQYJKoZIhvcNAQELBQADggEBAF9q QPUNX+wodYG7fJBcXtq8W/iT3E0x+k8+d/gJmqocJdQCJiv3WV29X3br1GMi0nUA zF4FTc+UkVcG6oN48m+mDrwHwx9DhrBwk7PmXhcoPCMQNC7KUpYza+4/GCtmjWvj u3WyCy7EtHmpjFcR7c5mmOk5x/A5/u6tctYfLQ3B2ZBoOzH8pN4gbJn4bycMvjCg 0rpWEO2LVV4PXFccexFPuPdNJ3ZulqBQGwz91w6dEDS/qQLW1kGCMpjgETpKgtKE Qx1AkvwswTs30G+stQUzZOOGNFR4XQDMlw/xi4ltwgN0VRXp50jxdVN4qIHmiIx7 A8QNtmvbiN7dgKeD+HE= -----END CERTIFICATE-----Generated at Sat Jul 5 03:51:50 2025 by rpki-client