$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: uEDeIrDgG9UxEc/RjiC7Q+/scDhWN8V8qQuD4pv4tfM= Subject key identifier: EA:7C:41:28:09:01:E6:27:B8:67:0B:D5:35:C1:CF:CA:D4:0F:9F:76 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3B2A6C49B6B4CF2568DF84C5A73F7AB689DEA589 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210475.roa Signing time: Fri 04 Jul 2025 06:53:23 +0000 ROA not before: Fri 04 Jul 2025 06:48:23 +0000 ROA not after: Fri 03 Jul 2026 06:53:23 +0000 asID: 210475 IP address blocks: 2a05:dfc1:7700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:2a:6c:49:b6:b4:cf:25:68:df:84:c5:a7:3f:7a:b6:89:de:a5:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:23 2025 GMT Not After : Jul 3 06:53:23 2026 GMT Subject: CN=EA7C41280901E627B8670BD535C1CFCAD40F9F76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:66:d2:9b:8c:c6:cf:24:91:c1:ab:cc:6f: ec:6c:c5:1c:cc:5b:74:db:28:91:86:14:07:8d:c8: 77:da:5a:c9:c5:77:3f:ee:51:dd:fc:e0:73:c3:fe: 5f:55:c3:bf:90:a6:95:db:27:48:0a:e5:e7:94:34: 68:fb:c4:d5:1f:91:d3:e6:1c:7a:95:4b:19:e7:9a: 37:b9:22:3a:dd:c1:15:30:44:9b:d7:35:dc:a7:d2: 68:c2:9c:a1:8c:c1:35:27:d5:f6:69:9d:82:3c:0f: 49:1e:89:26:8a:ea:7d:95:87:46:e2:86:4d:f8:0b: 8b:3a:8c:08:b7:4d:b7:fd:31:1c:2f:f5:53:7d:d1: 84:08:fd:a8:98:9c:95:2e:a2:54:99:46:b7:90:c8: 17:4c:11:fa:7d:7b:0d:fc:de:89:03:b7:e7:6d:92: aa:f2:9c:c2:97:61:a5:a5:59:01:c5:ab:05:dd:65: d8:80:19:72:b2:ef:cd:1b:0c:ee:a4:84:93:78:4f: cb:20:e7:85:a6:8f:d6:4e:35:5d:7d:56:12:7a:dc: 6e:10:6e:3c:bd:70:59:4e:39:e7:f1:f9:cf:05:4e: 1d:f5:f6:4c:48:8c:ca:f1:1d:32:4d:76:ee:5b:60: 1a:01:bd:da:fb:41:b9:2d:e9:b5:4b:21:2c:9d:15: c9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:7C:41:28:09:01:E6:27:B8:67:0B:D5:35:C1:CF:CA:D4:0F:9F:76 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7700::/40 Signature Algorithm: sha256WithRSAEncryption e4:87:61:2f:fe:eb:d4:9f:16:46:70:e2:88:75:fa:9b:8c:4f: a9:0f:65:8e:78:07:25:77:57:52:f4:2b:94:c5:bb:dc:fd:c4: e1:6f:bf:4e:c2:5c:02:10:79:23:23:03:05:89:4f:4a:46:e4: 2b:32:59:58:55:cd:d5:cd:c0:46:71:aa:02:eb:ed:36:21:56: b6:70:58:94:cf:2b:e7:6f:a9:94:50:55:85:cb:51:97:6a:a6: 94:2f:8d:af:6f:98:c3:c6:bf:a1:28:6f:08:ec:79:37:a1:5c: 89:a7:47:2c:82:27:7f:f7:19:a0:f9:ec:9c:0f:29:00:db:10: 39:e7:1d:c1:be:51:4b:7c:28:fb:57:4d:98:c3:71:c9:09:67: f7:c1:96:4a:19:9a:87:99:70:24:22:cb:e1:d6:96:dc:f7:9c: 61:e3:db:c9:73:e4:64:53:1b:fa:f2:ce:24:67:bb:e4:e3:5d: cd:20:49:9b:cb:f1:d8:6d:8a:09:c2:7b:9d:50:c9:b5:1e:27: f2:bd:5e:72:74:96:fe:2b:60:5e:75:43:ad:07:f7:3e:71:92: 55:ab:3a:38:17:32:60:7c:b4:43:7d:45:a7:9f:d8:39:82:37: e9:58:bd:0a:20:95:cf:f8:dd:28:cd:ea:92:ab:2f:d7:67:2c: 24:31:53:a2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOypsSba0zyVo34TFpz96tonepYkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjNaFw0yNjA3MDMwNjUzMjNaMDMxMTAvBgNV BAMTKEVBN0M0MTI4MDkwMUU2MjdCODY3MEJENTM1QzFDRkNBRDQwRjlGNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9s2bSm4zGzySRwavMb+xsxRzM W3TbKJGGFAeNyHfaWsnFdz/uUd384HPD/l9Vw7+QppXbJ0gK5eeUNGj7xNUfkdPm HHqVSxnnmje5IjrdwRUwRJvXNdyn0mjCnKGMwTUn1fZpnYI8D0keiSaK6n2Vh0bi hk34C4s6jAi3Tbf9MRwv9VN90YQI/aiYnJUuolSZRreQyBdMEfp9ew383okDt+dt kqrynMKXYaWlWQHFqwXdZdiAGXKy780bDO6khJN4T8sg54Wmj9ZONV19VhJ63G4Q bjy9cFlOOefx+c8FTh319kxIjMrxHTJNdu5bYBoBvdr7Qbkt6bVLISydFcnjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6nxBKAkB5ie4ZwvVNcHPytQPn3YwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXcwDQYJKoZIhvcNAQELBQADggEBAOSH YS/+69SfFkZw4oh1+puMT6kPZY54ByV3V1L0K5TFu9z9xOFvv07CXAIQeSMjAwWJ T0pG5CsyWVhVzdXNwEZxqgLr7TYhVrZwWJTPK+dvqZRQVYXLUZdqppQvja9vmMPG v6EobwjseTehXImnRyyCJ3/3GaD57JwPKQDbEDnnHcG+UUt8KPtXTZjDcckJZ/fB lkoZmoeZcCQiy+HWltz3nGHj28lz5GRTG/ryziRnu+TjXc0gSZvL8dhtignCe51Q ybUeJ/K9XnJ0lv4rYF51Q60H9z5xklWrOjgXMmB8tEN9Raef2DmCN+lYvQoglc/4 3SjN6pKrL9dnLCQxU6I= -----END CERTIFICATE-----Generated at Sat Jul 5 04:13:14 2025 by rpki-client