$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210476.roa File: AS210476.roa (raw, json) Hash identifier: pLxSFhIQbrtI4D2+kqPnkAqcVY78+JQsFC+ZMZ9zoBo= Subject key identifier: 81:76:E6:95:9B:80:EE:8E:92:53:33:D4:F7:C9:23:90:51:AE:DE:46 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 15AD15433F1AB3746E2CCEBD8AFD558645CB4FFF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210476.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 210476 IP address blocks: 2a05:dfc1:5b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ad:15:43:3f:1a:b3:74:6e:2c:ce:bd:8a:fd:55:86:45:cb:4f:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=8176E6959B80EE8E925333D4F7C9239051AEDE46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:ef:f2:bc:91:3b:3e:b3:1e:be:53:9c:95: fe:fd:b9:4d:90:5a:ca:fc:f0:a8:7b:3a:78:76:8a: b7:6f:51:c8:9f:1a:bf:e4:2e:77:06:77:14:c6:37: c7:eb:a8:f4:2f:2a:9b:10:5d:92:73:9d:f4:24:07: cf:20:0a:2a:38:bc:ba:a7:17:f7:c9:56:58:fd:37: c0:44:d3:63:fc:95:db:b0:e2:a3:63:34:8e:7e:27: b7:23:fb:65:2b:af:f4:dd:50:ec:59:5d:4e:43:b2: af:18:5d:ff:c5:50:fc:ed:e9:28:af:1b:8e:00:c1: 60:cf:ee:06:b4:d4:b5:34:7d:8e:ed:6c:e7:08:4e: 3d:61:3d:c3:41:35:3f:4d:b5:46:c9:61:79:58:39: ae:3f:d2:a9:77:5b:ce:ff:15:16:88:9e:50:5c:84: b7:d1:25:8c:8e:15:fb:92:10:3c:c0:1e:d6:de:da: fc:31:35:b6:2d:64:9e:cf:81:09:e2:29:98:e9:c3: 10:9a:f1:e4:ff:7c:0c:69:f2:3e:74:31:2f:3b:7a: bc:2f:60:ef:4a:16:55:07:4c:a9:88:54:11:58:f9: f9:05:bc:f2:6b:58:18:2a:91:f0:74:a9:31:c8:d5: 5b:c0:ea:26:60:17:3d:b1:82:9e:36:b8:6a:49:6e: 0b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:76:E6:95:9B:80:EE:8E:92:53:33:D4:F7:C9:23:90:51:AE:DE:46 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5b00::/40 Signature Algorithm: sha256WithRSAEncryption e2:e0:5b:39:48:6d:cf:21:79:97:f7:b7:46:fc:71:26:d5:59: 18:ff:0f:e4:a0:9f:15:9a:1b:61:93:cd:3a:64:0a:68:5d:00: e1:f2:ad:93:b4:fe:72:79:0e:a0:26:c5:51:b7:61:ff:88:08: 42:43:69:a5:22:ce:25:0c:b8:42:e2:2d:db:e6:7b:bd:e2:94: 1b:3b:09:01:87:61:1f:a7:12:4e:f8:5d:7e:c2:71:0d:4d:5b: e9:cb:70:79:28:d6:cf:48:ab:e7:0b:56:f2:f9:dc:45:96:6b: 8e:b9:ef:75:df:71:4a:58:36:62:35:9d:6e:43:51:ce:22:7f: 98:07:a3:be:54:60:e7:69:05:28:72:03:ae:79:8c:dd:44:ff: 85:83:ef:1b:da:7e:4a:70:60:96:e6:ec:86:e7:41:95:8f:39: b3:35:6e:f9:95:de:87:9d:48:9d:f2:9b:81:18:50:fe:e3:e6: 1f:74:ad:73:d9:1d:5a:c4:64:6c:3b:7f:49:c2:dc:27:bd:0c: 24:27:f4:2e:c5:9c:33:d2:ab:07:ac:1f:8e:7b:bc:3b:36:ab: 6a:1e:df:68:87:01:ab:92:91:4e:ec:a2:ad:b9:c9:f6:3a:06: 28:fd:ef:d8:60:17:6c:4e:4e:8a:be:d6:cd:46:15:07:95:5a: fa:50:a9:58 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFa0VQz8as3RuLM69iv1VhkXLT/8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDgxNzZFNjk1OUI4MEVFOEU5MjUzMzNENEY3QzkyMzkwNTFBRURFNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkie/yvJE7PrMevlOclf79uU2Q Wsr88Kh7Onh2irdvUcifGr/kLncGdxTGN8frqPQvKpsQXZJznfQkB88gCio4vLqn F/fJVlj9N8BE02P8lduw4qNjNI5+J7cj+2Urr/TdUOxZXU5Dsq8YXf/FUPzt6Siv G44AwWDP7ga01LU0fY7tbOcITj1hPcNBNT9NtUbJYXlYOa4/0ql3W87/FRaInlBc hLfRJYyOFfuSEDzAHtbe2vwxNbYtZJ7PgQniKZjpwxCa8eT/fAxp8j50MS87erwv YO9KFlUHTKmIVBFY+fkFvPJrWBgqkfB0qTHI1VvA6iZgFz2xgp42uGpJbgs1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgXbmlZuA7o6SUzPU98kjkFGu3kYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNDc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVswDQYJKoZIhvcNAQELBQADggEBAOLg WzlIbc8heZf3t0b8cSbVWRj/D+SgnxWaG2GTzTpkCmhdAOHyrZO0/nJ5DqAmxVG3 Yf+ICEJDaaUiziUMuELiLdvme73ilBs7CQGHYR+nEk74XX7CcQ1NW+nLcHko1s9I q+cLVvL53EWWa46573XfcUpYNmI1nW5DUc4if5gHo75UYOdpBShyA655jN1E/4WD 7xvafkpwYJbm7IbnQZWPObM1bvmV3oedSJ3ym4EYUP7j5h90rXPZHVrEZGw7f0nC 3Ce9DCQn9C7FnDPSqwesH457vDs2q2oe32iHAauSkU7soq25yfY6Bij979hgF2xO Toq+1s1GFQeVWvpQqVg= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:59 2025 by rpki-client