$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: /GpVSAQxGxYfvG2gdAjzUEDltzyKwh/8Ae/3x+LDTvk= Subject key identifier: D4:AE:36:39:1D:52:96:F2:24:5A:CA:BE:82:8C:6F:48:78:98:4E:34 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5FA72089D734D346AD16AEAE1A2A4A39DBE18A47 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210667.roa Signing time: Fri 05 Jun 2026 07:12:11 +0000 ROA not before: Fri 05 Jun 2026 07:07:11 +0000 ROA not after: Fri 04 Jun 2027 07:12:11 +0000 asID: 210667 IP address blocks: 2a0a:6040:5100::/40 maxlen: 48 2a0a:6040:6100::/40 maxlen: 48 2a0a:6040:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 16:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a7:20:89:d7:34:d3:46:ad:16:ae:ae:1a:2a:4a:39:db:e1:8a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:11 2026 GMT Not After : Jun 4 07:12:11 2027 GMT Subject: CN=D4AE36391D5296F2245ACABE828C6F4878984E34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:18:ef:84:c7:32:85:52:96:39:ba:a7:86: 3f:2d:98:ed:c8:2d:b4:ef:da:4c:af:77:14:f2:ef: 22:9e:e0:9d:55:25:6a:ed:ee:11:a4:17:ba:7b:6b: ca:2a:f8:e0:b3:30:a2:e7:b1:72:8d:05:f2:6f:9a: d9:a8:c9:08:6e:11:15:7f:fb:77:c6:f2:36:8c:7f: 31:07:da:c5:94:c1:3b:88:a0:66:d4:32:8c:7b:bd: 0a:a6:34:c6:53:72:65:31:56:31:e4:1b:ae:d9:df: 31:db:77:2d:ea:c9:aa:d3:ab:9e:2f:10:92:f9:fe: fc:04:8c:2b:06:2c:76:de:c3:af:aa:7a:3e:b3:fc: 8b:40:e4:77:e0:f9:d6:ac:de:9a:43:ca:1f:ed:43: 01:d1:f6:27:f6:cf:e8:9c:6d:6b:4e:ab:c3:28:4a: 16:a0:f1:59:86:ce:6c:ba:41:f0:eb:71:34:9d:c1: 4e:e1:af:85:b4:95:f2:dd:51:11:77:ce:2e:d4:ac: 98:ea:b0:9b:d6:a1:1e:74:50:f7:a9:ad:7b:8c:d3: 66:1a:77:62:55:66:1d:35:02:df:af:cb:4a:59:44: b7:7b:ef:5a:f6:9d:54:8c:c4:2d:62:d7:b2:da:8c: 8f:16:63:ab:99:59:6f:0a:23:66:f7:e9:54:2c:a5: a2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:AE:36:39:1D:52:96:F2:24:5A:CA:BE:82:8C:6F:48:78:98:4E:34 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5100::/40 2a0a:6040:6100::/40 2a0a:6040:7100::/40 Signature Algorithm: sha256WithRSAEncryption 25:2d:64:c1:bb:bf:d6:5e:31:54:eb:0e:e5:27:5b:6a:9c:f5: 18:7d:0e:1c:78:64:72:f7:40:0e:b0:00:96:91:e1:16:08:fe: 0e:1c:62:e5:30:19:52:7a:b2:c2:d1:c1:6f:b1:68:b9:11:84: d3:56:af:f3:c6:8d:14:ad:a1:a9:0a:71:dd:8b:19:51:f6:05: f7:c4:69:c3:9a:d7:e4:e6:ef:78:ee:62:bb:3c:09:5a:f6:b3: e6:22:69:9e:9e:d3:55:c2:7c:01:25:ba:9c:27:60:27:92:1d: 53:45:90:ca:ae:f7:03:ee:b9:ac:e3:af:94:69:b7:9c:5e:74: 12:be:0a:79:98:66:20:ea:ed:37:8d:0e:f2:0e:51:02:61:cc: 80:44:8f:8d:dd:2a:77:34:a6:7b:a3:4e:99:ce:79:70:af:6b: 7f:bc:a2:ce:ad:09:9b:b8:e1:07:dd:e2:9b:05:87:b4:c9:a2: cc:6f:0a:ab:5f:9c:5e:a5:83:93:de:d3:75:18:65:e7:c5:2d: f5:e6:81:50:31:f8:bb:02:11:43:43:b3:ac:cc:0d:f0:81:68: aa:d1:70:1d:13:f7:7f:67:14:9d:39:5d:3b:d2:f2:99:f5:3d: 72:1d:69:5e:e9:70:fe:e1:15:a9:bd:4c:c6:ff:c4:f3:67:c6: 52:12:fd:e7 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUX6cgidc000atFq6uGipKOdvhikcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTFaFw0yNzA2MDQwNzEyMTFaMDMxMTAvBgNV BAMTKEQ0QUUzNjM5MUQ1Mjk2RjIyNDVBQ0FCRTgyOEM2RjQ4Nzg5ODRFMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJbxjvhMcyhVKWObqnhj8tmO3I LbTv2kyvdxTy7yKe4J1VJWrt7hGkF7p7a8oq+OCzMKLnsXKNBfJvmtmoyQhuERV/ +3fG8jaMfzEH2sWUwTuIoGbUMox7vQqmNMZTcmUxVjHkG67Z3zHbdy3qyarTq54v EJL5/vwEjCsGLHbew6+qej6z/ItA5Hfg+das3ppDyh/tQwHR9if2z+icbWtOq8Mo Shag8VmGzmy6QfDrcTSdwU7hr4W0lfLdURF3zi7UrJjqsJvWoR50UPeprXuM02Ya d2JVZh01At+vy0pZRLd771r2nVSMxC1i17LajI8WY6uZWW8KI2b36VQspaIBAgMB AAGjggIEMIICADAdBgNVHQ4EFgQU1K42OR1SlvIkWsq+goxvSHiYTjQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQFEDBgAqCmBAYQMGACoKYEBxMA0GCSqG SIb3DQEBCwUAA4IBAQAlLWTBu7/WXjFU6w7lJ1tqnPUYfQ4ceGRy90AOsACWkeEW CP4OHGLlMBlSerLC0cFvsWi5EYTTVq/zxo0UraGpCnHdixlR9gX3xGnDmtfk5u94 7mK7PAla9rPmImmentNVwnwBJbqcJ2Ankh1TRZDKrvcD7rms46+UabecXnQSvgp5 mGYg6u03jQ7yDlECYcyARI+N3Sp3NKZ7o06Zznlwr2t/vKLOrQmbuOEH3eKbBYe0 yaLMbwqrX5xepYOT3tN1GGXnxS315oFQMfi7AhFDQ7OszA3wgWiq0XAdE/d/ZxSd OV070vKZ9T1yHWle6XD+4RWpvUzG/8TzZ8ZSEv3n -----END CERTIFICATE-----Generated at Fri Jun 5 23:33:58 2026 by rpki-client