$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210667.roa File: AS210667.roa (raw, json) Hash identifier: 57MwgZaxudtaGKuHN+khIm6umasoRvM9n31oc0TQny8= Subject key identifier: 0D:F8:53:91:84:F8:E7:3E:82:A9:BF:99:74:0D:C6:BE:57:49:64:AB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 387E3AABCAC378A1135C6F557F4B763796B9246D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210667.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 210667 IP address blocks: 2a0a:6040:5100::/40 maxlen: 48 2a0a:6040:6100::/40 maxlen: 48 2a0a:6040:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7e:3a:ab:ca:c3:78:a1:13:5c:6f:55:7f:4b:76:37:96:b9:24:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=0DF8539184F8E73E82A9BF99740DC6BE574964AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a1:89:5c:92:2a:86:7d:4d:f4:c1:14:fa:3c: 8c:47:79:0e:cb:fb:59:e9:14:3e:8c:86:a7:ab:cb: 4e:1f:50:a8:63:e0:13:25:cb:3a:21:b7:ff:41:6d: 2f:c8:61:83:48:33:26:d4:6b:fd:d6:3a:c6:96:62: 93:b8:f5:f6:a9:48:e4:b3:0b:60:40:24:e8:cf:bb: 58:68:08:7d:43:e8:f9:16:89:4e:0e:74:d9:fc:84: b1:1a:11:a1:13:d3:4e:a7:0b:6a:fe:2f:83:7f:e6: f7:f9:9c:79:40:d4:3c:4c:94:e8:91:a6:e5:c5:6f: 41:18:c3:51:23:0d:42:60:c3:92:22:32:ff:cb:fe: b4:a7:85:26:a6:ef:80:15:2c:0a:dc:0a:38:0c:6d: 7d:83:d9:80:7f:10:e2:51:91:75:a9:5b:77:45:ac: 79:5f:a1:b5:40:6b:bb:78:b4:0a:2f:e2:54:7d:d0: 1e:61:c6:36:10:35:68:89:b2:b8:76:ed:88:2d:a3: ae:cf:f2:ba:b7:1d:c0:cf:42:f6:b4:3a:28:cf:3c: c8:5a:c8:16:26:69:f2:21:c8:8f:fb:5b:28:16:cd: 04:b0:34:e6:c3:31:8a:1b:8c:16:2a:a9:45:87:45: 28:7f:8c:6c:87:54:cd:79:4f:08:b9:f8:15:09:b6: 63:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F8:53:91:84:F8:E7:3E:82:A9:BF:99:74:0D:C6:BE:57:49:64:AB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210667.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5100::/40 2a0a:6040:6100::/40 2a0a:6040:7100::/40 Signature Algorithm: sha256WithRSAEncryption a9:71:6f:06:0c:e1:3e:c4:ae:0e:fd:d6:5a:3f:4f:2b:a4:ca: 88:1a:dc:14:ab:b1:9a:06:9d:9c:02:a0:0a:b7:6b:d2:76:0a: b4:86:d9:aa:4a:0e:a7:e8:38:82:80:4f:55:b8:fb:64:ec:92: b2:aa:4b:8a:13:db:cf:11:0c:c8:c8:6c:fd:5f:ba:b5:40:3e: 6e:67:4c:20:9d:2c:b3:78:8b:a5:df:f1:37:27:0f:ed:f8:8c: 1d:5c:f8:04:bd:95:41:ce:69:13:66:77:9f:31:f9:df:df:38: 8b:1e:09:91:cf:08:30:76:dc:a9:fa:bc:8e:f0:b2:e3:dd:77: 6e:56:c9:45:9b:4d:a8:ab:40:2b:ca:cc:c4:60:df:59:7c:3e: e3:28:57:cf:f4:b6:5a:1b:07:14:7c:44:c0:6e:78:2e:9f:86: 62:89:99:9e:2b:26:18:07:7a:56:ee:9c:37:fd:04:c9:bd:bc: 18:7f:ad:03:8a:ca:1a:b7:52:75:b5:61:df:d8:43:bd:c0:1e: c4:ec:e2:8b:b1:7f:94:fa:50:52:03:22:1a:98:53:72:1c:3f: 7e:e7:30:60:31:bb:48:f2:e5:a8:0d:ea:5f:40:16:7b:40:f0: 3f:14:95:24:85:29:5e:93:b7:31:70:65:9e:ed:0e:08:bb:7d: f8:95:8d:78 -----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIUOH46q8rDeKETXG9Vf0t2N5a5JG0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKDBERjg1MzkxODRGOEU3M0U4MkE5QkY5OTc0MERDNkJFNTc0OTY0QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1oYlckiqGfU30wRT6PIxHeQ7L +1npFD6Mhqery04fUKhj4BMlyzoht/9BbS/IYYNIMybUa/3WOsaWYpO49fapSOSz C2BAJOjPu1hoCH1D6PkWiU4OdNn8hLEaEaET006nC2r+L4N/5vf5nHlA1DxMlOiR puXFb0EYw1EjDUJgw5IiMv/L/rSnhSam74AVLArcCjgMbX2D2YB/EOJRkXWpW3dF rHlfobVAa7t4tAov4lR90B5hxjYQNWiJsrh27Ygto67P8rq3HcDPQva0OijPPMha yBYmafIhyI/7WygWzQSwNObDMYobjBYqqUWHRSh/jGyHVM15Twi5+BUJtmP9AgMB AAGjggIEMIICADAdBgNVHQ4EFgQUDfhTkYT45z6Cqb+ZdA3GvldJZKswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNjY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAAjAYAwYAKgpgQFEDBgAqCmBAYQMGACoKYEBxMA0GCSqG SIb3DQEBCwUAA4IBAQCpcW8GDOE+xK4O/dZaP08rpMqIGtwUq7GaBp2cAqAKt2vS dgq0htmqSg6n6DiCgE9VuPtk7JKyqkuKE9vPEQzIyGz9X7q1QD5uZ0wgnSyzeIul 3/E3Jw/t+IwdXPgEvZVBzmkTZnefMfnf3ziLHgmRzwgwdtyp+ryO8LLj3XduVslF m02oq0AryszEYN9ZfD7jKFfP9LZaGwcUfETAbngun4ZiiZmeKyYYB3pW7pw3/QTJ vbwYf60Disoat1J1tWHf2EO9wB7E7OKLsX+U+lBSAyIamFNyHD9+5zBgMbtI8uWo DepfQBZ7QPA/FJUkhSlek7cxcGWe7Q4Iu334lY14 -----END CERTIFICATE-----Generated at Sat Jul 5 06:09:48 2025 by rpki-client