$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211036.roa File: AS211036.roa (raw, json) Hash identifier: YeP6J4IYaztQ2ify5TV78avbkm99AhZ7tLgCqDSLXUE= Subject key identifier: 73:9C:A9:25:52:9D:67:47:52:DE:31:FA:AF:15:EF:3D:5E:A2:68:E7 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7B664E4D72A1AA1028BAF4F11F98C817435A0165 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211036.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 211036 IP address blocks: 2a05:dfc1:1a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:66:4e:4d:72:a1:aa:10:28:ba:f4:f1:1f:98:c8:17:43:5a:01:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=739CA925529D674752DE31FAAF15EF3D5EA268E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d2:d7:1c:94:bd:99:29:07:83:40:11:5c:42: f7:19:e6:4d:b1:91:6a:38:7b:ea:07:5e:b4:a6:06: 74:c8:d4:83:ec:5b:83:91:82:25:2c:07:b0:f8:89: 20:77:e6:36:ec:79:d5:c0:74:aa:d3:18:fc:eb:9f: 6f:81:ca:72:9e:ab:d4:16:18:26:86:47:22:34:c3: 0e:0c:27:d6:84:29:5d:7c:52:67:99:58:73:eb:69: f3:ca:b7:75:84:72:c7:75:57:8c:f4:30:0c:4c:c7: 91:fc:60:8d:7e:c6:7d:f1:81:fd:b4:22:7d:ef:06: 08:e6:6c:3b:ed:ce:8b:ce:0d:72:fa:bc:a4:43:79: 36:8e:d8:cd:d2:10:ce:15:00:e3:42:2d:cf:fb:3c: b8:f9:6a:c0:d1:02:3c:a7:72:31:3b:e7:1a:c8:6a: 4a:ae:2f:33:95:7c:0e:8f:ef:0b:8d:cf:fb:69:79: e2:a6:ef:2a:76:90:8d:be:36:a4:0c:80:13:2e:6a: 58:7d:04:3c:db:94:1e:f7:65:f9:f6:3a:40:09:0d: 63:67:07:45:99:04:1f:cd:cd:3a:a7:84:59:2d:b5: 8f:84:0b:f6:a9:26:62:59:ca:8d:b2:5e:3e:1c:41: b9:a9:c7:7f:9c:1f:6e:51:55:d1:a3:6f:f3:0f:0d: 36:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:9C:A9:25:52:9D:67:47:52:DE:31:FA:AF:15:EF:3D:5E:A2:68:E7 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1a00::/40 Signature Algorithm: sha256WithRSAEncryption 64:72:b7:72:38:f4:ae:03:26:ce:2a:f9:9c:a8:3b:e3:4b:b5: 1a:77:53:a1:58:1c:3b:36:71:14:20:c1:67:a0:19:12:21:21: c4:58:77:2b:60:1c:25:35:e3:08:4d:65:cc:e4:4b:8c:57:19: db:9e:ca:1a:dc:5c:33:86:5d:a0:2a:48:77:b4:71:dd:df:f5: 86:57:82:47:5f:7b:c2:1f:ff:cd:44:b4:35:24:14:45:29:ef: 23:da:98:e2:31:3a:81:f5:b4:4a:ac:af:26:27:ed:fe:aa:b6: b8:37:77:4a:85:bb:47:92:7f:53:42:0b:02:b5:55:90:a5:17: 5b:74:5d:43:19:1e:d7:1b:4a:da:ad:de:3f:c5:c6:19:67:d5: 47:57:a4:e8:6e:54:1e:e2:a6:59:03:74:94:d9:7c:e2:94:90: 51:de:c4:18:5d:56:d5:62:b9:7f:e7:95:20:9b:7d:9f:7e:0b: 08:f0:5c:65:e8:c7:1d:3e:1a:20:be:eb:21:3e:fd:13:91:e7: d1:b4:d0:db:f3:7e:5e:1a:b4:f0:96:06:d8:e0:27:a0:1a:0b: 01:cf:8f:02:ba:3d:89:40:89:03:e5:3b:50:25:71:0e:bd:1f: 30:c9:3a:76:b9:e4:8e:d3:1c:3e:83:f4:2b:a3:3f:3d:98:ac: f0:9f:0f:c3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUe2ZOTXKhqhAouvTxH5jIF0NaAWUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKDczOUNBOTI1NTI5RDY3NDc1MkRFMzFGQUFGMTVFRjNENUVBMjY4RTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC40tcclL2ZKQeDQBFcQvcZ5k2x kWo4e+oHXrSmBnTI1IPsW4ORgiUsB7D4iSB35jbsedXAdKrTGPzrn2+BynKeq9QW GCaGRyI0ww4MJ9aEKV18UmeZWHPrafPKt3WEcsd1V4z0MAxMx5H8YI1+xn3xgf20 In3vBgjmbDvtzovODXL6vKRDeTaO2M3SEM4VAONCLc/7PLj5asDRAjyncjE75xrI akquLzOVfA6P7wuNz/tpeeKm7yp2kI2+NqQMgBMualh9BDzblB73Zfn2OkAJDWNn B0WZBB/NzTqnhFkttY+EC/apJmJZyo2yXj4cQbmpx3+cH25RVdGjb/MPDTYLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUc5ypJVKdZ0dS3jH6rxXvPV6iaOcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRowDQYJKoZIhvcNAQELBQADggEBAGRy t3I49K4DJs4q+ZyoO+NLtRp3U6FYHDs2cRQgwWegGRIhIcRYdytgHCU14whNZczk S4xXGdueyhrcXDOGXaAqSHe0cd3f9YZXgkdfe8If/81EtDUkFEUp7yPamOIxOoH1 tEqsryYn7f6qtrg3d0qFu0eSf1NCCwK1VZClF1t0XUMZHtcbStqt3j/Fxhln1UdX pOhuVB7iplkDdJTZfOKUkFHexBhdVtViuX/nlSCbfZ9+CwjwXGXoxx0+GiC+6yE+ /ROR59G00Nvzfl4atPCWBtjgJ6AaCwHPjwK6PYlAiQPlO1AlcQ69HzDJOna55I7T HD6D9CujPz2YrPCfD8M= -----END CERTIFICATE-----Generated at Sat Jul 5 03:40:32 2025 by rpki-client