$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211233.roa File: AS211233.roa (raw, json) Hash identifier: OtjT61K9W4b+E9tOXJZgNeE9TMJV1iT48n1T1ub/D1U= Subject key identifier: 6B:D5:D3:91:32:28:F0:0F:D4:EF:6F:DF:00:6F:53:AC:9E:C6:51:2D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 28D9FB8E7EEFAAEC5A5F6A24DC3375C7B6CDED82 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211233.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 211233 IP address blocks: 2a0a:6040:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d9:fb:8e:7e:ef:aa:ec:5a:5f:6a:24:dc:33:75:c7:b6:cd:ed:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=6BD5D3913228F00FD4EF6FDF006F53AC9EC6512D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cd:40:d6:d6:56:0f:92:95:49:f3:76:ae:71: aa:38:be:83:8b:f4:6e:14:8b:db:58:a0:a8:71:12: ea:79:60:5b:a2:e5:4a:a3:42:f5:8d:cb:25:d0:ff: fa:a1:17:a5:3d:b4:b6:2c:79:86:ae:5d:5e:7c:56: 86:fb:69:f8:49:0a:e8:7c:f0:21:ef:c3:26:d4:38: f6:48:f9:79:7d:d0:d4:f9:34:96:59:5e:03:4d:62: 5b:ca:d5:72:f6:e4:c5:37:9b:df:1d:49:30:9b:e8: c2:f3:dc:b1:ef:7e:b9:26:46:6d:0c:1c:3a:1b:1d: 63:27:1e:d2:3a:50:5f:a3:a1:ba:9c:b7:7f:69:96: 29:27:b7:fa:29:c2:65:e9:1b:91:00:e3:04:90:6d: 6b:9e:6c:e2:6f:49:db:de:38:8a:77:af:d0:75:0c: 6f:2f:21:8c:72:0f:76:5a:33:e4:c6:56:c8:74:45: 2a:0a:e7:ce:fa:ca:ee:62:97:bc:78:cd:55:1e:76: 64:ab:ee:d4:b0:d4:23:d5:91:3b:99:41:04:0a:81: ba:60:b5:68:13:5a:4b:76:2f:ab:b5:17:31:93:26: 93:5f:d8:9e:b6:87:a3:51:45:34:c2:58:54:ad:a1: a5:d5:90:7c:40:a6:55:58:2c:00:e8:f4:3d:99:5f: df:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D5:D3:91:32:28:F0:0F:D4:EF:6F:DF:00:6F:53:AC:9E:C6:51:2D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 7a:7f:32:7f:a5:07:30:0b:85:5f:4c:df:e0:6c:b4:55:cb:15: d3:b5:c2:60:f3:28:a2:ae:0c:43:09:2b:5c:bc:a7:c6:a3:b3: 8e:a2:6b:ad:25:5f:90:13:81:e5:29:48:5b:cc:69:73:e4:33: 7d:93:d0:6d:61:60:71:56:dc:54:87:c2:3a:7a:3e:99:ee:2f: cd:f9:95:9a:78:9a:c3:8e:1f:ec:4a:3e:9e:3d:f1:54:8a:96: 3e:7a:f0:6e:d8:66:8e:19:01:a9:c7:05:71:bf:28:bf:93:ea: 6f:ef:f3:f1:a8:99:94:c2:21:72:9d:59:e5:14:56:69:cf:82: 9f:01:b8:8b:e6:60:05:3a:b2:53:30:21:b8:14:61:23:3c:3d: fa:12:e9:8f:4f:e1:f3:d4:c9:f2:60:c8:59:5f:50:b5:36:ee: ad:8f:35:76:80:1b:b5:9e:53:14:1a:d2:67:e6:78:7e:6a:18: f4:b0:65:47:a8:50:b7:3c:94:00:36:09:a7:26:27:bb:f8:11: 0a:ee:5e:c2:fb:53:a4:23:55:f9:16:78:70:31:f3:38:3f:e2: 13:ee:b5:3d:55:bc:25:1b:19:80:da:ff:5c:1a:1c:a5:30:ba: af:f8:a7:8c:14:53:1f:82:36:9f:e7:de:41:3c:d9:f7:50:5d: da:cd:76:7e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKNn7jn7vquxaX2ok3DN1x7bN7YIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKDZCRDVEMzkxMzIyOEYwMEZENEVGNkZERjAwNkY1M0FDOUVDNjUxMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXzUDW1lYPkpVJ83aucao4voOL 9G4Ui9tYoKhxEup5YFui5UqjQvWNyyXQ//qhF6U9tLYseYauXV58Vob7afhJCuh8 8CHvwybUOPZI+Xl90NT5NJZZXgNNYlvK1XL25MU3m98dSTCb6MLz3LHvfrkmRm0M HDobHWMnHtI6UF+jobqct39pliknt/opwmXpG5EA4wSQbWuebOJvSdveOIp3r9B1 DG8vIYxyD3ZaM+TGVsh0RSoK5876yu5il7x4zVUedmSr7tSw1CPVkTuZQQQKgbpg tWgTWkt2L6u1FzGTJpNf2J62h6NRRTTCWFStoaXVkHxAplVYLADo9D2ZX9/5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUa9XTkTIo8A/U72/fAG9TrJ7GUS0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQI4wDQYJKoZIhvcNAQELBQADggEBAHp/ Mn+lBzALhV9M3+BstFXLFdO1wmDzKKKuDEMJK1y8p8ajs46ia60lX5ATgeUpSFvM aXPkM32T0G1hYHFW3FSHwjp6PpnuL835lZp4msOOH+xKPp498VSKlj568G7YZo4Z AanHBXG/KL+T6m/v8/GomZTCIXKdWeUUVmnPgp8BuIvmYAU6slMwIbgUYSM8PfoS 6Y9P4fPUyfJgyFlfULU27q2PNXaAG7WeUxQa0mfmeH5qGPSwZUeoULc8lAA2Cacm J7v4EQruXsL7U6QjVfkWeHAx8zg/4hPutT1VvCUbGYDa/1waHKUwuq/4p4wUUx+C Np/n3kE82fdQXdrNdn4= -----END CERTIFICATE-----Generated at Sat Jul 5 04:20:08 2025 by rpki-client