$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211380.roa File: AS211380.roa (raw, json) Hash identifier: 4L0y6pwnntw7vtpk5v3Mw6AQk/O7PWJsA5TlCqbH5GM= Subject key identifier: 3D:BB:A1:A7:36:9A:60:50:43:21:5F:8A:27:BB:69:6B:E1:35:7B:5F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2530ECA2883E2F291E0B3FA93243DA773ACC32CB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211380.roa Signing time: Fri 05 Jun 2026 07:12:49 +0000 ROA not before: Fri 05 Jun 2026 07:07:49 +0000 ROA not after: Fri 04 Jun 2027 07:12:49 +0000 asID: 211380 IP address blocks: 2a0a:6040:b200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:30:ec:a2:88:3e:2f:29:1e:0b:3f:a9:32:43:da:77:3a:cc:32:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:49 2026 GMT Not After : Jun 4 07:12:49 2027 GMT Subject: CN=3DBBA1A7369A605043215F8A27BB696BE1357B5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:59:2b:ef:34:6a:13:bf:ed:c7:9a:41:f6:31: c8:68:d8:62:77:29:7f:95:12:20:c0:62:24:e7:57: c7:7b:78:b6:63:61:7e:b0:9e:0c:ef:3c:92:e3:3f: f0:7a:23:92:7e:19:96:7a:9e:73:43:e5:72:5b:3c: 5a:fa:a7:81:c8:04:6c:bf:ff:d6:9d:14:fe:d8:64: 25:7b:58:b4:16:4c:e8:f2:90:20:17:6d:57:11:0a: b6:f3:b0:7c:ba:e7:9d:e9:ee:3f:44:dd:b6:08:8f: 3d:4c:b6:90:4e:30:55:c5:50:8e:51:91:b4:7c:9d: c8:50:ac:b5:8e:db:c8:f0:27:c6:1f:b5:07:8b:70: 66:a9:49:db:3a:ea:f3:16:54:58:1a:1b:55:f5:fc: de:71:b0:64:d7:7d:27:e0:bd:47:e6:46:53:7e:e4: ea:59:2d:72:e8:6d:b8:89:63:d7:12:42:2e:83:50: b7:04:9e:27:2e:0c:a8:aa:ca:f8:d3:6a:7f:c6:f5: 64:df:2e:01:fc:39:87:9e:f2:87:50:9f:6f:62:d2: 45:48:17:a6:6e:5f:c4:04:3c:04:4a:ca:23:53:bd: b5:e5:60:73:44:36:7b:bc:60:ec:a8:bd:cd:a6:9f: 39:f1:0d:19:f2:fd:df:4d:a5:bb:18:de:d9:a5:61: 67:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BB:A1:A7:36:9A:60:50:43:21:5F:8A:27:BB:69:6B:E1:35:7B:5F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211380.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b200::/40 Signature Algorithm: sha256WithRSAEncryption 69:03:af:16:13:19:24:7c:0e:26:f0:c3:45:99:15:b8:fd:08: c7:6a:e2:e8:2a:cc:84:a8:c7:43:19:e4:21:05:66:5c:ef:0f: a2:42:69:4e:2d:0c:d7:fe:c9:17:08:d5:2b:46:37:b6:00:eb: 1d:6d:69:78:4d:48:d0:00:e3:83:9f:ce:79:84:25:95:f4:db: b3:03:49:a6:bf:61:e4:c0:8b:d3:b8:35:aa:b1:b3:a1:5c:16: 3d:e8:9d:c1:d8:1c:07:c1:5c:93:08:24:33:9f:e8:1e:43:dc: d0:c4:ba:cf:52:82:81:a2:d9:7e:5c:e4:f9:fe:a6:a6:74:d8: 6a:2d:47:5f:ec:88:f6:2b:63:db:03:6d:d5:bb:1d:ab:a8:ee: 51:85:1a:50:79:c5:81:67:8a:22:d4:cb:73:44:d5:79:60:50: 28:80:64:f7:35:8a:ee:c5:d6:98:8c:95:e6:c2:c0:e5:34:d4: 90:e6:31:4a:0e:d6:21:89:8b:51:5d:59:5c:45:a5:fc:10:a1: 83:9c:36:b3:cf:2a:3a:de:4a:1e:fc:99:bb:31:dd:65:cb:68: cf:f2:9d:52:c0:c9:6c:36:ab:e4:38:7b:16:32:16:95:f4:cf: 13:d9:16:3c:ca:28:aa:d3:ae:04:86:27:07:3d:b3:9f:ac:3a: 03:69:ad:8f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJTDsoog+LykeCz+pMkPadzrMMsswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDlaFw0yNzA2MDQwNzEyNDlaMDMxMTAvBgNV BAMTKDNEQkJBMUE3MzY5QTYwNTA0MzIxNUY4QTI3QkI2OTZCRTEzNTdCNUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRWSvvNGoTv+3HmkH2Mcho2GJ3 KX+VEiDAYiTnV8d7eLZjYX6wngzvPJLjP/B6I5J+GZZ6nnND5XJbPFr6p4HIBGy/ /9adFP7YZCV7WLQWTOjykCAXbVcRCrbzsHy6553p7j9E3bYIjz1MtpBOMFXFUI5R kbR8nchQrLWO28jwJ8YftQeLcGapSds66vMWVFgaG1X1/N5xsGTXfSfgvUfmRlN+ 5OpZLXLobbiJY9cSQi6DULcEnicuDKiqyvjTan/G9WTfLgH8OYee8odQn29i0kVI F6ZuX8QEPARKyiNTvbXlYHNENnu8YOyovc2mnznxDRny/d9NpbsY3tmlYWdXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPbuhpzaaYFBDIV+KJ7tpa+E1e18wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExMzgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLIwDQYJKoZIhvcNAQELBQADggEBAGkD rxYTGSR8Dibww0WZFbj9CMdq4ugqzISox0MZ5CEFZlzvD6JCaU4tDNf+yRcI1StG N7YA6x1taXhNSNAA44OfznmEJZX027MDSaa/YeTAi9O4Naqxs6FcFj3oncHYHAfB XJMIJDOf6B5D3NDEus9SgoGi2X5c5Pn+pqZ02GotR1/siPYrY9sDbdW7Hauo7lGF GlB5xYFniiLUy3NE1XlgUCiAZPc1iu7F1piMlebCwOU01JDmMUoO1iGJi1FdWVxF pfwQoYOcNrPPKjreSh78mbsx3WXLaM/ynVLAyWw2q+Q4exYyFpX0zxPZFjzKKKrT rgSGJwc9s5+sOgNprY8= -----END CERTIFICATE-----Generated at Thu Jun 11 21:38:29 2026 by rpki-client