$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211380.roa File: AS211380.roa (raw, json) Hash identifier: g4kfpFSVjiUiQgTcT0cMzVkfY0e+6pFwsEjQX1hzblA= Subject key identifier: 44:1D:9B:1C:F1:DD:FF:D1:9F:99:1E:04:32:12:76:AC:32:73:61:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1B613BF3FFCAFCFD68B0B694771268551A84C4B3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211380.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 211380 IP address blocks: 2a0a:6040:b200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:61:3b:f3:ff:ca:fc:fd:68:b0:b6:94:77:12:68:55:1a:84:c4:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=441D9B1CF1DDFFD19F991E04321276AC32736193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:38:22:46:64:08:b1:f5:6f:ee:fd:60:f2:7c: 9e:b7:93:b9:e0:6d:bb:45:1f:24:66:b4:aa:2e:2f: b8:c1:b6:1b:3a:f9:f5:07:f4:bb:22:98:64:cd:c2: 5e:18:1c:3c:75:c3:8a:9e:9b:21:57:4d:01:c8:cc: ba:9b:b1:21:f9:bd:0b:83:a6:68:9c:55:1b:7f:8c: 2f:7a:d3:a9:07:ed:4c:3f:b6:01:b5:84:ac:d7:19: 2f:e7:33:fe:2b:31:4a:35:23:46:5e:87:74:85:a7: 8d:b4:14:0a:18:09:ed:95:b2:7f:d0:f2:e9:bb:95: 37:18:90:11:69:01:69:38:c6:cb:c7:ad:3d:c7:07: 1f:1f:9a:3e:37:52:e2:20:de:fb:55:cf:a5:46:1f: 69:94:71:ed:93:fe:e2:f8:eb:cf:d5:fe:a6:aa:e2: 87:08:f7:43:5e:c2:af:5f:73:1d:e9:46:7d:31:8b: a7:14:52:be:b9:99:de:c4:0f:af:45:c2:59:e3:31: fd:82:b5:97:e6:5e:aa:18:d9:54:9f:ac:17:9a:c3: fc:b5:f7:26:6e:37:6b:a3:09:1a:6f:cb:ed:17:d1: f2:d0:50:e8:b4:fb:e8:23:c5:29:10:d8:5b:48:86: 04:7e:db:bb:71:db:6b:9d:42:d2:65:fc:0e:a5:c3: 9d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:1D:9B:1C:F1:DD:FF:D1:9F:99:1E:04:32:12:76:AC:32:73:61:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211380.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b200::/40 Signature Algorithm: sha256WithRSAEncryption 3c:e3:57:de:f4:7f:5d:02:40:11:30:b3:ef:9f:89:8b:6e:f2: 4b:8d:37:21:1e:e8:83:a6:7e:37:71:50:32:26:62:6f:e6:fd: b2:89:aa:53:d6:28:75:52:d0:0b:67:f4:17:a9:49:86:f4:2e: e2:de:0b:8d:96:99:b0:07:41:3e:3f:f1:f8:64:7c:27:cc:ab: e3:ff:5b:27:b3:d0:44:85:09:ca:92:f0:62:81:b7:2c:d1:e8: c3:4e:37:05:bd:69:b3:d2:5e:10:ef:34:b8:70:5f:f1:a9:29: 0b:cf:1f:9e:5a:85:a1:f5:3f:c4:d7:21:2e:57:a2:19:f8:33: 29:f0:d3:6d:83:b5:34:9e:3f:fd:b9:a9:8d:f7:b4:7b:80:83: 76:dc:5a:8e:7c:a5:bd:14:35:2a:71:d8:9f:e7:84:f1:86:7c: 67:eb:f8:bc:6f:60:6f:f7:b0:cc:ab:d4:3e:2b:24:be:74:a8: d4:1f:ad:c6:9f:78:06:0d:ba:61:15:29:05:8d:13:d6:ef:17: 36:b9:09:71:36:53:d0:d0:e9:bc:4a:e0:7c:64:d1:11:d8:68: 58:b8:ba:0c:90:8c:a7:dc:c5:93:47:57:b1:24:2d:4e:4e:d0: 11:9c:c6:8e:5f:8a:83:fc:ff:0f:f1:cb:14:3f:ee:25:30:0c: f4:5c:f1:90 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUG2E78//K/P1osLaUdxJoVRqExLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKDQ0MUQ5QjFDRjFEREZGRDE5Rjk5MUUwNDMyMTI3NkFDMzI3MzYxOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDROCJGZAix9W/u/WDyfJ63k7ng bbtFHyRmtKouL7jBths6+fUH9LsimGTNwl4YHDx1w4qemyFXTQHIzLqbsSH5vQuD pmicVRt/jC9606kH7Uw/tgG1hKzXGS/nM/4rMUo1I0Zeh3SFp420FAoYCe2Vsn/Q 8um7lTcYkBFpAWk4xsvHrT3HBx8fmj43UuIg3vtVz6VGH2mUce2T/uL468/V/qaq 4ocI90Newq9fcx3pRn0xi6cUUr65md7ED69FwlnjMf2CtZfmXqoY2VSfrBeaw/y1 9yZuN2ujCRpvy+0X0fLQUOi0++gjxSkQ2FtIhgR+27tx22udQtJl/A6lw53VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURB2bHPHd/9GfmR4EMhJ2rDJzYZMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExMzgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLIwDQYJKoZIhvcNAQELBQADggEBADzj V970f10CQBEws++fiYtu8kuNNyEe6IOmfjdxUDImYm/m/bKJqlPWKHVS0Atn9Bep SYb0LuLeC42WmbAHQT4/8fhkfCfMq+P/Wyez0ESFCcqS8GKBtyzR6MNONwW9abPS XhDvNLhwX/GpKQvPH55ahaH1P8TXIS5Xohn4Mynw022DtTSeP/25qY33tHuAg3bc Wo58pb0UNSpx2J/nhPGGfGfr+LxvYG/3sMyr1D4rJL50qNQfrcafeAYNumEVKQWN E9bvFza5CXE2U9DQ6bxK4Hxk0RHYaFi4ugyQjKfcxZNHV7EkLU5O0BGcxo5fioP8 /w/xyxQ/7iUwDPRc8ZA= -----END CERTIFICATE-----Generated at Sat Jul 5 03:44:53 2025 by rpki-client