$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211443.roa File: AS211443.roa (raw, json) Hash identifier: 0J0MuhuuHaWazVvEwTzyTGpzk6pUDM0YaaUeUN4O1vQ= Subject key identifier: 88:21:D2:0E:65:CE:07:A2:EE:B7:DE:B8:0E:6C:1B:A1:25:8B:C8:2A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 27255FD57CB646FF4F96E085287EEF508E3A675C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211443.roa Signing time: Fri 05 Jun 2026 07:12:25 +0000 ROA not before: Fri 05 Jun 2026 07:07:25 +0000 ROA not after: Fri 04 Jun 2027 07:12:25 +0000 asID: 211443 IP address blocks: 2a0a:6040:e200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 04:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:25:5f:d5:7c:b6:46:ff:4f:96:e0:85:28:7e:ef:50:8e:3a:67:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:25 2026 GMT Not After : Jun 4 07:12:25 2027 GMT Subject: CN=8821D20E65CE07A2EEB7DEB80E6C1BA1258BC82A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2f:37:9c:d5:eb:23:7c:b8:a7:22:ba:9a:4c: 59:65:19:1f:8a:46:7b:0d:70:12:1d:75:d5:1e:13: 0a:73:4f:f2:70:c5:10:8d:ef:80:07:5a:92:5c:47: 2e:bc:30:b5:c6:b9:66:d3:4e:b0:4b:d4:a5:bf:bc: 0f:d0:e0:78:b4:46:92:3b:c2:c5:7a:38:02:5b:80: 88:2c:c4:2d:cc:2b:3a:5e:01:f2:1b:a0:f5:4d:e6: fe:aa:21:d3:ef:fd:10:bd:75:c2:0a:e4:bd:f9:e9: 38:fa:48:a5:7b:47:ed:d9:01:bc:66:20:17:69:62: dc:6f:7e:41:f8:09:f6:0a:43:d5:19:d9:df:6d:82: 69:39:3b:3f:f7:90:f7:5a:9e:d0:4d:97:89:b6:f5: c0:1b:48:86:43:0a:55:ab:4b:7e:9b:dd:88:48:e5: ac:14:30:90:24:db:4a:12:2e:15:0f:78:e7:de:09: 46:f7:37:e0:ba:ea:42:25:66:8b:6b:98:80:e3:4c: 58:fc:2d:d1:aa:49:4c:5b:6d:dd:a0:a5:e0:00:c1: 40:cc:e9:72:c3:9a:36:3f:f8:78:63:24:53:80:fd: be:17:08:01:52:f4:d1:96:e1:d0:04:19:51:3a:fc: 2e:d2:f4:b1:83:c3:0d:97:da:1e:47:65:c9:ab:27: 06:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:21:D2:0E:65:CE:07:A2:EE:B7:DE:B8:0E:6C:1B:A1:25:8B:C8:2A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211443.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e200::/40 Signature Algorithm: sha256WithRSAEncryption 54:8e:12:00:30:67:3a:8c:cc:eb:76:86:db:71:e1:d3:16:0d: 83:be:0c:36:9b:fa:bd:00:fd:c5:76:46:d0:41:cf:98:00:4d: 07:bc:77:a4:80:9a:0d:21:22:5e:34:63:d1:b8:ba:42:d7:73: 96:da:f5:1f:ff:be:50:c8:7b:ba:86:ed:ba:9d:61:b0:18:0f: 31:d3:8c:c4:6a:56:57:f1:7e:14:db:b4:91:47:80:3b:db:14: e5:8f:62:9d:d4:32:ee:53:08:ac:d5:2b:1b:f0:b8:b9:9b:25: f3:bd:40:13:4e:b2:7d:ce:2d:cb:54:58:f7:3c:22:73:ee:d2: 1f:32:dc:0d:2f:0e:a6:69:5e:85:13:a8:3c:b2:02:91:82:21: 80:af:10:9c:05:d4:67:56:5b:26:14:1a:76:d3:72:b4:d6:b8: 6a:90:c3:03:98:ed:83:a5:66:eb:dd:4f:f9:7a:8d:60:48:e9: 63:6f:e1:02:0a:3d:e5:42:38:64:73:3a:3f:c6:3e:ba:62:75: 9c:47:02:48:a0:51:a1:34:2f:bb:77:ba:f2:7a:64:39:a5:82: 7c:ac:2d:c3:06:3f:cc:7a:fb:ae:c7:d1:a7:52:aa:f6:39:3f: 3c:74:bf:04:f7:14:4e:64:84:53:cb:6b:66:bc:19:8c:6a:2d: a8:8e:43:f8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJyVf1Xy2Rv9PluCFKH7vUI46Z1wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjVaFw0yNzA2MDQwNzEyMjVaMDMxMTAvBgNV BAMTKDg4MjFEMjBFNjVDRTA3QTJFRUI3REVCODBFNkMxQkExMjU4QkM4MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Lzec1esjfLinIrqaTFllGR+K RnsNcBIdddUeEwpzT/JwxRCN74AHWpJcRy68MLXGuWbTTrBL1KW/vA/Q4Hi0RpI7 wsV6OAJbgIgsxC3MKzpeAfIboPVN5v6qIdPv/RC9dcIK5L356Tj6SKV7R+3ZAbxm IBdpYtxvfkH4CfYKQ9UZ2d9tgmk5Oz/3kPdantBNl4m29cAbSIZDClWrS36b3YhI 5awUMJAk20oSLhUPeOfeCUb3N+C66kIlZotrmIDjTFj8LdGqSUxbbd2gpeAAwUDM 6XLDmjY/+HhjJFOA/b4XCAFS9NGW4dAEGVE6/C7S9LGDww2X2h5HZcmrJwaVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiCHSDmXOB6Lut964DmwboSWLyCowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNDQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOIwDQYJKoZIhvcNAQELBQADggEBAFSO EgAwZzqMzOt2httx4dMWDYO+DDab+r0A/cV2RtBBz5gATQe8d6SAmg0hIl40Y9G4 ukLXc5ba9R//vlDIe7qG7bqdYbAYDzHTjMRqVlfxfhTbtJFHgDvbFOWPYp3UMu5T CKzVKxvwuLmbJfO9QBNOsn3OLctUWPc8InPu0h8y3A0vDqZpXoUTqDyyApGCIYCv EJwF1GdWWyYUGnbTcrTWuGqQwwOY7YOlZuvdT/l6jWBI6WNv4QIKPeVCOGRzOj/G PrpidZxHAkigUaE0L7t3uvJ6ZDmlgnysLcMGP8x6+67H0adSqvY5Pzx0vwT3FE5k hFPLa2a8GYxqLaiOQ/g= -----END CERTIFICATE-----Generated at Sat Jun 6 12:25:26 2026 by rpki-client