$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211562.roa File: AS211562.roa (raw, json) Hash identifier: xs1NQm018PPRs7dxfWIrU/eaC9acMOB1GUm3eHXfL58= Subject key identifier: AB:75:73:43:09:C6:92:15:B0:23:EC:4A:9E:A2:29:11:65:CA:4D:E9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4630286AAC1AEB1563330451A1A9B2C8297A8A64 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211562.roa Signing time: Fri 04 Jul 2025 06:52:59 +0000 ROA not before: Fri 04 Jul 2025 06:47:59 +0000 ROA not after: Fri 03 Jul 2026 06:52:59 +0000 asID: 211562 IP address blocks: 2a06:9f81:3500::/40 maxlen: 48 2a06:9f81:3600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:30:28:6a:ac:1a:eb:15:63:33:04:51:a1:a9:b2:c8:29:7a:8a:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:59 2025 GMT Not After : Jul 3 06:52:59 2026 GMT Subject: CN=AB75734309C69215B023EC4A9EA2291165CA4DE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:db:40:96:1b:08:5a:1d:4f:f1:2b:a0:e8:b2: a7:b7:32:85:69:1f:39:99:a3:96:81:1b:5a:ea:e4: 6d:43:70:88:13:b4:95:4d:05:3e:57:5f:00:21:86: 20:d5:e4:96:04:96:c6:4f:44:fe:cc:86:b3:2a:28: 3b:7e:b1:51:1d:68:f1:6f:e7:02:92:ee:f1:6e:3c: ca:e4:86:0c:e6:be:a9:fd:f0:44:40:66:c0:a0:fd: 7e:c6:55:6a:c4:60:62:5e:fd:2e:5f:48:72:a0:e5: 53:80:02:0f:f9:32:23:78:eb:2d:07:22:db:65:35: 1b:f3:0a:e5:ac:f6:09:4e:81:ba:da:f0:79:90:6f: f1:d4:d5:fb:00:7c:d0:2d:06:ed:1f:8f:7e:e8:9e: 77:f1:7a:9b:b0:de:a9:bf:11:80:b3:d5:02:09:49: 25:cc:60:df:4e:e0:a0:2d:e5:d7:73:6d:1c:35:57: 92:bc:27:03:4f:84:b2:a7:a4:de:66:05:18:f5:6e: 21:e0:20:1f:b8:2d:1b:7a:d7:5c:94:80:3b:02:96: 6f:77:fb:a1:72:be:60:e8:e5:01:a7:b8:c1:a9:8d: ad:d7:c0:61:8a:78:cd:73:1e:f5:6e:21:f8:62:62: 11:91:59:56:c5:32:c0:51:68:86:37:df:09:00:70: a2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:75:73:43:09:C6:92:15:B0:23:EC:4A:9E:A2:29:11:65:CA:4D:E9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211562.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3500::-2a06:9f81:36ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption e9:db:70:64:43:b3:c9:0b:97:d1:f6:8b:3e:a5:de:60:8b:03: f7:db:0c:55:b4:40:ae:ea:92:54:b1:1d:89:03:02:5e:83:df: 61:4a:c6:48:a5:3e:be:d2:70:f7:a5:6a:a6:a7:25:c9:a6:d8: d4:07:46:ab:91:32:b7:62:df:ca:8f:b3:28:98:21:c0:61:b2: 3b:9b:b9:c8:77:34:40:13:ab:74:03:ab:8f:43:21:1d:43:d8: 7d:29:48:eb:e8:d8:1b:20:22:7f:72:24:4f:68:ff:4f:68:94: 62:b4:a3:09:03:a6:de:2b:47:1b:e8:42:ac:44:73:30:05:b4: 3a:14:02:b2:d8:b5:97:69:24:36:a3:1e:33:88:ad:9e:7a:73: eb:91:ca:db:e9:54:54:20:a8:45:23:52:cb:70:f6:0d:40:7a: dd:4f:82:9c:e0:d2:60:06:f3:8d:81:7e:dc:80:26:2a:94:e4: b6:67:0a:1f:82:35:4c:86:ad:41:2b:cf:46:5d:99:5a:3e:8e: 64:5f:0e:8a:74:ed:c2:39:78:d5:a0:a7:47:39:52:dc:93:39: 4a:03:30:cd:d0:0a:0b:0c:1c:6e:cd:d1:0b:ae:43:09:df:29: 74:07:a1:7c:43:01:33:99:a4:aa:7c:0f:d1:a5:37:cc:f4:db: b2:1d:f4:22 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIURjAoaqwa6xVjMwRRoamyyCl6imQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTlaFw0yNjA3MDMwNjUyNTlaMDMxMTAvBgNV BAMTKEFCNzU3MzQzMDlDNjkyMTVCMDIzRUM0QTlFQTIyOTExNjVDQTRERTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs20CWGwhaHU/xK6Dosqe3MoVp HzmZo5aBG1rq5G1DcIgTtJVNBT5XXwAhhiDV5JYElsZPRP7MhrMqKDt+sVEdaPFv 5wKS7vFuPMrkhgzmvqn98ERAZsCg/X7GVWrEYGJe/S5fSHKg5VOAAg/5MiN46y0H IttlNRvzCuWs9glOgbra8HmQb/HU1fsAfNAtBu0fj37onnfxepuw3qm/EYCz1QIJ SSXMYN9O4KAt5ddzbRw1V5K8JwNPhLKnpN5mBRj1biHgIB+4LRt611yUgDsClm93 +6FyvmDo5QGnuMGpja3XwGGKeM1zHvVuIfhiYhGRWVbFMsBRaIY33wkAcKJPAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUq3VzQwnGkhWwI+xKnqIpEWXKTekwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASMBADBgAqBp+BNQMGACoGn4E2MA0GCSqGSIb3DQEB CwUAA4IBAQDp23BkQ7PJC5fR9os+pd5giwP32wxVtECu6pJUsR2JAwJeg99hSsZI pT6+0nD3pWqmpyXJptjUB0arkTK3Yt/Kj7MomCHAYbI7m7nIdzRAE6t0A6uPQyEd Q9h9KUjr6NgbICJ/ciRPaP9PaJRitKMJA6beK0cb6EKsRHMwBbQ6FAKy2LWXaSQ2 ox4ziK2eenPrkcrb6VRUIKhFI1LLcPYNQHrdT4Kc4NJgBvONgX7cgCYqlOS2Zwof gjVMhq1BK89GXZlaPo5kXw6KdO3COXjVoKdHOVLckzlKAzDN0AoLDBxuzdELrkMJ 3yl0B6F8QwEzmaSqfA/RpTfM9NuyHfQi -----END CERTIFICATE-----Generated at Sat Jul 5 03:53:42 2025 by rpki-client