$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211576.roa File: AS211576.roa (raw, json) Hash identifier: e9o/g8QmXqt17Z2vUVTx256zqmhhnSvbbyEpyfPK8Ls= Subject key identifier: 3F:6E:05:1C:82:4A:A3:A7:FB:02:A9:6F:B2:EA:74:AE:10:BF:B7:C4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 209A53BD517456415A5266F57672E685D38FEFF8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211576.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 211576 IP address blocks: 2a0a:6040:4500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:9a:53:bd:51:74:56:41:5a:52:66:f5:76:72:e6:85:d3:8f:ef:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=3F6E051C824AA3A7FB02A96FB2EA74AE10BFB7C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:4a:7f:97:01:e2:5a:ce:86:46:3e:4a:8e: 72:50:90:39:cb:1c:ec:84:43:36:69:1f:f7:f9:9c: 65:2f:89:ae:08:8d:bc:7f:6a:9e:83:46:ad:1d:77: 06:e9:9a:d5:26:13:9c:7a:4a:54:ee:f5:a8:e9:16: 81:68:28:84:a9:4b:25:39:08:d4:fa:26:46:35:0f: fb:c9:ba:a4:f7:68:95:77:b3:ef:3f:65:98:9b:2e: 16:45:2b:6f:f9:79:80:1f:c8:e7:c2:7e:a3:3d:e4: 56:11:47:e6:d6:18:9b:dd:fc:f5:c2:39:c8:49:48: 71:5a:e7:4f:d3:a7:f6:6d:c8:d1:80:79:6c:5b:55: 00:2c:00:39:d1:d6:92:51:48:ec:65:ca:0d:2f:e6: 36:2d:73:33:31:9d:a9:42:e9:5c:3f:7d:9a:2c:dd: be:de:d7:4d:1d:45:0f:1d:ee:a1:9a:94:02:ab:ee: a7:50:bc:64:36:6d:e0:8c:01:ae:cf:f1:7b:aa:2f: 6f:b7:48:52:5c:ab:66:11:8d:27:74:9e:24:b2:f9: 78:75:19:ac:e6:60:b1:d3:31:21:99:24:7b:d3:33: 88:ed:26:db:2f:42:44:71:05:40:46:dd:91:e3:7b: 07:08:49:ae:42:05:7e:77:14:08:4f:49:ed:e2:57: 6d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:6E:05:1C:82:4A:A3:A7:FB:02:A9:6F:B2:EA:74:AE:10:BF:B7:C4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211576.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4500::/40 Signature Algorithm: sha256WithRSAEncryption 9c:39:89:f2:80:02:25:90:04:cf:39:94:c5:fb:70:d8:ad:be: 01:47:2f:29:bb:36:03:94:54:e3:98:2b:f7:03:62:08:35:5a: 53:03:28:aa:b5:06:fc:cb:87:92:70:a8:b0:c7:9c:4a:b4:2c: 6e:99:38:92:bf:d6:b7:1e:c4:8c:53:dd:72:b6:09:d2:7c:1b: 18:83:dd:4e:00:6f:bc:20:49:be:74:e3:61:ad:be:bc:ce:cf: 07:1a:b9:b2:46:9d:da:73:82:b8:05:f8:44:28:94:f5:f4:cb: 0c:93:8a:b4:88:87:f3:6d:91:43:78:1b:27:79:dd:1c:21:2f: 12:3e:7b:1d:fd:53:0e:eb:f4:6b:26:15:38:55:08:21:d6:8d: eb:eb:a6:1d:62:56:6c:2c:13:e5:01:24:c8:d4:85:41:4b:f7: 0b:29:d3:ee:d7:16:9b:57:91:a7:8e:da:61:81:68:dc:b2:52: 4c:0b:dc:d3:aa:d5:69:86:08:87:80:31:5b:83:3e:af:a0:2b: 58:97:12:9b:0a:b0:fa:a6:48:50:81:1d:40:13:32:2d:67:b0: ef:c8:77:65:6a:66:5f:0b:3d:73:94:2f:c2:f5:e6:5d:c5:ea: 31:e1:ba:71:4e:72:2d:4e:cd:74:79:69:fa:5e:17:97:b0:39: 91:d3:6c:a5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIJpTvVF0VkFaUmb1dnLmhdOP7/gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKDNGNkUwNTFDODI0QUEzQTdGQjAyQTk2RkIyRUE3NEFFMTBCRkI3QzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDF3Ep/lwHiWs6GRj5KjnJQkDnL HOyEQzZpH/f5nGUvia4Ijbx/ap6DRq0ddwbpmtUmE5x6SlTu9ajpFoFoKISpSyU5 CNT6JkY1D/vJuqT3aJV3s+8/ZZibLhZFK2/5eYAfyOfCfqM95FYRR+bWGJvd/PXC OchJSHFa50/Tp/ZtyNGAeWxbVQAsADnR1pJRSOxlyg0v5jYtczMxnalC6Vw/fZos 3b7e100dRQ8d7qGalAKr7qdQvGQ2beCMAa7P8XuqL2+3SFJcq2YRjSd0niSy+Xh1 GazmYLHTMSGZJHvTM4jtJtsvQkRxBUBG3ZHjewcISa5CBX53FAhPSe3iV22NAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUP24FHIJKo6f7Aqlvsup0rhC/t8QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNTc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEUwDQYJKoZIhvcNAQELBQADggEBAJw5 ifKAAiWQBM85lMX7cNitvgFHLym7NgOUVOOYK/cDYgg1WlMDKKq1BvzLh5JwqLDH nEq0LG6ZOJK/1rcexIxT3XK2CdJ8GxiD3U4Ab7wgSb5042GtvrzOzwcaubJGndpz grgF+EQolPX0ywyTirSIh/NtkUN4Gyd53RwhLxI+ex39Uw7r9GsmFThVCCHWjevr ph1iVmwsE+UBJMjUhUFL9wsp0+7XFptXkaeO2mGBaNyyUkwL3NOq1WmGCIeAMVuD Pq+gK1iXEpsKsPqmSFCBHUATMi1nsO/Id2VqZl8LPXOUL8L15l3F6jHhunFOci1O zXR5afpeF5ewOZHTbKU= -----END CERTIFICATE-----Generated at Sat Jul 5 03:49:02 2025 by rpki-client