$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211679.roa File: AS211679.roa (raw, json) Hash identifier: h/mhktiJvGHAFwZxhKRBKVThc9r5ZbFqKlp3GwWw1tk= Subject key identifier: D3:A3:A6:9B:7C:AF:71:20:9E:E2:9B:EA:16:AC:08:DE:22:61:E8:B4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 45A2B3C7DC49356EE018815C6938405F7BA7B0E9 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211679.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 211679 IP address blocks: 2a0a:6040:e800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:a2:b3:c7:dc:49:35:6e:e0:18:81:5c:69:38:40:5f:7b:a7:b0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=D3A3A69B7CAF71209EE29BEA16AC08DE2261E8B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:68:8b:35:8a:00:40:0a:b3:41:39:21:65:80: 8f:fa:64:0a:f8:04:6f:22:7d:4a:95:f1:76:4b:40: b4:f8:29:b2:08:41:e9:9a:8e:65:1f:7d:cc:9a:17: 67:37:48:da:2a:da:67:06:c7:66:36:c0:d6:be:f8: 1f:7e:b6:81:4a:e8:3c:af:9a:29:1b:21:90:b7:0f: fc:93:79:df:43:26:d2:d7:74:91:37:37:c1:a4:d0: 2e:ba:a6:bb:56:a2:47:6d:db:48:b5:8d:2a:50:da: 2a:6e:7a:73:89:73:6f:19:a7:7b:b2:e6:dc:8f:52: c6:2e:33:cb:c6:1c:ad:59:a7:e8:ed:ee:50:4c:9e: a0:53:6f:80:e3:0a:d6:8a:ce:10:aa:86:a7:e2:e6: c5:38:38:f9:30:68:7a:76:fe:a6:fa:b4:0b:99:67: 26:a6:c5:ba:ff:bc:9f:cf:e7:db:df:02:14:54:2a: 73:ef:7d:c8:cf:5f:8a:59:dd:ec:4c:94:7d:90:f9: f9:26:ed:81:c1:c8:24:9a:71:62:18:6d:eb:ee:9e: 5f:eb:ab:c9:30:74:a6:a2:cd:ab:8d:7b:ff:1b:19: 75:ac:01:2e:ac:6f:a4:8e:7f:79:0b:f3:91:c4:8a: 7d:89:62:dc:db:be:ec:b5:83:c9:0b:9e:d5:ec:68: f2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A3:A6:9B:7C:AF:71:20:9E:E2:9B:EA:16:AC:08:DE:22:61:E8:B4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e800::/40 Signature Algorithm: sha256WithRSAEncryption dd:57:5f:4a:d6:10:94:e4:a3:16:2a:83:7e:3c:64:41:26:c3: 16:2a:87:f9:82:f5:b3:da:78:3d:16:3e:5f:45:29:fc:1e:94: 61:a1:19:87:c2:57:8c:f1:f4:86:c6:71:39:7d:d2:35:6a:9d: 11:0a:44:08:06:18:b9:af:a0:80:0d:bf:09:da:ec:68:45:94: ef:21:01:a5:44:96:b1:0a:a1:68:c7:61:c6:46:8d:48:b3:f5: c5:58:f4:78:7c:38:03:06:6b:7e:65:20:b1:0e:d7:30:0b:8e: 06:40:7f:37:cf:af:04:74:1c:36:8b:6c:ff:a7:b3:d1:f5:3c: 2c:36:3f:d0:a9:7d:d4:9c:8a:e4:7c:1b:c3:a7:9c:bf:49:1d: 6a:a8:6d:5a:d2:05:eb:b2:83:19:25:f8:d6:ef:4c:fb:38:31: 3c:60:07:f4:ff:ba:93:0c:b2:62:f0:83:c0:42:6c:7a:03:9f: 5c:4e:df:6a:d8:40:5a:ce:b7:b0:c9:a7:82:e0:3f:c4:c4:5a: d1:ea:cc:48:c2:d7:08:b7:7a:68:b8:dd:d1:c6:b2:25:d8:68: ad:6d:9b:fa:79:0f:9f:98:d6:fe:fe:79:71:c7:a7:4b:d0:8e: 15:f4:35:9e:50:d9:c8:c2:d9:42:4c:7e:78:73:43:05:8d:d5: 4c:20:d5:8a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURaKzx9xJNW7gGIFcaThAX3unsOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKEQzQTNBNjlCN0NBRjcxMjA5RUUyOUJFQTE2QUMwOERFMjI2MUU4QjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXaIs1igBACrNBOSFlgI/6ZAr4 BG8ifUqV8XZLQLT4KbIIQemajmUffcyaF2c3SNoq2mcGx2Y2wNa++B9+toFK6Dyv mikbIZC3D/yTed9DJtLXdJE3N8Gk0C66prtWokdt20i1jSpQ2ipuenOJc28Zp3uy 5tyPUsYuM8vGHK1Zp+jt7lBMnqBTb4DjCtaKzhCqhqfi5sU4OPkwaHp2/qb6tAuZ Zyamxbr/vJ/P59vfAhRUKnPvfcjPX4pZ3exMlH2Q+fkm7YHByCSacWIYbevunl/r q8kwdKaizauNe/8bGXWsAS6sb6SOf3kL85HEin2JYtzbvuy1g8kLntXsaPIlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU06Omm3yvcSCe4pvqFqwI3iJh6LQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNjc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOgwDQYJKoZIhvcNAQELBQADggEBAN1X X0rWEJTkoxYqg348ZEEmwxYqh/mC9bPaeD0WPl9FKfwelGGhGYfCV4zx9IbGcTl9 0jVqnREKRAgGGLmvoIANvwna7GhFlO8hAaVElrEKoWjHYcZGjUiz9cVY9Hh8OAMG a35lILEO1zALjgZAfzfPrwR0HDaLbP+ns9H1PCw2P9CpfdSciuR8G8OnnL9JHWqo bVrSBeuygxkl+NbvTPs4MTxgB/T/upMMsmLwg8BCbHoDn1xO32rYQFrOt7DJp4Lg P8TEWtHqzEjC1wi3emi43dHGsiXYaK1tm/p5D5+Y1v7+eXHHp0vQjhX0NZ5Q2cjC 2UJMfnhzQwWN1Uwg1Yo= -----END CERTIFICATE-----Generated at Sat Jul 5 03:51:19 2025 by rpki-client