$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211679.roa File: AS211679.roa (raw, json) Hash identifier: L8TG2tLf4Pxi1kJbbKTWJCm1Z1/wtObV3G8MJBjDV+Q= Subject key identifier: 37:82:51:8F:87:21:22:94:FD:6A:71:77:21:82:B1:1D:5D:1F:13:0D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 52DA6024BDB0F1DBE11B01571C3A253E9E1B78BA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211679.roa Signing time: Fri 05 Jun 2026 07:12:20 +0000 ROA not before: Fri 05 Jun 2026 07:07:20 +0000 ROA not after: Fri 04 Jun 2027 07:12:20 +0000 asID: 211679 IP address blocks: 2a0a:6040:e800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 20:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:da:60:24:bd:b0:f1:db:e1:1b:01:57:1c:3a:25:3e:9e:1b:78:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:20 2026 GMT Not After : Jun 4 07:12:20 2027 GMT Subject: CN=3782518F87212294FD6A71772182B11D5D1F130D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:63:54:12:7a:8a:dc:ab:27:29:fe:6b:9b:af: a3:ae:03:57:7d:e8:be:fa:49:8f:81:a7:32:ac:e8: 83:12:14:d4:7e:0b:59:24:3f:12:a4:f6:c2:18:42: 66:e4:63:b9:94:35:93:c9:30:48:f9:02:95:a9:e6: 20:9c:4a:ee:51:02:c5:66:68:29:a0:23:44:6f:fe: cd:1f:86:0c:86:4f:31:9b:5a:3b:86:9a:22:1a:81: f4:b9:95:0e:7e:df:b7:ba:f3:12:57:64:c8:c9:16: 2a:32:f6:e9:ff:3b:14:43:0b:87:b1:86:47:b2:57: 27:dd:b3:f2:85:13:da:1c:05:0e:fe:7c:e0:3d:17: 73:a6:d1:ad:f8:ad:30:be:a6:7a:a2:a7:b9:73:03: ee:4c:32:c2:ea:2b:32:55:81:35:d1:45:9f:3e:86: 4e:92:9d:2f:1c:fc:0c:28:47:de:7d:70:10:9f:32: 39:d1:24:c4:3f:4b:be:be:d2:8c:53:0b:33:a0:51: 5c:0b:18:d9:e9:e7:af:5b:c2:75:da:cd:7c:8d:6f: 43:6b:e4:f0:ea:75:56:58:10:59:2a:3f:9d:30:56: 41:04:f0:f7:59:ca:a1:de:f1:88:5f:08:7f:cd:ce: 3b:20:45:a5:1d:0a:94:62:74:4b:51:cc:88:02:2b: ed:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:82:51:8F:87:21:22:94:FD:6A:71:77:21:82:B1:1D:5D:1F:13:0D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211679.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:e800::/40 Signature Algorithm: sha256WithRSAEncryption 4d:e0:b5:52:75:6f:5a:8d:87:32:55:c8:50:ca:5f:4b:8a:33: 0b:7d:3e:e8:19:d5:4d:94:30:f4:8e:26:2b:9a:72:fb:59:3e: 86:3f:bd:e9:05:a1:f0:b5:bb:a7:21:b6:97:de:2a:65:fd:1a: 79:d8:c5:f1:e1:a1:96:93:7f:e9:8f:94:dc:96:65:60:0f:e0: 3b:eb:1c:c3:35:0a:d0:52:20:af:7f:25:02:62:76:99:62:f3: 7a:76:26:1e:eb:b0:a9:b0:06:7b:19:8b:b7:e2:8f:e9:b8:9c: b6:82:c3:f3:6e:bd:06:40:88:e4:ac:ce:ea:da:5f:19:1f:de: 27:aa:7d:d3:b6:37:3b:6d:61:9f:f6:30:e4:23:31:73:b0:3d: fb:4a:76:89:44:cc:ae:12:05:d2:05:e0:05:dd:79:a5:92:61: 46:17:4d:c1:66:d3:f2:37:5d:0d:bd:77:fc:20:10:55:b0:06: e9:e8:45:45:27:ac:f7:e6:21:cf:7f:3d:37:84:e8:f7:7d:1c: 71:89:6c:f8:7b:16:14:9e:8d:42:a0:80:58:f7:39:cf:bd:35: 4d:16:71:40:e0:56:c9:64:df:ae:65:8c:3c:ae:57:81:3e:77: 36:fb:da:4b:1a:d5:9b:b8:fd:30:4a:11:24:98:36:f2:01:ee: a1:84:9f:c1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUtpgJL2w8dvhGwFXHDolPp4beLowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjBaFw0yNzA2MDQwNzEyMjBaMDMxMTAvBgNV BAMTKDM3ODI1MThGODcyMTIyOTRGRDZBNzE3NzIxODJCMTFENUQxRjEzMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/Y1QSeorcqycp/mubr6OuA1d9 6L76SY+BpzKs6IMSFNR+C1kkPxKk9sIYQmbkY7mUNZPJMEj5ApWp5iCcSu5RAsVm aCmgI0Rv/s0fhgyGTzGbWjuGmiIagfS5lQ5+37e68xJXZMjJFioy9un/OxRDC4ex hkeyVyfds/KFE9ocBQ7+fOA9F3Om0a34rTC+pnqip7lzA+5MMsLqKzJVgTXRRZ8+ hk6SnS8c/AwoR959cBCfMjnRJMQ/S76+0oxTCzOgUVwLGNnp569bwnXazXyNb0Nr 5PDqdVZYEFkqP50wVkEE8PdZyqHe8YhfCH/NzjsgRaUdCpRidEtRzIgCK+3jAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUN4JRj4chIpT9anF3IYKxHV0fEw0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNjc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOgwDQYJKoZIhvcNAQELBQADggEBAE3g tVJ1b1qNhzJVyFDKX0uKMwt9PugZ1U2UMPSOJiuacvtZPoY/vekFofC1u6chtpfe KmX9GnnYxfHhoZaTf+mPlNyWZWAP4DvrHMM1CtBSIK9/JQJidpli83p2Jh7rsKmw BnsZi7fij+m4nLaCw/NuvQZAiOSszuraXxkf3ieqfdO2NzttYZ/2MOQjMXOwPftK dolEzK4SBdIF4AXdeaWSYUYXTcFm0/I3XQ29d/wgEFWwBunoRUUnrPfmIc9/PTeE 6Pd9HHGJbPh7FhSejUKggFj3Oc+9NU0WcUDgVslk365ljDyuV4E+dzb72ksa1Zu4 /TBKESSYNvIB7qGEn8E= -----END CERTIFICATE-----Generated at Fri Jun 12 00:06:30 2026 by rpki-client