$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211962.roa File: AS211962.roa (raw, json) Hash identifier: vsDEhUYCw08en7GJv055JR1ZzBvbxgrhrNTNygviH1o= Subject key identifier: 75:08:0C:9C:AC:48:55:42:DC:4F:C9:8A:6B:BA:8A:63:74:2C:FB:A5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 54C96DF127F6F83B5EF98D92CA652179086295E8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211962.roa Signing time: Fri 04 Jul 2025 06:53:26 +0000 ROA not before: Fri 04 Jul 2025 06:48:26 +0000 ROA not after: Fri 03 Jul 2026 06:53:26 +0000 asID: 211962 IP address blocks: 2a06:9f81:4400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:c9:6d:f1:27:f6:f8:3b:5e:f9:8d:92:ca:65:21:79:08:62:95:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:26 2025 GMT Not After : Jul 3 06:53:26 2026 GMT Subject: CN=75080C9CAC485542DC4FC98A6BBA8A63742CFBA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:1f:d9:e7:af:ac:86:01:54:3b:1c:9e:2a: 69:4a:16:f3:c5:5a:8e:0c:78:3e:d3:17:66:ba:07: 8d:8d:81:9e:b2:e9:63:eb:a3:81:65:60:32:f3:e2: 0b:38:90:47:3e:ca:1c:5f:52:a9:fb:f2:44:0f:61: ee:d9:33:d2:d3:24:38:d6:23:41:20:11:ac:b6:83: b7:cb:f7:53:18:63:fe:96:2d:9e:b3:dd:f6:c2:6d: 58:41:ba:32:a9:7e:5e:23:e1:e8:f9:05:b6:a4:d7: 04:f3:16:d6:ce:5d:e7:2f:9f:3e:a1:b2:9b:7a:b2: 71:a7:0a:4f:17:81:83:10:aa:58:52:e3:09:86:7c: 51:c3:f9:ec:9d:80:ae:2a:78:75:9f:62:4f:dc:70: 25:e3:6c:76:9d:50:4b:b0:4f:f4:cb:5f:69:9b:18: 94:6d:11:c5:e8:c8:25:01:55:76:11:0e:30:4c:1c: 72:01:b4:c8:c0:78:4e:ca:e4:14:79:9a:59:1a:65: 02:8a:40:1d:65:4f:8c:08:d5:5a:a6:32:78:c3:30: 7d:9f:33:85:33:2f:3e:c9:f9:3d:f0:4a:82:0a:2e: dd:5a:a0:5c:2d:2d:7b:f9:4d:04:ce:52:b5:fa:03: bc:82:05:0d:b8:22:5c:52:94:02:45:72:5b:12:5b: d7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:08:0C:9C:AC:48:55:42:DC:4F:C9:8A:6B:BA:8A:63:74:2C:FB:A5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211962.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4400::/40 Signature Algorithm: sha256WithRSAEncryption cd:2f:24:65:c7:d7:a4:65:7c:bf:56:90:0b:c9:72:3c:26:52: 96:60:35:d3:9d:f7:a8:fb:39:7a:45:71:45:c9:12:1f:1f:4a: 7d:ad:51:32:52:5a:eb:c4:66:c8:ce:86:fe:0d:5c:7d:1f:02: 3d:2b:73:c5:44:28:85:c8:94:4d:04:65:3c:e6:8f:05:c3:60: 55:86:5d:6d:11:2b:fc:93:bf:fe:31:5b:93:1c:c5:96:e5:b9: e4:78:e5:09:c4:da:49:2d:0a:ee:94:f9:2f:fd:3c:84:8a:40: d9:ef:30:e2:e0:09:95:e9:ec:2f:c2:d2:2f:f4:e4:c9:88:e4: 0e:87:e2:cb:1b:47:35:1b:c9:ed:a9:81:4f:96:3b:f3:67:38: 3f:fd:79:5a:b6:f8:d0:aa:6f:ea:83:eb:bd:11:24:f8:09:bc: 40:15:92:d2:33:b9:53:ea:84:82:25:00:c4:9e:80:02:21:96: 20:42:4b:07:b4:8e:1a:b6:13:e0:65:4b:a5:c6:ba:a0:71:e0: a4:e4:d8:a2:21:5a:48:30:36:61:8f:11:cd:df:88:42:24:b4: d6:31:53:ce:75:11:2d:3f:84:cb:e2:ec:35:01:5e:10:2b:0b: 46:97:a1:5f:ef:2b:13:4a:a0:eb:02:15:99:7f:7f:60:28:13: 91:94:73:75 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVMlt8Sf2+Dte+Y2SymUheQhilegwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjZaFw0yNjA3MDMwNjUzMjZaMDMxMTAvBgNV BAMTKDc1MDgwQzlDQUM0ODU1NDJEQzRGQzk4QTZCQkE4QTYzNzQyQ0ZCQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ox/Z56+shgFUOxyeKmlKFvPF Wo4MeD7TF2a6B42NgZ6y6WPro4FlYDLz4gs4kEc+yhxfUqn78kQPYe7ZM9LTJDjW I0EgEay2g7fL91MYY/6WLZ6z3fbCbVhBujKpfl4j4ej5Bbak1wTzFtbOXecvnz6h spt6snGnCk8XgYMQqlhS4wmGfFHD+eydgK4qeHWfYk/ccCXjbHadUEuwT/TLX2mb GJRtEcXoyCUBVXYRDjBMHHIBtMjAeE7K5BR5mlkaZQKKQB1lT4wI1VqmMnjDMH2f M4UzLz7J+T3wSoIKLt1aoFwtLXv5TQTOUrX6A7yCBQ24IlxSlAJFclsSW9e/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdQgMnKxIVULcT8mKa7qKY3Qs+6UwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExOTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUQwDQYJKoZIhvcNAQELBQADggEBAM0v JGXH16RlfL9WkAvJcjwmUpZgNdOd96j7OXpFcUXJEh8fSn2tUTJSWuvEZsjOhv4N XH0fAj0rc8VEKIXIlE0EZTzmjwXDYFWGXW0RK/yTv/4xW5McxZblueR45QnE2kkt Cu6U+S/9PISKQNnvMOLgCZXp7C/C0i/05MmI5A6H4ssbRzUbye2pgU+WO/NnOD/9 eVq2+NCqb+qD670RJPgJvEAVktIzuVPqhIIlAMSegAIhliBCSwe0jhq2E+BlS6XG uqBx4KTk2KIhWkgwNmGPEc3fiEIktNYxU851ES0/hMvi7DUBXhArC0aXoV/vKxNK oOsCFZl/f2AoE5GUc3U= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:32 2025 by rpki-client