$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212164.roa File: AS212164.roa (raw, json) Hash identifier: nDBneLsHPKOpeJL3AbiYLMBXDdgSkSblv7B/pAkW9Ck= Subject key identifier: BA:E5:8E:97:14:56:32:DF:BA:5A:2D:36:24:96:23:23:C5:0C:24:70 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: D46BFEB6A4D73811658177D4CBABBB4A4C23BF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212164.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 212164 IP address blocks: 2a0a:6040:c700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: d4:6b:fe:b6:a4:d7:38:11:65:81:77:d4:cb:ab:bb:4a:4c:23:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=BAE58E97145632DFBA5A2D3624962323C50C2470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ec:10:ec:6e:cf:c2:0f:55:19:62:df:bd:74: 7c:8a:8e:99:95:05:8b:9b:b5:83:6a:c3:4c:9d:46: 1d:40:f4:c1:bb:ce:cf:0f:27:dc:6b:15:bb:81:ea: 42:b3:6e:98:98:3a:93:72:bc:71:aa:6e:3b:07:34: 6a:84:71:91:8b:5b:83:51:8e:25:c5:c4:ba:c2:30: 30:de:f2:99:09:08:8f:4c:61:b6:c8:62:e1:3d:7f: d2:ac:b9:c9:40:0d:95:2f:a7:b2:5f:7b:78:55:39: 20:a4:ed:c0:b0:86:93:4f:ec:56:93:21:fc:f3:11: 2b:31:2c:de:53:a1:a6:eb:a3:41:9d:59:10:a2:dd: b5:7b:e8:12:11:8a:81:eb:d9:e3:8c:d3:e0:fd:2b: 31:4a:5d:9d:32:ff:dc:a4:c4:89:9f:00:ba:3f:95: 7e:84:f0:40:83:32:d8:2d:fd:30:30:8a:1e:98:ec: ef:8b:24:c6:66:55:55:57:2f:dd:bb:a1:35:ac:f6: df:73:0a:b8:e5:f4:94:3f:ca:01:72:22:a8:3a:bd: 01:87:cc:76:af:49:ee:58:90:2a:59:ff:4c:78:ec: 1c:b0:fe:7f:fd:2e:52:6a:88:85:18:44:46:55:a9: dd:af:e9:f1:16:34:59:fc:3e:d1:58:c6:51:95:66: a7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E5:8E:97:14:56:32:DF:BA:5A:2D:36:24:96:23:23:C5:0C:24:70 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212164.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c700::/40 Signature Algorithm: sha256WithRSAEncryption ac:6e:b1:38:da:fe:3a:e1:fd:ff:b3:76:86:0e:52:2e:68:0b: a3:b7:01:e9:c3:b4:2a:84:a6:9c:9a:0f:8e:57:c3:75:d7:81: 9a:4e:6e:02:e7:c5:92:9f:de:8c:fd:a3:d1:2d:cf:99:7d:b9: 98:c4:1e:f4:13:59:a1:0a:d4:11:54:be:d5:71:2d:53:1b:83: 41:c8:e0:00:0d:aa:0b:f5:d4:64:27:9b:a7:de:15:c7:b6:2c: 77:94:80:5a:70:a2:db:f1:4c:73:a3:42:59:8e:77:ea:25:9a: 6b:fc:da:cf:1c:79:a7:47:9c:6e:bc:59:d6:c6:83:0e:0a:9e: b0:b9:83:ea:a8:b3:8d:a0:bf:61:4c:4a:3b:e7:22:c8:66:3c: ef:09:1d:72:d9:42:27:1f:98:9b:9b:25:bd:27:18:1c:cf:7f: 7b:3d:cd:e7:92:51:ef:5c:7e:1a:11:3f:ec:9b:49:af:ae:42: 91:8e:d4:c5:3f:99:94:de:b4:1e:17:40:b3:d2:48:0c:fe:89: ba:60:34:71:6b:55:64:64:e1:71:b0:5d:12:e6:af:e8:9b:fa: 29:8f:33:4a:b2:11:2a:13:64:61:06:9e:ca:ac:bf:67:38:63: e2:9c:93:47:57:35:1c:1c:9a:1d:b4:96:38:ea:cc:7b:e9:8c: 73:ff:27:ee -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUANRr/rak1zgRZYF31Muru0pMI78wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKEJBRTU4RTk3MTQ1NjMyREZCQTVBMkQzNjI0OTYyMzIzQzUwQzI0NzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy7BDsbs/CD1UZYt+9dHyKjpmV BYubtYNqw0ydRh1A9MG7zs8PJ9xrFbuB6kKzbpiYOpNyvHGqbjsHNGqEcZGLW4NR jiXFxLrCMDDe8pkJCI9MYbbIYuE9f9KsuclADZUvp7Jfe3hVOSCk7cCwhpNP7FaT IfzzESsxLN5Toabro0GdWRCi3bV76BIRioHr2eOM0+D9KzFKXZ0y/9ykxImfALo/ lX6E8ECDMtgt/TAwih6Y7O+LJMZmVVVXL927oTWs9t9zCrjl9JQ/ygFyIqg6vQGH zHavSe5YkCpZ/0x47Byw/n/9LlJqiIUYREZVqd2v6fEWNFn8PtFYxlGVZqfdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUuuWOlxRWMt+6Wi02JJYjI8UMJHAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyMTY0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQMcwDQYJKoZIhvcNAQELBQADggEBAKxu sTja/jrh/f+zdoYOUi5oC6O3AenDtCqEppyaD45Xw3XXgZpObgLnxZKf3oz9o9Et z5l9uZjEHvQTWaEK1BFUvtVxLVMbg0HI4AANqgv11GQnm6feFce2LHeUgFpwotvx THOjQlmOd+olmmv82s8ceadHnG68WdbGgw4KnrC5g+qos42gv2FMSjvnIshmPO8J HXLZQicfmJubJb0nGBzPf3s9zeeSUe9cfhoRP+ybSa+uQpGO1MU/mZTetB4XQLPS SAz+ibpgNHFrVWRk4XGwXRLmr+ib+imPM0qyESoTZGEGnsqsv2c4Y+Kck0dXNRwc mh20ljjqzHvpjHP/J+4= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:49 2025 by rpki-client