$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212178.roa File: AS212178.roa (raw, json) Hash identifier: u0zwHrho205Uou2TpxZJSG5M0dOt7fY1wLwpBMZAe2g= Subject key identifier: B8:AC:E1:29:F0:E5:F6:41:5D:6A:FA:EE:71:F4:76:93:98:F7:DD:0F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 42D83740EC787726D667EB8F49D8035490B109BD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212178.roa Signing time: Fri 04 Jul 2025 06:52:58 +0000 ROA not before: Fri 04 Jul 2025 06:47:58 +0000 ROA not after: Fri 03 Jul 2026 06:52:58 +0000 asID: 212178 IP address blocks: 2a0a:6040:5600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d8:37:40:ec:78:77:26:d6:67:eb:8f:49:d8:03:54:90:b1:09:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:58 2025 GMT Not After : Jul 3 06:52:58 2026 GMT Subject: CN=B8ACE129F0E5F6415D6AFAEE71F4769398F7DD0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c5:14:78:22:51:a5:37:a0:e5:04:b2:29:f3: 63:f1:39:54:f9:0d:73:a5:47:65:13:2e:e8:9f:45: 6b:a5:fe:f3:d6:68:1c:55:63:1b:a6:4b:5b:1b:3f: bc:13:c5:e7:a1:31:82:e4:d9:da:f8:41:c9:14:3c: 64:34:24:87:21:b9:9a:37:d9:55:8e:32:ae:2a:2f: 1b:cf:f9:c3:38:ac:33:36:db:a2:8f:6c:f0:4e:54: 9a:4a:55:55:d6:5d:7d:a5:3a:b3:b9:45:1a:94:7f: 3b:84:08:a8:8f:5a:02:ee:a0:2e:3d:bd:2b:0b:db: a8:39:05:81:89:8c:37:4f:c3:2c:ab:55:c9:0e:11: 14:ed:c9:88:0e:f6:ca:19:1e:0b:f5:50:41:66:28: 68:e5:f4:e6:db:93:69:c5:86:7a:37:2c:4b:e9:ca: 0d:f3:63:b0:48:53:90:9a:6e:cc:b6:75:19:f2:50: d7:e2:25:ae:48:46:d2:ba:49:ab:d2:18:f7:6e:f5: c3:5f:0d:25:74:eb:9e:66:bd:68:96:cd:4b:70:21: 53:72:40:c6:2d:73:6f:4a:0f:7e:dd:3d:c0:88:27: 83:40:fe:23:79:cd:97:23:58:af:85:4b:2c:d1:75: fe:75:85:b9:93:a4:2b:9b:30:b6:d4:82:8e:a6:10: cf:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AC:E1:29:F0:E5:F6:41:5D:6A:FA:EE:71:F4:76:93:98:F7:DD:0F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212178.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5600::/40 Signature Algorithm: sha256WithRSAEncryption 95:39:25:6b:a3:2c:92:4a:fa:b4:19:b3:d6:28:cd:a9:d3:89: 5f:f8:2f:a2:69:84:b1:87:ef:ee:4a:63:72:8c:fa:6a:93:1b: 49:dc:ad:e1:a8:8e:3b:20:53:d9:5b:ff:0f:63:6e:19:58:c1: cf:bd:49:d9:e8:8f:a9:87:47:33:b0:49:57:60:0c:12:7b:c1: d5:9a:4c:67:40:cf:b7:15:c2:b9:06:8f:29:54:63:63:45:ca: e9:1c:cf:a7:05:f1:8c:ab:d5:a0:6b:43:54:fc:2e:9e:69:0f: 2b:57:fd:27:f8:c1:10:c3:9b:f7:5d:c5:65:82:b5:fa:0a:b7: d8:66:77:5b:45:57:2a:30:98:df:f2:62:3f:53:81:d6:d8:5e: 1e:1e:86:96:f7:99:d2:94:b9:96:d0:91:19:49:bf:42:24:e4: 01:af:52:d7:06:7b:1e:aa:07:ed:2c:5a:bc:28:01:1a:a6:a5: ba:53:ed:3b:5e:7b:99:ba:16:60:af:85:01:00:35:ea:f5:14: 7e:ef:23:d7:8d:dd:31:69:3d:c0:4f:9f:2e:44:18:bd:b9:bb: 93:6c:a2:8c:e7:b3:d5:e7:5a:02:51:f1:cf:bb:2f:77:8a:4c: 25:67:53:70:08:a7:49:a4:cd:f5:eb:88:62:74:d0:7b:c1:14: 79:7d:34:1a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQtg3QOx4dybWZ+uPSdgDVJCxCb0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NThaFw0yNjA3MDMwNjUyNThaMDMxMTAvBgNV BAMTKEI4QUNFMTI5RjBFNUY2NDE1RDZBRkFFRTcxRjQ3NjkzOThGN0REMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoxRR4IlGlN6DlBLIp82PxOVT5 DXOlR2UTLuifRWul/vPWaBxVYxumS1sbP7wTxeehMYLk2dr4QckUPGQ0JIchuZo3 2VWOMq4qLxvP+cM4rDM226KPbPBOVJpKVVXWXX2lOrO5RRqUfzuECKiPWgLuoC49 vSsL26g5BYGJjDdPwyyrVckOERTtyYgO9soZHgv1UEFmKGjl9Obbk2nFhno3LEvp yg3zY7BIU5Cabsy2dRnyUNfiJa5IRtK6SavSGPdu9cNfDSV0655mvWiWzUtwIVNy QMYtc29KD37dPcCIJ4NA/iN5zZcjWK+FSyzRdf51hbmTpCubMLbUgo6mEM9zAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUuKzhKfDl9kFdavrucfR2k5j33Q8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyMTc4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFYwDQYJKoZIhvcNAQELBQADggEBAJU5 JWujLJJK+rQZs9YozanTiV/4L6JphLGH7+5KY3KM+mqTG0ncreGojjsgU9lb/w9j bhlYwc+9Sdnoj6mHRzOwSVdgDBJ7wdWaTGdAz7cVwrkGjylUY2NFyukcz6cF8Yyr 1aBrQ1T8Lp5pDytX/Sf4wRDDm/ddxWWCtfoKt9hmd1tFVyowmN/yYj9TgdbYXh4e hpb3mdKUuZbQkRlJv0Ik5AGvUtcGex6qB+0sWrwoARqmpbpT7Ttee5m6FmCvhQEA Ner1FH7vI9eN3TFpPcBPny5EGL25u5Nsoozns9XnWgJR8c+7L3eKTCVnU3AIp0mk zfXriGJ00HvBFHl9NBo= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:41 2025 by rpki-client