$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212468.roa File: AS212468.roa (raw, json) Hash identifier: sZQ7jqkMZvpW6fIfJ74BB7nr2ljL5Rh/pjra9X/eq3Q= Subject key identifier: 42:2F:C8:69:78:F2:6F:97:EA:1E:60:6B:F4:DA:1E:24:32:45:02:2C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7ED99B9DF21DC24D4269A1894EA65B39268ABF09 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212468.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 212468 IP address blocks: 2a0a:6040:bd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d9:9b:9d:f2:1d:c2:4d:42:69:a1:89:4e:a6:5b:39:26:8a:bf:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=422FC86978F26F97EA1E606BF4DA1E243245022C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:9e:63:de:9a:65:f1:fa:e6:95:15:a1:b0:7c: db:d6:a6:b4:4b:69:9c:5e:94:7c:f3:99:37:60:9d: 90:98:02:3f:46:bf:dc:45:80:ff:98:c1:0e:f1:b8: 27:4f:39:cb:4d:74:b5:c9:a9:fc:cc:6e:75:79:d8: bb:ba:f5:23:9b:69:28:7b:f6:11:85:fa:84:7a:3e: f1:3f:be:13:0d:1d:87:0e:c5:c1:7d:cb:3f:b2:a0: 22:ef:0f:75:05:20:3c:99:07:34:6e:cc:7e:17:4f: e3:44:3a:25:8f:7a:02:dc:72:31:3e:98:3d:db:13: 03:7c:5d:34:2e:23:a2:ab:76:9d:a4:cc:8c:b1:45: 90:63:45:d7:6e:86:d3:fc:20:57:d9:04:30:7a:cb: d1:b0:90:49:8b:65:33:57:bc:c0:c3:57:93:0e:86: 5a:55:71:f2:6d:92:54:c4:c8:29:70:f0:8f:86:79: 5f:d7:b0:0c:3c:c8:eb:ef:80:d2:66:67:de:68:4b: 8d:c2:13:fd:4f:c4:31:df:89:a8:5c:2f:c9:ad:47: b7:59:89:dd:7b:b0:d7:0c:71:57:c8:69:61:ab:93: fc:91:e5:8a:91:fd:82:a1:5c:89:d8:e5:5d:6e:85: bc:6b:1c:93:bb:b1:96:62:63:5f:27:60:e7:29:50: 12:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:2F:C8:69:78:F2:6F:97:EA:1E:60:6B:F4:DA:1E:24:32:45:02:2C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212468.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bd00::/40 Signature Algorithm: sha256WithRSAEncryption de:9e:de:c4:26:17:c1:78:13:4a:9e:5d:db:ba:b1:2b:d8:8a: c0:7d:eb:b3:d3:16:e3:30:5a:d4:94:38:e6:90:ad:15:87:1f: c3:6d:66:c7:59:1b:27:cb:8e:83:18:ad:18:14:ba:aa:14:9f: 2f:c7:56:fe:4f:5f:4d:ed:77:64:a1:7b:a1:8a:f0:9a:be:34: 45:48:58:08:5b:24:ae:01:a0:57:bc:df:18:33:d1:b1:cb:cb: 60:03:04:13:6d:4c:87:60:0d:b9:0b:ce:e3:2d:9e:ef:ec:ae: 66:a3:f9:58:8c:e4:67:da:cc:b6:42:74:0a:2c:33:9c:32:75: 0c:05:4c:89:7d:7e:67:b4:94:12:fe:ab:f2:6f:1c:08:d3:a9: ba:1a:02:c1:09:68:fe:d2:6c:8d:85:cd:98:fc:7c:8e:46:9b: ef:80:48:35:60:0c:c2:94:32:52:4d:55:5a:38:41:c8:d4:9d: 42:8d:fa:a0:7b:ac:3e:3f:8b:1b:3c:96:81:5c:b3:c3:da:77: 5e:44:52:00:63:89:5c:cc:71:5f:a5:2e:03:4c:cd:4f:c0:e4: 5a:6f:1d:55:56:97:45:ca:0f:08:0d:4a:46:fd:6c:39:c2:85: 05:50:de:f4:b6:7c:0b:f7:0b:85:b9:8e:54:45:e0:05:49:56: bc:07:f2:0d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUftmbnfIdwk1CaaGJTqZbOSaKvwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDQyMkZDODY5NzhGMjZGOTdFQTFFNjA2QkY0REExRTI0MzI0NTAyMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjnmPemmXx+uaVFaGwfNvWprRL aZxelHzzmTdgnZCYAj9Gv9xFgP+YwQ7xuCdPOctNdLXJqfzMbnV52Lu69SObaSh7 9hGF+oR6PvE/vhMNHYcOxcF9yz+yoCLvD3UFIDyZBzRuzH4XT+NEOiWPegLccjE+ mD3bEwN8XTQuI6Krdp2kzIyxRZBjRdduhtP8IFfZBDB6y9GwkEmLZTNXvMDDV5MO hlpVcfJtklTEyClw8I+GeV/XsAw8yOvvgNJmZ95oS43CE/1PxDHfiahcL8mtR7dZ id17sNcMcVfIaWGrk/yR5YqR/YKhXInY5V1uhbxrHJO7sZZiY18nYOcpUBL1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQi/IaXjyb5fqHmBr9NoeJDJFAiwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyNDY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQL0wDQYJKoZIhvcNAQELBQADggEBAN6e 3sQmF8F4E0qeXdu6sSvYisB967PTFuMwWtSUOOaQrRWHH8NtZsdZGyfLjoMYrRgU uqoUny/HVv5PX03td2She6GK8Jq+NEVIWAhbJK4BoFe83xgz0bHLy2ADBBNtTIdg DbkLzuMtnu/srmaj+ViM5GfazLZCdAosM5wydQwFTIl9fme0lBL+q/JvHAjTqboa AsEJaP7SbI2FzZj8fI5Gm++ASDVgDMKUMlJNVVo4QcjUnUKN+qB7rD4/ixs8loFc s8Pad15EUgBjiVzMcV+lLgNMzU/A5FpvHVVWl0XKDwgNSkb9bDnChQVQ3vS2fAv3 C4W5jlRF4AVJVrwH8g0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:12:43 2025 by rpki-client