$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212532.roa File: AS212532.roa (raw, json) Hash identifier: QYD9X7ql+9zWk8GKFnEiTQNXV6l1URSbHTMNUVv7jnk= Subject key identifier: 85:0E:E0:6A:57:49:65:19:D4:0C:64:8B:90:EC:49:69:97:30:42:66 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 64C664D92E355FAD3D657CDBA207A00CDC6E3D1D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212532.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 212532 IP address blocks: 2a0a:6040:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c6:64:d9:2e:35:5f:ad:3d:65:7c:db:a2:07:a0:0c:dc:6e:3d:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=850EE06A57496519D40C648B90EC496997304266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:8c:35:7a:f1:29:b5:ff:89:73:bc:71:53:c8: d7:8f:76:11:36:0e:76:f3:c4:11:c8:4f:94:0a:f5: cf:fe:3c:56:f7:57:0d:6a:15:01:e9:4d:2a:e6:82: eb:eb:c0:2f:40:8e:9c:f8:9a:74:2b:24:3c:95:30: 88:35:98:6b:0b:37:5e:9c:8e:e6:c9:eb:d8:30:82: 63:0d:34:d2:95:d5:26:5c:20:a3:6f:ff:25:95:8f: e9:68:16:ba:76:1a:ff:ed:ac:f4:25:08:8a:a7:e3: 32:87:c7:06:8a:b7:4e:4b:03:9c:82:e1:1c:83:14: 99:25:bf:2c:cb:f7:16:76:32:db:14:9d:8d:54:cf: 4c:1f:8f:32:a8:22:84:08:e7:c2:3a:12:d7:06:36: 3f:78:32:09:86:ca:c7:a9:81:9d:09:1c:7b:41:2b: 0e:a4:77:b1:50:df:00:d0:70:46:59:d8:9b:de:e7: 38:44:5e:43:4c:91:c7:72:f0:7c:56:3c:17:ce:a7: f6:56:33:a3:b5:aa:ab:f1:c0:1c:04:d4:c6:0e:92: 5d:44:f8:2b:6b:0b:77:09:41:a9:85:97:9e:47:0c: f2:50:fb:c2:18:67:aa:2d:cb:ae:c7:b5:b9:46:c4: b7:24:5f:03:17:08:0b:59:22:3c:68:6c:81:bd:f9: 6f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:0E:E0:6A:57:49:65:19:D4:0C:64:8B:90:EC:49:69:97:30:42:66 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f00::/40 Signature Algorithm: sha256WithRSAEncryption d4:01:51:21:74:09:85:71:c3:b0:0e:15:4f:69:b0:6e:c6:95: 30:3b:ae:bc:52:9d:ee:ed:cb:65:e3:51:ac:c7:1d:f3:2e:5f: 4d:8a:81:31:a9:64:25:a2:bc:74:b0:4a:f3:c6:98:14:66:20: f2:06:88:66:48:12:af:73:1b:aa:9c:7a:71:13:3b:9d:4e:60: db:00:8e:7c:15:aa:43:4a:46:f1:42:c5:ad:2c:b8:aa:92:54: e9:81:41:a8:cb:55:0c:12:b6:f2:ef:50:f7:13:71:e2:19:a0: dc:46:06:00:71:06:6e:3c:b0:da:3e:c3:c1:8f:e7:56:64:e8: f3:3e:d7:0a:8d:24:8b:80:f6:5d:ee:8c:b3:99:de:fe:8e:eb: 03:e6:50:a9:56:4f:a2:a2:36:54:55:19:0f:76:96:e9:b8:b3: 2d:1a:52:75:e3:40:2f:ec:c8:0a:75:b7:c2:e6:d4:0b:4b:87: c9:56:a7:62:25:19:7c:50:ef:74:21:e9:7f:dc:e1:85:f4:ce: d5:a0:9d:da:c9:2b:a2:9e:ca:85:ac:3d:6b:7e:6d:fa:b3:2b: 94:31:c5:16:af:99:2e:86:f3:bd:88:cf:d9:7e:31:ae:4e:fe: 3b:e1:22:94:ac:9e:4a:12:7c:95:7a:98:14:cf:f6:9b:c3:e1: e4:58:ed:e2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZMZk2S41X609ZXzbogegDNxuPR0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDg1MEVFMDZBNTc0OTY1MTlENDBDNjQ4QjkwRUM0OTY5OTczMDQyNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCjDV68Sm1/4lzvHFTyNePdhE2 DnbzxBHIT5QK9c/+PFb3Vw1qFQHpTSrmguvrwC9Ajpz4mnQrJDyVMIg1mGsLN16c jubJ69gwgmMNNNKV1SZcIKNv/yWVj+loFrp2Gv/trPQlCIqn4zKHxwaKt05LA5yC 4RyDFJklvyzL9xZ2MtsUnY1Uz0wfjzKoIoQI58I6EtcGNj94MgmGysepgZ0JHHtB Kw6kd7FQ3wDQcEZZ2Jve5zhEXkNMkcdy8HxWPBfOp/ZWM6O1qqvxwBwE1MYOkl1E +CtrC3cJQamFl55HDPJQ+8IYZ6oty67HtblGxLckXwMXCAtZIjxobIG9+W9FAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhQ7galdJZRnUDGSLkOxJaZcwQmYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQA8wDQYJKoZIhvcNAQELBQADggEBANQB USF0CYVxw7AOFU9psG7GlTA7rrxSne7ty2XjUazHHfMuX02KgTGpZCWivHSwSvPG mBRmIPIGiGZIEq9zG6qcenETO51OYNsAjnwVqkNKRvFCxa0suKqSVOmBQajLVQwS tvLvUPcTceIZoNxGBgBxBm48sNo+w8GP51Zk6PM+1wqNJIuA9l3ujLOZ3v6O6wPm UKlWT6KiNlRVGQ92lum4sy0aUnXjQC/syAp1t8Lm1AtLh8lWp2IlGXxQ73Qh6X/c 4YX0ztWgndrJK6KeyoWsPWt+bfqzK5QxxRavmS6G872Iz9l+Ma5O/jvhIpSsnkoS fJV6mBTP9pvD4eRY7eI= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:41 2025 by rpki-client