$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212532.roa File: AS212532.roa (raw, json) Hash identifier: r1ef4mWcW4eGokcsMyZ4hzBD4lOHvzhYDP2Xyvw+jsU= Subject key identifier: 66:DF:C0:47:F4:B6:5E:80:BD:50:F0:BF:6A:94:3F:4F:39:D4:88:1D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1A4234C595794E59E4FC4FB8EEE04852186C2D9F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212532.roa Signing time: Fri 05 Jun 2026 07:12:28 +0000 ROA not before: Fri 05 Jun 2026 07:07:28 +0000 ROA not after: Fri 04 Jun 2027 07:12:28 +0000 asID: 212532 IP address blocks: 2a0a:6040:f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:42:34:c5:95:79:4e:59:e4:fc:4f:b8:ee:e0:48:52:18:6c:2d:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:28 2026 GMT Not After : Jun 4 07:12:28 2027 GMT Subject: CN=66DFC047F4B65E80BD50F0BF6A943F4F39D4881D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:0f:de:8b:dc:4a:1c:e5:9f:b2:66:db:5d: d9:60:87:38:ca:44:f1:31:63:6e:fa:f3:8a:69:7f: 7d:3f:9c:ca:40:c1:89:d6:99:e8:c4:34:d8:94:f0: 73:17:de:f9:94:7d:a2:04:e1:fb:d0:8a:39:5c:f4: f8:fa:dd:5f:70:7a:2e:77:9a:dc:10:67:d5:2b:fc: 2f:9e:e8:ed:26:0f:30:ac:95:8d:f4:1e:11:cf:ce: 13:db:bd:4a:61:fd:01:71:b5:b7:6f:9a:be:af:de: b4:a8:af:cf:fc:9a:bb:a7:66:1c:df:c7:13:76:1d: 68:7b:2d:de:73:de:e3:b7:98:09:5c:49:40:f7:75: ed:0d:64:1b:a8:bf:b7:40:e2:c3:74:88:fb:5e:6e: bb:4f:40:69:51:a2:93:cf:b0:d9:e5:f6:f3:84:43: 6b:b4:71:41:1e:f8:fb:6a:93:dd:f6:84:50:4c:1e: a3:2c:12:b1:77:2d:05:73:4e:53:5f:d0:de:78:4c: 10:af:92:0e:be:2c:0c:d1:00:dc:39:8f:05:13:21: fc:42:fd:f2:67:1c:f8:3e:37:ba:e4:26:e1:c8:5f: 8f:a7:a7:ff:23:51:60:ed:ee:21:0a:f1:3e:ba:d4: 93:b0:e5:6a:fa:40:d2:d6:e6:21:ae:ae:ac:18:0f: 80:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DF:C0:47:F4:B6:5E:80:BD:50:F0:BF:6A:94:3F:4F:39:D4:88:1D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:f00::/40 Signature Algorithm: sha256WithRSAEncryption e1:9f:63:68:00:6d:d5:02:31:f9:e0:99:fa:95:6d:41:7e:b7: c3:87:0c:ae:ce:37:47:a4:1c:77:a0:59:e0:6e:9a:93:54:d6: 60:f8:28:4c:9c:50:f1:7d:da:20:f0:d7:ae:4c:99:3a:ec:10: 88:ed:df:da:c0:72:49:7c:96:ab:d6:e3:53:71:ac:6f:15:a5: da:8a:51:11:2b:7f:7b:ff:83:fb:d4:35:05:d9:33:5d:3a:ee: aa:d1:ba:fd:a0:aa:c9:76:65:b9:9f:c8:ea:cf:d3:af:f5:83: d4:8f:2d:95:70:23:85:1f:43:99:84:cb:6d:95:10:e5:c6:18: 90:f1:88:4d:c8:c0:5a:4e:10:46:e1:91:cf:ac:63:4c:dd:f5: 61:59:65:48:da:64:35:65:23:c5:45:53:bd:39:0b:fc:cb:d3: af:12:ee:55:91:57:df:14:60:0b:fb:e8:f8:7c:cf:4e:f3:82: 85:53:b1:4a:4f:de:60:9f:6e:6a:d4:24:dd:a9:c1:bd:8e:73: 7b:3f:2d:3f:04:e1:1c:e8:43:a3:20:c0:cc:e7:c7:3d:cb:9d: dc:38:9c:50:3c:22:64:cc:21:dd:e4:30:0a:b9:ce:1a:3a:14: 36:41:92:69:02:80:61:c0:ed:47:e4:96:8a:34:53:23:7e:53: c4:c9:bf:8b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGkI0xZV5Tlnk/E+47uBIUhhsLZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjhaFw0yNzA2MDQwNzEyMjhaMDMxMTAvBgNV BAMTKDY2REZDMDQ3RjRCNjVFODBCRDUwRjBCRjZBOTQzRjRGMzlENDg4MUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6WQ/ei9xKHOWfsmbbXdlghzjK RPExY27684ppf30/nMpAwYnWmejENNiU8HMX3vmUfaIE4fvQijlc9Pj63V9wei53 mtwQZ9Ur/C+e6O0mDzCslY30HhHPzhPbvUph/QFxtbdvmr6v3rSor8/8mrunZhzf xxN2HWh7Ld5z3uO3mAlcSUD3de0NZBuov7dA4sN0iPtebrtPQGlRopPPsNnl9vOE Q2u0cUEe+Ptqk932hFBMHqMsErF3LQVzTlNf0N54TBCvkg6+LAzRANw5jwUTIfxC /fJnHPg+N7rkJuHIX4+np/8jUWDt7iEK8T661JOw5Wr6QNLW5iGurqwYD4BZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZt/AR/S2XoC9UPC/apQ/TznUiB0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyNTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQA8wDQYJKoZIhvcNAQELBQADggEBAOGf Y2gAbdUCMfngmfqVbUF+t8OHDK7ON0ekHHegWeBumpNU1mD4KEycUPF92iDw165M mTrsEIjt39rAckl8lqvW41NxrG8VpdqKURErf3v/g/vUNQXZM1067qrRuv2gqsl2 ZbmfyOrP06/1g9SPLZVwI4UfQ5mEy22VEOXGGJDxiE3IwFpOEEbhkc+sY0zd9WFZ ZUjaZDVlI8VFU705C/zL068S7lWRV98UYAv76Ph8z07zgoVTsUpP3mCfbmrUJN2p wb2Oc3s/LT8E4RzoQ6MgwMznxz3Lndw4nFA8ImTMId3kMAq5zho6FDZBkmkCgGHA 7Ufkloo0UyN+U8TJv4s= -----END CERTIFICATE-----Generated at Sat Jun 6 10:41:32 2026 by rpki-client