$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212799.roa File: AS212799.roa (raw, json) Hash identifier: a4C8OA3JKpmQNKzEIY3kpfqUP7KFtIbvJ9zquVW0Wm4= Subject key identifier: 2B:A5:1B:C4:E7:82:CC:27:8C:D7:3E:37:19:0D:E4:C2:7A:0D:06:45 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 495AC9CED77C1D71667CD222DC80F12F22CB0AD5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212799.roa Signing time: Fri 04 Jul 2025 06:53:07 +0000 ROA not before: Fri 04 Jul 2025 06:48:07 +0000 ROA not after: Fri 03 Jul 2026 06:53:07 +0000 asID: 212799 IP address blocks: 2a0a:6040:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:5a:c9:ce:d7:7c:1d:71:66:7c:d2:22:dc:80:f1:2f:22:cb:0a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:07 2025 GMT Not After : Jul 3 06:53:07 2026 GMT Subject: CN=2BA51BC4E782CC278CD73E37190DE4C27A0D0645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c3:9c:75:36:34:eb:e0:e7:04:d2:4c:d8:02: 3c:f1:d2:4e:4c:82:47:79:4e:11:64:a3:23:8b:76: 28:01:fd:1f:c2:61:98:d2:00:93:84:5b:01:5c:08: 17:24:97:a4:4e:d2:0f:8d:0d:98:fc:37:a7:0c:56: b2:ac:c8:af:8d:5f:2f:d6:10:d7:a5:69:f4:6b:d5: 8a:38:45:0c:f0:ca:01:bb:33:1b:0c:d9:6c:c0:df: 6e:e6:55:dc:6b:f5:80:ac:82:d9:56:1a:dc:87:8d: 2c:9b:b9:e1:27:48:79:96:47:a4:3f:24:a2:cc:ae: d5:9e:e4:58:1b:75:2c:a2:45:b0:32:fc:44:00:fe: a3:aa:6a:f4:c2:dd:54:9f:7d:2a:bb:b3:e5:f4:0c: f3:c0:af:18:3f:27:cd:bb:3d:88:a6:ab:a1:ef:e1: 2f:4c:b6:fa:1a:87:7c:ac:4a:21:4a:31:d3:96:5f: 02:d7:7e:30:1c:05:3e:78:b2:cb:fb:7d:33:0a:e9: fc:b5:1b:0a:55:02:87:e7:1e:d1:1a:46:f7:b2:b7: b6:ca:a8:a0:35:9b:1a:2d:fa:9e:62:14:a0:8f:ef: af:a4:7c:5c:52:90:3d:de:82:d5:0f:c9:34:12:5d: e0:37:6b:5d:a0:60:ea:b9:c9:15:63:40:b2:c4:ec: b2:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A5:1B:C4:E7:82:CC:27:8C:D7:3E:37:19:0D:E4:C2:7A:0D:06:45 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212799.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:700::/40 Signature Algorithm: sha256WithRSAEncryption 56:17:ce:9b:1c:70:88:20:85:29:3c:d1:11:f7:27:54:76:b6: e8:17:80:8e:75:98:b5:e4:27:7b:dd:f6:6a:a4:5b:4d:d6:db: 69:9c:a9:ba:32:9e:55:e1:9b:cb:31:24:4b:46:25:36:d6:19: 9a:12:b8:df:7e:19:fc:da:6d:7e:fc:c7:fc:a4:64:fd:60:9f: 8f:98:10:8f:9b:1f:ca:38:7d:09:1c:1f:4f:20:7a:5d:1c:e3: fd:1d:40:c4:71:a3:a5:23:26:f7:df:e5:3f:d8:9b:08:da:d6: 11:d7:29:35:78:d8:de:31:91:e8:2c:7d:be:58:01:53:7a:74: 84:23:e5:54:cc:53:07:90:44:50:8d:45:90:d2:b8:90:c0:90: 0f:f0:a5:c1:38:a8:65:46:3d:67:89:9d:fc:20:8d:2f:07:a2: 31:ea:5a:3c:b9:2c:19:75:3a:de:f5:d1:ea:0a:d2:39:37:d6: 7f:6b:8e:5b:b3:a1:00:b1:76:f3:28:58:b3:c7:25:a4:e6:83: 56:19:66:08:f3:5b:1d:81:a3:fb:db:c0:62:36:b3:e1:2d:bf: 21:36:cf:70:85:35:e0:d6:7a:d2:4c:86:6b:f7:e5:06:d5:8a: ae:72:f3:a7:9c:e8:8c:bf:a8:45:fe:cb:5a:cc:a9:f4:fa:1d: 7e:9d:fd:f1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSVrJztd8HXFmfNIi3IDxLyLLCtUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDdaFw0yNjA3MDMwNjUzMDdaMDMxMTAvBgNV BAMTKDJCQTUxQkM0RTc4MkNDMjc4Q0Q3M0UzNzE5MERFNEMyN0EwRDA2NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRw5x1NjTr4OcE0kzYAjzx0k5M gkd5ThFkoyOLdigB/R/CYZjSAJOEWwFcCBckl6RO0g+NDZj8N6cMVrKsyK+NXy/W ENelafRr1Yo4RQzwygG7MxsM2WzA327mVdxr9YCsgtlWGtyHjSybueEnSHmWR6Q/ JKLMrtWe5FgbdSyiRbAy/EQA/qOqavTC3VSffSq7s+X0DPPArxg/J827PYimq6Hv 4S9Mtvoah3ysSiFKMdOWXwLXfjAcBT54ssv7fTMK6fy1GwpVAofnHtEaRveyt7bK qKA1mxot+p5iFKCP76+kfFxSkD3egtUPyTQSXeA3a12gYOq5yRVjQLLE7LL7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUK6UbxOeCzCeM1z43GQ3kwnoNBkUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyNzk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAcwDQYJKoZIhvcNAQELBQADggEBAFYX zpsccIgghSk80RH3J1R2tugXgI51mLXkJ3vd9mqkW03W22mcqboynlXhm8sxJEtG JTbWGZoSuN9+GfzabX78x/ykZP1gn4+YEI+bH8o4fQkcH08gel0c4/0dQMRxo6Uj Jvff5T/Ymwja1hHXKTV42N4xkegsfb5YAVN6dIQj5VTMUweQRFCNRZDSuJDAkA/w pcE4qGVGPWeJnfwgjS8HojHqWjy5LBl1Ot710eoK0jk31n9rjluzoQCxdvMoWLPH JaTmg1YZZgjzWx2Bo/vbwGI2s+EtvyE2z3CFNeDWetJMhmv35QbViq5y86ec6Iy/ qEX+y1rMqfT6HX6d/fE= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:02 2025 by rpki-client