$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212854.roa File: AS212854.roa (raw, json) Hash identifier: IcQSjqGANeW/ZSllyEpEUkYHSXIFsEns2ud5bhJI/gE= Subject key identifier: EE:1E:0B:EA:64:B6:08:F3:1D:2B:E8:55:56:2E:82:98:64:E5:9A:CC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3765776FD6697CB4A08571026AD4CBAFE6CE4F24 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212854.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 212854 IP address blocks: 2a05:dfc1:3e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:65:77:6f:d6:69:7c:b4:a0:85:71:02:6a:d4:cb:af:e6:ce:4f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=EE1E0BEA64B608F31D2BE855562E829864E59ACC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9d:19:89:76:93:ec:c0:ca:d8:93:7d:d8:a8: 13:5c:5a:c9:2c:d2:6d:3a:91:ef:49:51:af:60:81: 3c:f3:75:f5:0c:f9:f2:92:f1:61:54:6f:c9:61:52: 09:ac:df:b7:87:cc:ec:f2:96:d3:44:43:b3:68:11: c1:c0:f2:b6:a2:e8:36:67:e5:71:54:16:db:9c:df: 69:9c:f5:15:42:65:37:1b:9c:86:12:64:0c:ed:e7: 6c:5d:9a:18:b9:15:99:30:70:80:92:90:2c:79:f8: 99:55:4a:d8:73:aa:87:17:81:4b:f8:c8:a2:29:a8: 65:5b:ff:b5:cd:c8:9e:85:0c:b3:7b:72:b0:4a:05: 2e:36:d1:69:ec:c7:3a:98:5c:44:dc:0a:f7:f3:6a: ce:4d:8e:31:67:57:d0:11:dc:34:04:9d:07:be:d2: 1e:d4:77:ce:26:7e:ba:97:f4:ca:2e:58:63:68:44: 71:6c:b0:08:74:e7:0b:48:87:b1:9b:59:fc:ff:26: 95:8c:cb:6e:75:bd:70:8a:62:6a:4c:48:b5:27:fb: cd:18:5a:a1:90:3f:0b:b3:40:47:63:49:4c:f7:09: 26:d9:e1:f0:7f:dd:36:5a:c5:cc:aa:0f:ad:af:75: 06:62:0c:f6:05:9d:ea:01:0e:3b:88:f3:84:8a:ca: 04:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1E:0B:EA:64:B6:08:F3:1D:2B:E8:55:56:2E:82:98:64:E5:9A:CC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212854.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3e00::/40 Signature Algorithm: sha256WithRSAEncryption a7:a2:92:bc:ba:ee:1e:ab:cc:bb:2f:1d:eb:70:fd:f5:d8:37: ab:51:72:35:5d:74:2b:5c:46:54:18:df:bd:28:cf:f9:97:71: 4d:53:30:6d:d8:09:53:df:16:d3:24:7e:27:bc:27:bd:49:d7: 17:ec:64:f3:4a:93:6f:c5:59:55:34:46:5b:a1:6f:60:e2:8a: cc:da:62:11:75:f4:62:75:ec:a1:68:d6:c6:7f:f3:69:d9:5b: 61:fd:90:31:29:f3:70:34:21:a0:dd:4a:88:71:1b:8a:e4:d9: 33:13:bc:de:9c:74:14:7c:09:d5:15:06:65:86:1c:e3:5c:4b: d6:cb:bf:7a:41:6a:6d:b3:1c:ac:dc:85:ab:86:98:30:a2:08: 59:1a:c0:81:f2:c1:36:cb:1b:ef:e9:a9:2d:3c:cb:47:74:8f: 55:e8:a4:b7:b7:f0:40:30:8f:8d:79:8a:aa:c4:ed:4c:ea:cd: 95:1d:d9:08:b7:b6:d1:be:11:5a:37:e5:7c:ce:8d:d5:f1:64: 82:c1:11:00:e0:86:dd:5a:e2:02:42:58:31:53:f2:e5:24:d9: 90:3d:8d:46:58:22:6f:53:94:55:c0:db:0c:a5:8e:e0:59:70: 92:3f:1f:bb:89:21:72:2a:62:46:47:66:de:da:f8:87:b4:10: 04:4e:92:0b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUN2V3b9ZpfLSghXECatTLr+bOTyQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKEVFMUUwQkVBNjRCNjA4RjMxRDJCRTg1NTU2MkU4Mjk4NjRFNTlBQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfnRmJdpPswMrYk33YqBNcWsks 0m06ke9JUa9ggTzzdfUM+fKS8WFUb8lhUgms37eHzOzyltNEQ7NoEcHA8rai6DZn 5XFUFtuc32mc9RVCZTcbnIYSZAzt52xdmhi5FZkwcICSkCx5+JlVSthzqocXgUv4 yKIpqGVb/7XNyJ6FDLN7crBKBS420WnsxzqYXETcCvfzas5NjjFnV9AR3DQEnQe+ 0h7Ud84mfrqX9MouWGNoRHFssAh05wtIh7GbWfz/JpWMy251vXCKYmpMSLUn+80Y WqGQPwuzQEdjSUz3CSbZ4fB/3TZaxcyqD62vdQZiDPYFneoBDjuI84SKygQhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7h4L6mS2CPMdK+hVVi6CmGTlmswwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyODU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwT4wDQYJKoZIhvcNAQELBQADggEBAKei kry67h6rzLsvHetw/fXYN6tRcjVddCtcRlQY370oz/mXcU1TMG3YCVPfFtMkfie8 J71J1xfsZPNKk2/FWVU0Rluhb2DiiszaYhF19GJ17KFo1sZ/82nZW2H9kDEp83A0 IaDdSohxG4rk2TMTvN6cdBR8CdUVBmWGHONcS9bLv3pBam2zHKzchauGmDCiCFka wIHywTbLG+/pqS08y0d0j1XopLe38EAwj415iqrE7UzqzZUd2Qi3ttG+EVo35XzO jdXxZILBEQDght1a4gJCWDFT8uUk2ZA9jUZYIm9TlFXA2wyljuBZcJI/H7uJIXIq YkZHZt7a+Ie0EAROkgs= -----END CERTIFICATE-----Generated at Sat Jul 5 04:12:36 2025 by rpki-client