$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212884.roa File: AS212884.roa (raw, json) Hash identifier: H3F8r1usY83yV4tlIcpaX71N+/Y1m+TmuddABMGD7PM= Subject key identifier: 71:C6:38:BD:B9:11:9B:E3:8D:42:A0:9F:58:8C:0B:80:D5:A9:D3:75 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 30186E89DA7A511F7863BAAD634BC513E3119276 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212884.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 212884 IP address blocks: 2a0a:6040:2900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:18:6e:89:da:7a:51:1f:78:63:ba:ad:63:4b:c5:13:e3:11:92:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=71C638BDB9119BE38D42A09F588C0B80D5A9D375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0a:c7:d5:8d:28:3a:42:dd:4e:fe:0d:46:90: a4:d4:0d:fb:04:a1:d3:9a:92:f6:90:77:f5:a1:d3: b5:6a:d5:47:48:ba:4d:a2:a9:15:57:d1:7f:71:7b: 26:f6:b0:07:f9:61:97:16:a2:46:03:53:08:13:9b: 0e:7f:6e:04:57:0f:5f:3d:ba:e3:9f:3a:3d:c7:7c: c9:47:b6:d1:45:b1:a6:22:0d:95:e3:6c:df:41:65: 53:4e:4e:1d:f9:5c:e1:6f:9a:79:43:ab:83:87:94: 8a:74:ef:0d:d9:72:94:10:e4:f3:eb:b7:fc:df:98: d5:02:b5:21:d5:d4:16:5e:a9:21:aa:ab:de:c7:cc: d0:05:92:35:f6:50:46:45:b8:18:60:23:86:7d:fc: 05:bc:37:6c:bf:7c:31:d4:da:53:66:94:c9:cf:7c: 17:2d:c0:e8:a1:48:ec:9f:56:7a:65:9e:5a:d9:4c: 6a:d5:be:99:61:45:ee:45:76:da:26:64:b6:3f:fd: d0:53:76:d2:85:34:13:cf:25:e1:82:f9:b8:2a:62: 6f:12:cf:dc:88:52:b0:81:27:e3:df:7a:d6:97:06: f0:ae:5f:14:d0:f1:1d:92:d5:6c:91:e9:aa:9f:a1: 1c:32:ff:46:24:01:2f:1b:96:59:dc:65:f1:3a:c4: f2:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C6:38:BD:B9:11:9B:E3:8D:42:A0:9F:58:8C:0B:80:D5:A9:D3:75 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212884.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2900::/40 Signature Algorithm: sha256WithRSAEncryption 5c:e1:96:67:64:3f:45:e6:9a:a4:12:e0:a1:05:5b:11:42:50: 4e:a5:aa:c3:55:28:90:b8:5e:81:79:47:d9:57:33:80:06:66: 69:02:56:1d:b9:4b:56:df:35:20:29:38:00:da:66:43:25:27: 1e:3b:aa:d3:cb:79:b4:6e:df:92:5a:bf:c4:d1:31:66:f5:5f: 49:f1:c8:eb:4c:b1:59:99:56:61:c9:9b:d8:33:75:c2:54:4c: 51:c0:2b:d7:b3:ed:bb:2c:f9:9e:bb:9a:51:d3:bc:10:e4:bd: 38:aa:83:9d:84:be:30:ba:5d:b5:16:69:66:46:87:2b:66:cb: 62:22:a2:08:be:2a:cf:ba:63:18:f4:f4:db:80:df:93:64:a2: 2c:9c:a9:80:f7:6c:5f:7d:bf:ff:1c:8b:3d:74:ac:e5:1c:94: e6:96:c7:22:4a:e1:1f:a3:67:b8:b2:54:55:0b:a3:91:2f:07: 4e:df:74:95:ca:06:60:c2:70:59:ab:8d:3f:da:12:7d:7b:1f: 3f:43:ff:a1:8f:a0:1e:e8:9f:a4:88:de:b8:20:c6:38:c3:c4: b0:4d:f8:cd:e2:5d:bc:43:30:44:46:3c:9c:16:47:b4:00:19: 1e:fb:75:a4:2a:ac:8f:3d:6e:3c:c3:e3:ae:17:70:53:40:3a: 45:8b:b5:f1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMBhuidp6UR94Y7qtY0vFE+MRknYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKDcxQzYzOEJEQjkxMTlCRTM4RDQyQTA5RjU4OEMwQjgwRDVBOUQzNzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMCsfVjSg6Qt1O/g1GkKTUDfsE odOakvaQd/Wh07Vq1UdIuk2iqRVX0X9xeyb2sAf5YZcWokYDUwgTmw5/bgRXD189 uuOfOj3HfMlHttFFsaYiDZXjbN9BZVNOTh35XOFvmnlDq4OHlIp07w3ZcpQQ5PPr t/zfmNUCtSHV1BZeqSGqq97HzNAFkjX2UEZFuBhgI4Z9/AW8N2y/fDHU2lNmlMnP fBctwOihSOyfVnplnlrZTGrVvplhRe5FdtomZLY//dBTdtKFNBPPJeGC+bgqYm8S z9yIUrCBJ+PfetaXBvCuXxTQ8R2S1WyR6aqfoRwy/0YkAS8bllncZfE6xPK1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUccY4vbkRm+ONQqCfWIwLgNWp03UwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyODg0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCkwDQYJKoZIhvcNAQELBQADggEBAFzh lmdkP0XmmqQS4KEFWxFCUE6lqsNVKJC4XoF5R9lXM4AGZmkCVh25S1bfNSApOADa ZkMlJx47qtPLebRu35Jav8TRMWb1X0nxyOtMsVmZVmHJm9gzdcJUTFHAK9ez7bss +Z67mlHTvBDkvTiqg52EvjC6XbUWaWZGhytmy2Iiogi+Ks+6Yxj09NuA35Nkoiyc qYD3bF99v/8ciz10rOUclOaWxyJK4R+jZ7iyVFULo5EvB07fdJXKBmDCcFmrjT/a En17Hz9D/6GPoB7on6SI3rggxjjDxLBN+M3iXbxDMERGPJwWR7QAGR77daQqrI89 bjzD464XcFNAOkWLtfE= -----END CERTIFICATE-----Generated at Sat Jul 5 04:13:15 2025 by rpki-client