$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213293.roa File: AS213293.roa (raw, json) Hash identifier: sOlJWeZslISbcLhCLclnrzWH/oORCs84EVy0KgWz3zA= Subject key identifier: DB:0B:56:8C:69:43:E4:3A:77:EA:FA:5D:B5:D9:74:88:6A:C2:98:05 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6B84E27D6F018E5757DE5E01A45AB36395881156 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213293.roa Signing time: Fri 04 Jul 2025 06:53:24 +0000 ROA not before: Fri 04 Jul 2025 06:48:24 +0000 ROA not after: Fri 03 Jul 2026 06:53:24 +0000 asID: 213293 IP address blocks: 2a0a:6040:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:84:e2:7d:6f:01:8e:57:57:de:5e:01:a4:5a:b3:63:95:88:11:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:24 2025 GMT Not After : Jul 3 06:53:24 2026 GMT Subject: CN=DB0B568C6943E43A77EAFA5DB5D974886AC29805 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:7c:42:20:fc:54:03:67:4c:75:6b:8b:87:98: 81:b6:79:e3:2f:d6:eb:ad:0b:48:5a:e9:3b:f2:12: da:94:32:40:22:0b:03:6b:cc:f1:f2:44:29:da:e4: 5f:ea:92:80:4b:9a:0f:3b:d4:14:35:f6:f3:cf:dc: 87:ba:05:87:0e:81:1d:51:57:95:cc:67:4a:6c:fc: fe:75:ed:f1:d4:72:f3:4a:e4:cc:83:6c:f6:b8:78: 76:e0:08:f3:69:a3:e9:9a:68:0d:97:d6:af:26:7f: 51:8e:f5:40:9d:04:b1:11:64:72:22:0d:da:1a:ce: 93:21:2a:bc:35:d5:c4:ff:71:de:d4:bd:8b:0c:4f: a6:8c:74:87:4b:e9:78:65:29:db:d3:64:91:8e:7b: a9:0a:ef:94:1d:69:b5:f3:93:42:6b:4c:98:ba:6d: b0:8f:e7:5f:35:85:47:8d:3d:63:dd:ce:3a:15:3e: 68:f2:61:72:28:16:ab:28:e3:d2:c9:ab:5d:65:d8: 49:70:b8:68:4c:2f:56:a9:fb:a3:18:3f:10:1f:68: 86:e8:31:9e:ee:57:00:27:71:56:bb:b5:8d:0d:70: 1d:c4:6a:3b:97:c5:65:67:f7:a1:9e:94:99:2f:2f: 98:23:64:00:30:47:af:6e:33:f5:6f:fd:90:11:a2: 15:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:0B:56:8C:69:43:E4:3A:77:EA:FA:5D:B5:D9:74:88:6A:C2:98:05 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213293.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 80:46:f3:a1:8a:d9:a0:2d:3c:8f:75:0d:f4:5b:d7:35:18:61: df:8f:7c:ca:e8:63:a5:93:25:62:51:cf:88:2f:ec:e1:96:31: 79:f0:a8:94:1a:d3:a2:ea:db:a3:78:9a:c8:97:11:47:a9:a2: 71:7d:32:56:f7:ea:a7:b9:ad:cf:43:d8:0b:be:e7:78:4f:37: b9:1b:e6:df:da:ca:1a:d0:d3:54:8e:f2:5c:f7:2f:8d:05:b6: 7f:ac:d0:07:cc:f1:77:9d:d1:0e:1f:c0:5f:2d:1a:35:e9:90: df:94:9f:4e:96:4d:86:f2:61:cc:26:73:39:e8:ea:2e:ec:47: 35:c7:af:8c:ca:50:19:67:f2:cc:80:83:27:c8:eb:1b:3a:12: 12:a5:41:bf:0b:3b:d3:8d:4c:d4:51:ca:a2:41:3a:f8:86:3a: da:4b:74:77:49:9f:a1:8e:c7:06:09:89:27:ae:93:a8:85:81: 39:78:96:cf:8d:46:c6:3c:40:95:26:73:35:6c:81:57:86:53: 71:04:fb:c2:94:a8:bb:02:58:1f:27:1c:fb:3c:2b:9b:fa:91: 79:13:36:e3:b6:f6:d8:ef:d1:25:92:7b:6d:b9:29:70:93:c9: aa:a4:29:c7:e6:50:35:57:bb:6a:f0:84:c5:23:76:80:7b:1f: 20:a3:97:f3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUa4TifW8BjldX3l4BpFqzY5WIEVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjRaFw0yNjA3MDMwNjUzMjRaMDMxMTAvBgNV BAMTKERCMEI1NjhDNjk0M0U0M0E3N0VBRkE1REI1RDk3NDg4NkFDMjk4MDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDefEIg/FQDZ0x1a4uHmIG2eeMv 1uutC0ha6TvyEtqUMkAiCwNrzPHyRCna5F/qkoBLmg871BQ19vPP3Ie6BYcOgR1R V5XMZ0ps/P517fHUcvNK5MyDbPa4eHbgCPNpo+maaA2X1q8mf1GO9UCdBLERZHIi DdoazpMhKrw11cT/cd7UvYsMT6aMdIdL6XhlKdvTZJGOe6kK75QdabXzk0JrTJi6 bbCP5181hUeNPWPdzjoVPmjyYXIoFqso49LJq11l2ElwuGhML1ap+6MYPxAfaIbo MZ7uVwAncVa7tY0NcB3EajuXxWVn96GelJkvL5gjZAAwR69uM/Vv/ZARohUrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2wtWjGlD5Dp36vpdtdl0iGrCmAUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEzMjkzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJowDQYJKoZIhvcNAQELBQADggEBAIBG 86GK2aAtPI91DfRb1zUYYd+PfMroY6WTJWJRz4gv7OGWMXnwqJQa06Lq26N4msiX EUeponF9Mlb36qe5rc9D2Au+53hPN7kb5t/ayhrQ01SO8lz3L40Ftn+s0AfM8Xed 0Q4fwF8tGjXpkN+Un06WTYbyYcwmczno6i7sRzXHr4zKUBln8syAgyfI6xs6EhKl Qb8LO9ONTNRRyqJBOviGOtpLdHdJn6GOxwYJiSeuk6iFgTl4ls+NRsY8QJUmczVs gVeGU3EE+8KUqLsCWB8nHPs8K5v6kXkTNuO29tjv0SWSe225KXCTyaqkKcfmUDVX u2rwhMUjdoB7HyCjl/M= -----END CERTIFICATE-----Generated at Sat Jul 5 04:12:46 2025 by rpki-client