$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213326.roa File: AS213326.roa (raw, json) Hash identifier: PXBbd/EcSuXPF7daT6Q6dcl9M3gv2mQqZN3HN/dKuuE= Subject key identifier: B7:7F:5C:C0:7A:5C:4B:D8:6D:BD:3C:EE:35:65:F0:45:0A:29:CC:7E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 35054DE1EE0854C78A6B466FCC4B6CF93E2B8EDA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213326.roa Signing time: Fri 05 Jun 2026 07:12:10 +0000 ROA not before: Fri 05 Jun 2026 07:07:10 +0000 ROA not after: Fri 04 Jun 2027 07:12:10 +0000 asID: 213326 IP address blocks: 2a06:9f81:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 13 Jun 2026 03:07:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:05:4d:e1:ee:08:54:c7:8a:6b:46:6f:cc:4b:6c:f9:3e:2b:8e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:10 2026 GMT Not After : Jun 4 07:12:10 2027 GMT Subject: CN=B77F5CC07A5C4BD86DBD3CEE3565F0450A29CC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4e:2d:2e:5b:6e:8c:a0:e7:b6:c4:c8:c8:a6: e3:45:40:37:e8:0a:f7:9e:06:ed:6e:3f:b4:3f:a8: dd:12:30:fb:48:57:ae:a1:36:f2:03:21:2c:50:67: 2b:e3:42:04:7c:15:17:3c:d1:36:09:df:33:77:0f: 16:9d:a5:f3:d2:fb:7d:33:40:8c:6d:20:92:f6:1f: 38:ae:96:02:07:a0:1c:56:39:0a:f4:29:48:a5:6e: a1:ff:c7:ad:34:99:8a:b7:db:c3:4d:78:f7:a1:d1: 60:43:fe:56:15:65:db:2d:95:70:4b:4e:7b:ea:72: ff:c3:56:b6:96:d4:20:39:35:f0:47:06:34:0f:72: d3:59:2b:ff:43:f3:83:41:78:46:63:31:66:48:61: 78:c1:f3:af:f2:2c:f6:1d:57:cb:2d:58:63:dd:b1: 29:b1:d8:12:b7:a2:04:4a:4e:83:bc:22:f3:4d:56: e8:d9:8b:53:eb:31:53:3e:fa:72:b8:b6:83:55:21: 11:f5:8d:32:84:0a:b8:28:1f:26:d3:d8:fd:a6:48: f8:5d:26:91:2c:9d:69:25:c2:fc:6f:36:53:b2:db: dc:27:d2:19:ee:2b:d0:8a:36:85:ea:39:06:0c:0e: f0:22:a7:a3:34:ba:6e:e1:ee:2f:2a:4e:5e:ea:23: cb:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7F:5C:C0:7A:5C:4B:D8:6D:BD:3C:EE:35:65:F0:45:0A:29:CC:7E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5000::/40 Signature Algorithm: sha256WithRSAEncryption a7:b9:c6:67:50:e1:8d:84:16:7f:1d:56:08:53:bc:f3:56:eb: bd:3d:18:3e:40:c6:af:40:e5:15:f4:3c:83:91:fe:03:a9:d0: d0:88:8e:e1:ad:29:d2:5a:52:f9:6a:a4:c0:0a:f0:1b:80:13: c0:4e:c4:4e:de:c2:6c:a2:bc:7a:cd:85:57:e2:4e:89:fc:9f: ea:b0:c4:5f:4b:76:4f:d9:ef:32:16:2d:f3:c1:e6:83:68:f7: 27:05:fc:45:18:b6:ae:4b:42:b6:82:64:94:8a:15:44:28:7e: d0:76:d2:e9:95:7d:e4:6b:40:a2:ba:e2:41:94:b2:5e:d0:e9: 23:b1:43:2c:9e:a8:7e:6e:79:6a:ea:f9:21:b8:5d:11:05:1e: 96:3c:6e:5d:ed:47:94:13:36:57:7d:24:42:74:3a:51:2e:c1: 0c:b0:72:d3:e8:cb:d3:66:f6:7b:10:b5:28:42:d2:e6:61:67: b0:1e:51:d9:db:d1:70:cf:af:92:3b:00:5d:a7:fd:ac:8b:5e: 89:fd:8e:5a:f2:d6:5e:15:55:3b:7a:53:cd:b6:37:17:2b:92: 50:c3:58:06:90:e2:d7:5d:cb:e1:c4:42:09:a9:d4:5d:04:4c: ea:fe:e3:42:06:91:36:0a:fd:db:a9:31:e0:79:f4:7c:33:a0: 08:db:84:65 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNQVN4e4IVMeKa0ZvzEts+T4rjtowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTBaFw0yNzA2MDQwNzEyMTBaMDMxMTAvBgNV BAMTKEI3N0Y1Q0MwN0E1QzRCRDg2REJEM0NFRTM1NjVGMDQ1MEEyOUNDN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqTi0uW26MoOe2xMjIpuNFQDfo CveeBu1uP7Q/qN0SMPtIV66hNvIDISxQZyvjQgR8FRc80TYJ3zN3DxadpfPS+30z QIxtIJL2HziulgIHoBxWOQr0KUilbqH/x600mYq328NNePeh0WBD/lYVZdstlXBL Tnvqcv/DVraW1CA5NfBHBjQPctNZK/9D84NBeEZjMWZIYXjB86/yLPYdV8stWGPd sSmx2BK3ogRKToO8IvNNVujZi1PrMVM++nK4toNVIRH1jTKECrgoHybT2P2mSPhd JpEsnWklwvxvNlOy29wn0hnuK9CKNoXqOQYMDvAip6M0um7h7i8qTl7qI8vPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUt39cwHpcS9htvTzuNWXwRQopzH4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEzMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVAwDQYJKoZIhvcNAQELBQADggEBAKe5 xmdQ4Y2EFn8dVghTvPNW6709GD5Axq9A5RX0PIOR/gOp0NCIjuGtKdJaUvlqpMAK 8BuAE8BOxE7ewmyivHrNhVfiTon8n+qwxF9Ldk/Z7zIWLfPB5oNo9ycF/EUYtq5L QraCZJSKFUQoftB20umVfeRrQKK64kGUsl7Q6SOxQyyeqH5ueWrq+SG4XREFHpY8 bl3tR5QTNld9JEJ0OlEuwQywctPoy9Nm9nsQtShC0uZhZ7AeUdnb0XDPr5I7AF2n /ayLXon9jlry1l4VVTt6U822NxcrklDDWAaQ4tddy+HEQgmp1F0ETOr+40IGkTYK /dupMeB59HwzoAjbhGU= -----END CERTIFICATE-----Generated at Fri Jun 12 08:29:24 2026 by rpki-client