$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213326.roa File: AS213326.roa (raw, json) Hash identifier: ScP5VRz5lerAZvtfdLJZoyoCv/gs6XkW8iP5Dg89hUc= Subject key identifier: 5C:AF:A0:C4:D9:AD:06:BA:67:3A:53:E9:FD:D7:97:70:B5:22:B8:C6 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 10EDCE03682330F9E8EB8A58A7A021BB20614FAA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213326.roa Signing time: Fri 04 Jul 2025 06:53:27 +0000 ROA not before: Fri 04 Jul 2025 06:48:27 +0000 ROA not after: Fri 03 Jul 2026 06:53:27 +0000 asID: 213326 IP address blocks: 2a06:9f81:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ed:ce:03:68:23:30:f9:e8:eb:8a:58:a7:a0:21:bb:20:61:4f:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:27 2025 GMT Not After : Jul 3 06:53:27 2026 GMT Subject: CN=5CAFA0C4D9AD06BA673A53E9FDD79770B522B8C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:db:c0:38:3a:2b:44:92:1a:39:4f:3f:7e:8d: 51:0f:bc:33:66:a0:a0:25:5b:b7:22:90:3a:4f:ce: 30:6f:11:4f:61:81:3c:d7:82:1b:e1:3b:10:af:3c: b8:52:82:2b:97:cf:11:35:60:17:73:a6:13:0d:4c: cf:66:d5:d8:ea:43:ec:2a:2e:7e:f9:4b:ef:17:48: 68:f9:ef:5e:e3:9c:56:49:d3:18:8d:d1:b9:a4:85: bf:4c:0d:fe:b5:3f:ed:f1:82:bc:89:e4:2f:f2:91: ee:50:8f:90:f7:2c:20:dc:70:fe:67:9a:46:8c:2d: 12:a8:93:ce:54:83:fa:5d:52:5a:7a:6a:3d:ff:15: 82:24:aa:ed:37:8c:87:1a:72:0a:f0:ec:f7:b3:f9: 65:12:a2:c4:0e:9b:42:bf:c9:a6:1b:60:98:83:ec: ee:06:5f:06:6a:2c:1e:32:8c:c0:84:ae:58:15:94: 51:10:c1:68:fa:03:cb:3b:8a:ac:9b:b3:46:89:ea: fd:7f:16:49:16:4a:6e:54:f5:e9:d0:10:e4:43:c2: 19:22:61:d6:17:61:0d:1f:2c:56:93:03:f0:b6:a3: 54:80:bb:bd:94:e7:66:f3:56:e4:d3:6b:e7:ca:19: bc:16:d7:cd:81:20:32:39:e0:e5:70:f9:a6:41:13: ac:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:AF:A0:C4:D9:AD:06:BA:67:3A:53:E9:FD:D7:97:70:B5:22:B8:C6 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS213326.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5000::/40 Signature Algorithm: sha256WithRSAEncryption ad:c6:03:fa:68:f0:1b:f0:ad:55:9b:03:02:3e:da:7a:f0:0f: 31:9d:5f:ef:91:9f:1e:4a:82:0a:08:ed:b6:7f:44:a5:06:78: dd:13:01:48:1a:50:0e:0a:0e:b7:5f:8e:2a:69:c6:75:a0:cb: 32:67:05:b9:02:07:5c:4b:c7:93:15:39:a6:4e:32:98:84:f8: eb:8c:59:5e:e3:28:27:8a:6e:17:22:61:c8:00:c6:3d:d3:3b: dd:d9:11:a5:c7:a9:3a:eb:e0:bb:30:2a:0a:4a:14:26:d4:3e: 88:07:53:b7:57:35:52:e9:63:eb:11:a5:cb:c2:25:cb:0b:f1: d7:8d:e6:56:47:c8:26:c7:a2:79:c6:24:c2:62:65:cc:63:7c: fe:f3:62:ce:09:e9:ba:22:61:4a:0c:53:9e:c3:92:9e:a7:71: cf:5e:84:5e:71:68:f2:d5:84:8e:b7:cb:33:30:8f:bd:b1:43: a0:11:67:21:13:91:d9:fc:63:9f:d1:e8:64:88:dc:a1:88:50: 46:8a:26:2a:11:8d:69:96:6b:ca:3b:c6:76:ac:27:e7:40:b1: bc:59:ef:a4:d6:24:89:52:bd:cb:53:c1:b0:bc:de:43:52:f2: ce:6c:7f:84:26:1f:31:1e:29:0b:91:15:9f:73:46:41:3a:8c: 90:c5:c3:b1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEO3OA2gjMPno64pYp6AhuyBhT6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjdaFw0yNjA3MDMwNjUzMjdaMDMxMTAvBgNV BAMTKDVDQUZBMEM0RDlBRDA2QkE2NzNBNTNFOUZERDc5NzcwQjUyMkI4QzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/28A4OitEkho5Tz9+jVEPvDNm oKAlW7cikDpPzjBvEU9hgTzXghvhOxCvPLhSgiuXzxE1YBdzphMNTM9m1djqQ+wq Ln75S+8XSGj5717jnFZJ0xiN0bmkhb9MDf61P+3xgryJ5C/yke5Qj5D3LCDccP5n mkaMLRKok85Ug/pdUlp6aj3/FYIkqu03jIcacgrw7Pez+WUSosQOm0K/yaYbYJiD 7O4GXwZqLB4yjMCErlgVlFEQwWj6A8s7iqybs0aJ6v1/FkkWSm5U9enQEORDwhki YdYXYQ0fLFaTA/C2o1SAu72U52bzVuTTa+fKGbwW182BIDI54OVw+aZBE6y1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXK+gxNmtBrpnOlPp/deXcLUiuMYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEzMzI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVAwDQYJKoZIhvcNAQELBQADggEBAK3G A/po8BvwrVWbAwI+2nrwDzGdX++Rnx5KggoI7bZ/RKUGeN0TAUgaUA4KDrdfjipp xnWgyzJnBbkCB1xLx5MVOaZOMpiE+OuMWV7jKCeKbhciYcgAxj3TO93ZEaXHqTrr 4LswKgpKFCbUPogHU7dXNVLpY+sRpcvCJcsL8deN5lZHyCbHonnGJMJiZcxjfP7z Ys4J6boiYUoMU57Dkp6ncc9ehF5xaPLVhI63yzMwj72xQ6ARZyETkdn8Y5/R6GSI 3KGIUEaKJioRjWmWa8o7xnasJ+dAsbxZ76TWJIlSvctTwbC83kNS8s5sf4QmHzEe KQuRFZ9zRkE6jJDFw7E= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:43 2025 by rpki-client