$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214847.roa File: AS214847.roa (raw, json) Hash identifier: 8m/RWMmHmwggrjZvg8S746j7xmpN2nrK/xWca6X0zkI= Subject key identifier: 9C:66:05:D5:7E:FF:99:2A:A4:EE:69:90:51:01:C5:EA:00:32:D9:B2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4E0E11EBC63226955A202EAC2A125389BB0933C2 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214847.roa Signing time: Fri 04 Jul 2025 06:53:28 +0000 ROA not before: Fri 04 Jul 2025 06:48:28 +0000 ROA not after: Fri 03 Jul 2026 06:53:28 +0000 asID: 214847 IP address blocks: 2a06:9f81:4300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:0e:11:eb:c6:32:26:95:5a:20:2e:ac:2a:12:53:89:bb:09:33:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:28 2025 GMT Not After : Jul 3 06:53:28 2026 GMT Subject: CN=9C6605D57EFF992AA4EE69905101C5EA0032D9B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:33:82:a0:37:78:20:a8:56:b1:5e:96:74:11: a3:82:91:80:9d:33:fa:8c:40:8c:3c:e3:6e:3c:61: dd:1a:e6:d9:9e:3f:e3:d9:d2:6b:5b:98:83:0d:f4: 2e:b4:82:44:d0:0e:b8:d0:3d:f3:df:1f:78:8d:f5: 71:2a:16:45:50:94:ce:8a:40:9e:dd:57:01:a9:bd: 86:a3:d0:da:e3:77:db:81:8d:c6:64:f2:00:8e:d7: 2b:ba:d4:13:08:6a:b2:9a:53:aa:84:f9:18:94:39: c2:d5:f0:23:5c:6b:ab:6e:7e:23:2e:25:b8:1f:38: 16:96:a0:f7:25:a6:88:03:b9:e7:9d:fb:da:ed:dc: 3c:d2:2e:92:66:90:cd:83:6a:53:69:1c:41:41:70: 5f:0c:7e:70:e2:32:54:83:94:18:44:6d:dd:a7:5e: a7:4b:9b:20:d6:26:aa:3e:90:cd:a1:6c:2d:53:ac: 3b:02:39:15:1b:1e:49:a7:3b:d1:cd:55:2f:2a:e4: ba:b8:fe:a4:06:83:8c:28:28:f3:cf:43:4d:13:5d: 41:d4:bc:8b:8c:2d:02:2d:60:d6:18:71:35:2c:c7: e8:6b:31:19:5b:27:6a:81:a5:8e:9c:fb:44:54:4f: d5:31:a2:be:fc:c0:14:e4:29:6b:67:0c:9a:1b:15: 82:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:66:05:D5:7E:FF:99:2A:A4:EE:69:90:51:01:C5:EA:00:32:D9:B2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214847.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4300::/40 Signature Algorithm: sha256WithRSAEncryption c1:10:d1:8d:0a:23:f9:48:c5:f9:9a:5c:75:14:b4:bb:76:6d: 62:59:42:44:8e:b9:54:f0:c9:8c:a1:3c:11:46:79:a2:0d:fa: 4f:76:cb:2d:2f:5b:48:e0:8a:87:37:b2:c7:18:c0:b7:bb:c2: 0a:c6:b1:ca:f5:fb:e3:6c:19:ab:7b:28:df:56:ba:1e:ae:2a: 82:47:e7:d4:37:a2:aa:29:2e:ca:9e:77:2d:ea:1a:db:eb:46: 1d:34:7f:60:65:66:05:58:11:5a:70:73:36:0c:43:9c:9c:29: 88:e7:47:91:94:d2:6e:d0:ef:e1:1e:34:26:65:91:82:28:3f: eb:6e:2e:ad:af:ff:1d:b1:78:46:2b:01:e3:40:4b:16:bf:c4: 8b:5d:d8:b3:07:67:bb:f1:b3:cc:cd:36:7e:55:0d:89:5f:1c: 02:b8:3f:85:c9:ef:98:3f:73:c3:4e:74:8e:79:cb:3a:13:f2: b9:95:0d:0e:52:41:69:f3:84:2b:bb:71:af:8f:7b:d0:f5:9f: a2:fc:2e:0a:ab:01:45:8a:24:02:57:22:08:d8:17:37:27:b9: 0a:81:16:8f:df:64:6e:08:4a:2b:6b:1e:77:d1:30:fc:b0:1d: d4:aa:98:5d:bc:7b:d7:9b:31:bc:1b:16:4d:34:ab:1d:6e:30: 36:8e:9a:b6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTg4R68YyJpVaIC6sKhJTibsJM8IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjhaFw0yNjA3MDMwNjUzMjhaMDMxMTAvBgNV BAMTKDlDNjYwNUQ1N0VGRjk5MkFBNEVFNjk5MDUxMDFDNUVBMDAzMkQ5QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxM4KgN3ggqFaxXpZ0EaOCkYCd M/qMQIw84248Yd0a5tmeP+PZ0mtbmIMN9C60gkTQDrjQPfPfH3iN9XEqFkVQlM6K QJ7dVwGpvYaj0Nrjd9uBjcZk8gCO1yu61BMIarKaU6qE+RiUOcLV8CNca6tufiMu JbgfOBaWoPclpogDueed+9rt3DzSLpJmkM2DalNpHEFBcF8MfnDiMlSDlBhEbd2n XqdLmyDWJqo+kM2hbC1TrDsCORUbHkmnO9HNVS8q5Lq4/qQGg4woKPPPQ00TXUHU vIuMLQItYNYYcTUsx+hrMRlbJ2qBpY6c+0RUT9Uxor78wBTkKWtnDJobFYKxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUnGYF1X7/mSqk7mmQUQHF6gAy2bIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE0ODQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUMwDQYJKoZIhvcNAQELBQADggEBAMEQ 0Y0KI/lIxfmaXHUUtLt2bWJZQkSOuVTwyYyhPBFGeaIN+k92yy0vW0jgioc3sscY wLe7wgrGscr1++NsGat7KN9Wuh6uKoJH59Q3oqopLsqedy3qGtvrRh00f2BlZgVY EVpwczYMQ5ycKYjnR5GU0m7Q7+EeNCZlkYIoP+tuLq2v/x2xeEYrAeNASxa/xItd 2LMHZ7vxs8zNNn5VDYlfHAK4P4XJ75g/c8NOdI55yzoT8rmVDQ5SQWnzhCu7ca+P e9D1n6L8LgqrAUWKJAJXIgjYFzcnuQqBFo/fZG4ISitrHnfRMPywHdSqmF28e9eb MbwbFk00qx1uMDaOmrY= -----END CERTIFICATE-----Generated at Sat Jul 5 06:08:36 2025 by rpki-client