$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214909.roa File: AS214909.roa (raw, json) Hash identifier: tfiR7Lx6YG6Vo1Y+A8oOEddHWuHQXPH4ll5Xp5YMw3I= Subject key identifier: 74:90:DA:D7:E8:29:76:A6:30:2B:CC:4A:D5:7B:68:F6:0C:55:C9:85 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 20C5A5A5866C6042C1FE8ACC2E1FBD1A030F9293 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214909.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 214909 IP address blocks: 2a06:9f81:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c5:a5:a5:86:6c:60:42:c1:fe:8a:cc:2e:1f:bd:1a:03:0f:92:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=7490DAD7E82976A6302BCC4AD57B68F60C55C985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9a:43:7c:8d:53:f3:bf:48:7f:45:7f:e8:f9: 3c:1f:96:95:f1:a5:39:8b:fd:27:e5:9d:ad:c9:68: b8:1c:ec:6b:ea:18:4a:c5:46:03:0f:4e:f0:50:56: 4e:a4:67:38:32:28:91:0d:c6:63:0c:30:ad:b5:90: 11:14:56:7b:82:7e:9e:5f:97:ec:2a:d0:ff:c9:ad: a7:6a:4e:a1:80:47:20:2f:db:3c:0c:b9:bb:21:ff: c6:6c:51:ad:e5:22:e4:c0:b6:21:9b:34:85:a4:05: 26:27:aa:9a:f3:0d:c5:ac:c6:12:dd:aa:5b:fa:23: c0:a4:94:8d:2f:40:0e:23:e6:36:a8:06:cc:05:ea: f5:d4:b8:8d:2d:3d:d2:80:a8:37:d0:20:fd:f7:e8: 62:69:0e:4d:63:63:72:b5:8c:c1:1b:83:37:07:ee: 41:d2:49:bd:37:f8:9f:24:be:e6:64:d5:6c:ae:98: 3b:fb:a1:56:5a:d6:78:5e:45:ba:8c:26:d8:39:2b: 41:6e:6b:a5:90:8b:44:a7:bf:5e:c6:42:22:71:1b: 4f:cd:44:9f:50:ba:22:38:67:f9:6a:a2:27:33:e9: 4f:74:dc:9c:b0:ac:c3:82:a6:1d:17:0a:d9:6b:ac: 15:82:4b:d9:6f:5b:b7:e6:12:95:07:67:d4:d3:5e: b0:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:90:DA:D7:E8:29:76:A6:30:2B:CC:4A:D5:7B:68:F6:0C:55:C9:85 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214909.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3800::/40 Signature Algorithm: sha256WithRSAEncryption 55:56:2f:68:d8:09:c8:93:09:d8:d6:c6:bc:7a:dc:c4:3c:ff: 0f:cf:b5:21:93:c2:96:d9:52:01:23:de:be:37:85:d2:f8:6c: b4:15:25:9f:8d:68:72:78:9a:f4:71:86:c3:d4:2b:55:6f:84: 18:bc:96:97:01:78:87:da:c9:2b:79:60:6e:01:9f:dc:08:f7: df:75:6e:2d:69:b8:e1:88:10:26:4e:be:67:d3:a3:b5:db:e5: f8:9c:0d:92:d3:52:4b:25:a8:b1:a5:10:cb:ef:81:b3:21:f0: 2f:8b:38:d3:5c:d4:07:a6:30:cc:8f:d8:61:6a:22:b7:d1:15: ad:86:be:99:6d:b7:42:ab:e0:b7:32:39:fd:d7:fb:e4:ca:c0: 60:9e:5e:44:12:3f:dc:7a:19:3c:ca:a2:55:54:2f:c5:ac:92: 37:4a:e3:22:09:ac:1b:fc:0e:7c:83:14:fc:f1:a2:30:0c:9a: f8:b1:94:a6:41:30:c2:fd:2e:7f:c8:70:96:56:a5:5c:ae:64: 4f:91:e9:df:75:28:0e:68:1e:4e:f6:06:7a:d7:3a:19:88:dc: 16:6d:fd:76:e8:16:70:f8:e9:85:97:2c:bf:59:ff:c4:18:cc: fa:54:62:8b:ec:2d:69:d9:be:fe:1b:47:e5:68:56:46:b8:f6: 81:95:1b:de -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIMWlpYZsYELB/orMLh+9GgMPkpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDc0OTBEQUQ3RTgyOTc2QTYzMDJCQ0M0QUQ1N0I2OEY2MEM1NUM5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7mkN8jVPzv0h/RX/o+TwflpXx pTmL/Sflna3JaLgc7GvqGErFRgMPTvBQVk6kZzgyKJENxmMMMK21kBEUVnuCfp5f l+wq0P/JradqTqGARyAv2zwMubsh/8ZsUa3lIuTAtiGbNIWkBSYnqprzDcWsxhLd qlv6I8CklI0vQA4j5jaoBswF6vXUuI0tPdKAqDfQIP336GJpDk1jY3K1jMEbgzcH 7kHSSb03+J8kvuZk1WyumDv7oVZa1nheRbqMJtg5K0Fua6WQi0Snv17GQiJxG0/N RJ9QuiI4Z/lqoicz6U903JywrMOCph0XCtlrrBWCS9lvW7fmEpUHZ9TTXrDlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdJDa1+gpdqYwK8xK1Xto9gxVyYUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE0OTA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTgwDQYJKoZIhvcNAQELBQADggEBAFVW L2jYCciTCdjWxrx63MQ8/w/PtSGTwpbZUgEj3r43hdL4bLQVJZ+NaHJ4mvRxhsPU K1VvhBi8lpcBeIfaySt5YG4Bn9wI9991bi1puOGIECZOvmfTo7Xb5ficDZLTUksl qLGlEMvvgbMh8C+LONNc1AemMMyP2GFqIrfRFa2Gvpltt0Kr4LcyOf3X++TKwGCe XkQSP9x6GTzKolVUL8WskjdK4yIJrBv8DnyDFPzxojAMmvixlKZBMML9Ln/IcJZW pVyuZE+R6d91KA5oHk72BnrXOhmI3BZt/XboFnD46YWXLL9Z/8QYzPpUYovsLWnZ vv4bR+VoVka49oGVG94= -----END CERTIFICATE-----Generated at Sat Jul 5 03:45:39 2025 by rpki-client