$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215502.roa File: AS215502.roa (raw, json) Hash identifier: ZObNTFoMotkSj/YIJWZqye37SuwOOZY7czbSaWVDNUY= Subject key identifier: E7:20:63:39:29:FF:C8:43:39:AA:39:67:2F:B3:FA:8B:A9:D4:37:ED Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1FAF5785C2CCB2F0806D7F12FBF1529EEAEA161B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215502.roa Signing time: Fri 05 Jun 2026 07:12:36 +0000 ROA not before: Fri 05 Jun 2026 07:07:36 +0000 ROA not after: Fri 04 Jun 2027 07:12:36 +0000 asID: 215502 IP address blocks: 2a06:9f81:4600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:af:57:85:c2:cc:b2:f0:80:6d:7f:12:fb:f1:52:9e:ea:ea:16:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:36 2026 GMT Not After : Jun 4 07:12:36 2027 GMT Subject: CN=E720633929FFC84339AA39672FB3FA8BA9D437ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d0:c6:4f:d0:fd:d6:5a:04:8c:2c:bc:08:13: 62:57:f1:75:94:9f:b0:b2:04:6b:b8:39:e5:8e:58: 05:2b:00:96:bc:88:af:13:42:a8:0b:7b:71:84:19: 4a:9b:77:76:48:90:61:21:66:17:b0:3f:43:9c:b3: 82:5b:17:0a:8f:43:20:b4:ac:69:66:5d:dd:6c:cb: 46:c2:00:90:0b:27:50:58:c2:b3:d6:8d:98:d6:d7: 71:e1:e4:cc:df:0c:25:fe:6d:7f:27:2f:97:82:c3: b6:4b:e7:fe:3c:29:0a:e6:e6:41:d9:0b:b4:30:3b: 4c:40:87:65:00:a3:d6:7f:01:4c:a3:01:b1:fc:ec: bc:f8:e4:8c:fe:33:82:06:71:15:a5:a4:8b:cf:41: a7:54:f6:bc:4c:18:0a:5c:e1:00:fe:31:50:fe:aa: 60:da:47:dc:a8:18:57:ff:f6:c1:79:7f:10:5a:01: 15:71:bd:b8:4e:6c:48:01:74:00:1c:72:98:53:29: 23:76:cc:8e:10:4f:03:1f:44:a6:73:46:99:e0:f9: 10:50:14:63:98:03:fc:74:46:4f:8a:8a:e1:38:30: 1c:d7:7d:b1:f6:10:b1:4f:af:d1:20:cd:9b:96:a7: 34:d3:09:05:a3:ba:f6:a2:5a:a4:ff:0a:7a:97:fc: 76:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:20:63:39:29:FF:C8:43:39:AA:39:67:2F:B3:FA:8B:A9:D4:37:ED X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4600::/40 Signature Algorithm: sha256WithRSAEncryption 6a:90:86:f6:9f:9f:43:a8:4a:c5:ec:c4:c5:18:1d:6b:f0:8d: e1:87:76:a8:ac:b6:3c:31:3c:7f:1f:2d:a3:0c:63:b3:34:1e: 94:7a:d9:c8:b3:49:84:54:c2:40:82:f8:70:8a:45:a0:3e:0b: 78:72:35:63:17:0f:17:fb:1c:ac:e0:89:f5:2d:6a:e9:01:7a: 4c:9f:c8:7b:f4:81:66:3d:0b:ef:eb:75:04:5f:e9:ba:02:8a: ca:53:5a:96:c5:37:76:69:3e:e2:80:5c:58:e5:f7:95:0f:c1: 39:00:71:94:c2:12:c1:3e:9e:f7:c8:e3:69:94:ac:ba:57:a7: 7a:70:83:76:15:51:c8:17:04:ab:10:31:3b:d8:e0:d5:5a:14: c9:9f:f8:59:a9:75:36:eb:8f:ff:28:7a:ad:66:4b:c3:91:44: c2:24:2d:56:64:18:b3:e8:cd:30:2c:06:85:bd:1d:f9:3f:4c: ae:38:3e:b9:61:cc:e8:3b:aa:da:23:11:63:c5:ca:bb:bc:a2: 32:af:d7:66:90:b5:74:d7:eb:fa:91:00:80:67:76:5a:23:c3: ab:03:a0:23:b4:63:2f:7c:46:c7:56:96:07:67:2a:eb:c3:68: cc:82:b1:e2:a6:db:00:27:bb:a7:3c:8b:24:32:0b:b5:6e:94: af:42:ff:23 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUH69XhcLMsvCAbX8S+/FSnurqFhswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzZaFw0yNzA2MDQwNzEyMzZaMDMxMTAvBgNV BAMTKEU3MjA2MzM5MjlGRkM4NDMzOUFBMzk2NzJGQjNGQThCQTlENDM3RUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH0MZP0P3WWgSMLLwIE2JX8XWU n7CyBGu4OeWOWAUrAJa8iK8TQqgLe3GEGUqbd3ZIkGEhZhewP0Ocs4JbFwqPQyC0 rGlmXd1sy0bCAJALJ1BYwrPWjZjW13Hh5MzfDCX+bX8nL5eCw7ZL5/48KQrm5kHZ C7QwO0xAh2UAo9Z/AUyjAbH87Lz45Iz+M4IGcRWlpIvPQadU9rxMGApc4QD+MVD+ qmDaR9yoGFf/9sF5fxBaARVxvbhObEgBdAAccphTKSN2zI4QTwMfRKZzRpng+RBQ FGOYA/x0Rk+KiuE4MBzXfbH2ELFPr9EgzZuWpzTTCQWjuvaiWqT/CnqX/HaLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5yBjOSn/yEM5qjlnL7P6i6nUN+0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1NTAyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUYwDQYJKoZIhvcNAQELBQADggEBAGqQ hvafn0OoSsXsxMUYHWvwjeGHdqistjwxPH8fLaMMY7M0HpR62cizSYRUwkCC+HCK RaA+C3hyNWMXDxf7HKzgifUtaukBekyfyHv0gWY9C+/rdQRf6boCispTWpbFN3Zp PuKAXFjl95UPwTkAcZTCEsE+nvfI42mUrLpXp3pwg3YVUcgXBKsQMTvY4NVaFMmf +FmpdTbrj/8oeq1mS8ORRMIkLVZkGLPozTAsBoW9Hfk/TK44PrlhzOg7qtojEWPF yru8ojKv12aQtXTX6/qRAIBndlojw6sDoCO0Yy98RsdWlgdnKuvDaMyCseKm2wAn u6c8iyQyC7VulK9C/yM= -----END CERTIFICATE-----Generated at Thu Jun 11 19:13:35 2026 by rpki-client