$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215502.roa File: AS215502.roa (raw, json) Hash identifier: blDrL8f73sK7vNTqPUX78elfsyCMTs+QbWLgbDMuHu0= Subject key identifier: 4D:2C:11:A7:63:A5:EC:2E:B5:9E:93:6A:90:51:5F:00:6C:CD:17:0C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0B66652BC4289FA8E7571A4895B9ECACB636B4DC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215502.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 215502 IP address blocks: 2a06:9f81:4600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:66:65:2b:c4:28:9f:a8:e7:57:1a:48:95:b9:ec:ac:b6:36:b4:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=4D2C11A763A5EC2EB59E936A90515F006CCD170C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:3d:58:86:6f:8d:c0:4a:bf:96:62:93:46: bf:4c:f1:24:90:1a:7d:80:24:0e:dc:fb:e1:3f:f8: c4:c0:af:4f:c6:54:0a:a7:cf:d0:fb:a7:05:fa:1a: 74:e5:bb:bd:3f:12:f1:77:aa:2e:de:05:0f:53:38: 0a:2f:47:d2:81:4c:75:11:95:8a:14:98:b7:67:6c: 6f:c9:76:25:cc:f1:2b:56:3b:7f:74:c7:d9:b9:32: 3c:54:d9:ef:29:cb:bb:15:1c:24:98:8a:56:b1:c8: eb:90:28:da:52:bd:c6:98:52:f3:d0:98:d6:21:50: 10:58:fe:31:da:1b:2c:f4:fd:3e:86:94:c0:97:be: 00:68:1f:a4:4d:2c:0f:5d:75:82:46:ce:16:95:0b: f5:38:b2:d6:d6:32:82:63:e3:ea:9f:8a:42:c2:24: fc:02:1f:f7:ac:da:e6:a3:c9:87:60:43:ea:e1:b9: 26:9f:5a:47:97:6e:80:84:ae:d7:9b:99:fb:f7:ee: 23:4a:87:e4:bb:87:c8:47:f8:5f:e9:b0:31:eb:54: c9:48:12:b9:aa:a7:76:cb:f6:85:df:02:af:ce:d6: ff:da:9f:f5:f1:5e:a3:2b:93:42:f7:45:b9:75:e2: 38:84:86:19:66:f3:1b:89:e3:11:d1:2f:10:05:26: 9e:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:2C:11:A7:63:A5:EC:2E:B5:9E:93:6A:90:51:5F:00:6C:CD:17:0C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215502.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4600::/40 Signature Algorithm: sha256WithRSAEncryption 44:87:c0:51:82:8d:49:2d:ed:c5:8b:97:9d:a4:67:54:07:c6: 37:ef:2a:93:1d:60:a0:51:41:02:a1:56:cc:31:55:4b:c0:75: 17:b2:3e:ca:4d:ad:6a:9a:63:15:33:31:35:65:f2:19:e7:46: b1:08:90:37:7b:66:9e:e5:9b:42:d0:19:ee:56:47:17:41:53: 02:15:cb:30:c5:a2:1a:0f:2b:36:f7:04:d9:3a:10:52:22:55: 8c:67:3c:fa:06:05:69:a9:ba:02:43:be:23:f3:c2:69:ec:7a: 7a:ec:82:14:4a:07:72:0e:4d:1f:55:21:aa:e3:9e:2b:a7:50: 7e:b0:71:c2:93:a0:42:c1:aa:c6:e0:97:ee:fe:56:48:49:6b: c8:81:aa:42:6d:cd:02:56:28:28:42:c3:97:6a:e0:7d:68:fe: 1f:9b:60:bc:cb:c8:d3:8b:a4:bf:5e:f3:4c:bc:43:2e:3d:92: fa:68:ac:bf:f4:ef:97:b4:55:71:ec:bb:64:01:36:1a:dd:ce: 22:de:a8:d3:f0:93:af:c1:8b:53:90:dc:f6:1e:c3:ca:6a:b7: 9d:ab:ff:ba:1a:bb:59:9c:36:e9:99:07:39:74:53:0d:23:0d: 3f:c6:29:9b:8e:7b:a3:2a:07:25:11:c5:ea:bf:f4:04:2d:bd: 4a:c2:0d:66 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUC2ZlK8Qon6jnVxpIlbnsrLY2tNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKDREMkMxMUE3NjNBNUVDMkVCNTlFOTM2QTkwNTE1RjAwNkNDRDE3MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjOz1Yhm+NwEq/lmKTRr9M8SSQ Gn2AJA7c++E/+MTAr0/GVAqnz9D7pwX6GnTlu70/EvF3qi7eBQ9TOAovR9KBTHUR lYoUmLdnbG/JdiXM8StWO390x9m5MjxU2e8py7sVHCSYilaxyOuQKNpSvcaYUvPQ mNYhUBBY/jHaGyz0/T6GlMCXvgBoH6RNLA9ddYJGzhaVC/U4stbWMoJj4+qfikLC JPwCH/es2uajyYdgQ+rhuSafWkeXboCErtebmfv37iNKh+S7h8hH+F/psDHrVMlI Ermqp3bL9oXfAq/O1v/an/XxXqMrk0L3Rbl14jiEhhlm8xuJ4xHRLxAFJp5hAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTSwRp2Ol7C61npNqkFFfAGzNFwwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1NTAyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUYwDQYJKoZIhvcNAQELBQADggEBAESH wFGCjUkt7cWLl52kZ1QHxjfvKpMdYKBRQQKhVswxVUvAdReyPspNrWqaYxUzMTVl 8hnnRrEIkDd7Zp7lm0LQGe5WRxdBUwIVyzDFohoPKzb3BNk6EFIiVYxnPPoGBWmp ugJDviPzwmnsenrsghRKB3IOTR9VIarjniunUH6wccKToELBqsbgl+7+VkhJa8iB qkJtzQJWKChCw5dq4H1o/h+bYLzLyNOLpL9e80y8Qy49kvporL/075e0VXHsu2QB NhrdziLeqNPwk6/Bi1OQ3PYew8pqt52r/7oau1mcNumZBzl0Uw0jDT/GKZuOe6Mq ByURxeq/9AQtvUrCDWY= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:11 2025 by rpki-client