$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215598.roa File: AS215598.roa (raw, json) Hash identifier: E6KnbJRtif98akIwBDMgccqF3wZWJJtUET1G/k1+4jQ= Subject key identifier: CA:08:3E:96:3F:E1:6F:4A:56:37:19:FE:0D:AE:60:BE:FA:E8:B3:5D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6422D518ABDC0F075909F209BDD8BF42D8B5070B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215598.roa Signing time: Fri 04 Jul 2025 06:53:22 +0000 ROA not before: Fri 04 Jul 2025 06:48:22 +0000 ROA not after: Fri 03 Jul 2026 06:53:22 +0000 asID: 215598 IP address blocks: 2a06:9f81:4100::/40 maxlen: 48 2a06:9f81:4200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:22:d5:18:ab:dc:0f:07:59:09:f2:09:bd:d8:bf:42:d8:b5:07:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:22 2025 GMT Not After : Jul 3 06:53:22 2026 GMT Subject: CN=CA083E963FE16F4A563719FE0DAE60BEFAE8B35D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d3:ae:8a:a7:96:eb:97:0a:80:56:66:6e:93: a6:5e:92:a9:37:fe:c0:5e:b3:04:8c:cb:fc:ca:a9: a0:cf:da:6a:e2:ef:49:1c:a6:ad:3d:53:d3:3b:78: 1f:dc:ff:95:39:75:32:d3:55:bc:d0:6a:34:7d:1b: b0:1a:3f:39:d0:63:a1:e1:94:15:00:ed:ed:52:a9: 5a:92:e6:93:e1:ca:bd:ca:ef:0a:63:8e:4d:84:7e: 94:d7:7f:a8:5b:5f:82:ae:a7:ec:15:a5:c9:e5:bb: 5d:13:0b:0d:3d:c2:38:f6:bc:fa:02:49:23:77:ad: 66:fa:03:af:c6:da:3b:81:f3:ca:f8:76:a6:d5:b9: bb:98:c8:ed:c4:fe:d6:ed:22:f7:16:7f:9d:b2:e0: b9:a0:67:f8:e3:1d:fa:eb:f9:42:45:c2:c4:02:df: 93:3a:15:19:69:c8:28:4e:f1:84:1a:97:eb:47:be: 5f:5b:d4:f3:3e:c5:9c:12:e5:67:5b:37:29:0a:f5: 3e:04:06:f6:30:b2:c8:44:fd:75:88:3e:7e:48:ca: cd:5c:09:2f:77:c8:8d:4e:75:42:11:61:6c:15:35: ee:d1:4b:d7:06:ee:5f:27:b3:48:f2:a2:28:41:20: 06:b7:6d:f6:b3:90:35:b2:63:d6:df:0a:a4:3a:44: e8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:08:3E:96:3F:E1:6F:4A:56:37:19:FE:0D:AE:60:BE:FA:E8:B3:5D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215598.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4100::-2a06:9f81:42ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c7:ae:1f:19:c7:65:a9:2b:86:a0:7b:59:79:66:38:cd:c3:ba: 14:ed:ba:ba:b2:3c:63:a5:23:d4:3b:84:21:59:46:a4:1f:29: 77:8b:7f:d0:d4:dd:9b:2b:43:20:43:57:81:f5:4a:e4:62:f9: bc:9e:0f:88:d5:0f:9a:e5:de:04:93:df:33:ee:6d:4f:e7:68: 14:3d:25:ac:35:bb:32:7b:37:36:62:66:01:3d:6e:6c:79:60: 0f:8c:bb:44:0d:e9:2d:77:2e:a7:2f:72:3d:4f:50:da:27:fb: f5:99:ad:a1:a3:d0:49:45:1b:6c:ac:84:32:c5:b0:00:9d:a2: e7:9d:b4:da:91:0f:00:98:e6:fe:46:67:2a:61:3a:cf:24:e2: 5f:f5:bc:b4:6c:38:f1:16:db:83:c1:3b:77:df:31:ab:ab:13: 89:6d:30:d0:9d:83:95:b6:ce:45:c4:bf:92:7d:d6:fc:0e:c6: 02:26:cd:47:51:c4:ad:f2:a9:66:a9:50:88:6e:3a:89:ea:7f: ad:8d:52:75:5e:9b:9e:4f:47:41:9a:c3:dd:2c:2c:e2:a3:69: cd:8f:21:5a:ca:8c:f7:b4:9a:d4:5a:32:2b:a3:a5:4e:72:a7: 38:1f:80:47:cd:3e:d4:52:d8:6f:7a:f3:1d:ea:79:e9:94:07: 7a:8a:ce:42 -----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgIUZCLVGKvcDwdZCfIJvdi/Qti1BwswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjJaFw0yNjA3MDMwNjUzMjJaMDMxMTAvBgNV BAMTKENBMDgzRTk2M0ZFMTZGNEE1NjM3MTlGRTBEQUU2MEJFRkFFOEIzNUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1066Kp5brlwqAVmZuk6Zekqk3 /sBeswSMy/zKqaDP2mri70kcpq09U9M7eB/c/5U5dTLTVbzQajR9G7AaPznQY6Hh lBUA7e1SqVqS5pPhyr3K7wpjjk2EfpTXf6hbX4Kup+wVpcnlu10TCw09wjj2vPoC SSN3rWb6A6/G2juB88r4dqbVubuYyO3E/tbtIvcWf52y4LmgZ/jjHfrr+UJFwsQC 35M6FRlpyChO8YQal+tHvl9b1PM+xZwS5WdbNykK9T4EBvYwsshE/XWIPn5Iys1c CS93yI1OdUIRYWwVNe7RS9cG7l8ns0jyoihBIAa3bfazkDWyY9bfCqQ6ROhVAgMB AAGjggH+MIIB+jAdBgNVHQ4EFgQUygg+lj/hb0pWNxn+Da5gvvros10wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1NTk4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASMBADBgAqBp+BQQMGACoGn4FCMA0GCSqGSIb3DQEB CwUAA4IBAQDHrh8Zx2WpK4age1l5ZjjNw7oU7bq6sjxjpSPUO4QhWUakHyl3i3/Q 1N2bK0MgQ1eB9UrkYvm8ng+I1Q+a5d4Ek98z7m1P52gUPSWsNbsyezc2YmYBPW5s eWAPjLtEDektdy6nL3I9T1DaJ/v1ma2ho9BJRRtsrIQyxbAAnaLnnbTakQ8AmOb+ RmcqYTrPJOJf9by0bDjxFtuDwTt33zGrqxOJbTDQnYOVts5FxL+Sfdb8DsYCJs1H UcSt8qlmqVCIbjqJ6n+tjVJ1XpueT0dBmsPdLCzio2nNjyFayoz3tJrUWjIro6VO cqc4H4BHzT7UUthvevMd6nnplAd6is5C -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:28 2025 by rpki-client