$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215748.roa File: AS215748.roa (raw, json) Hash identifier: xYtSMZ6A48nVLdd35tGZcId30Ah7H+43nmqTchhQ/ts= Subject key identifier: 9A:37:43:D1:02:55:91:4D:BD:1F:2C:87:68:EA:EF:82:4E:4D:4F:AD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4434DF7D34588515D00843C013A0AF6255C95EF3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215748.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 215748 IP address blocks: 2a06:9f81:3100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:34:df:7d:34:58:85:15:d0:08:43:c0:13:a0:af:62:55:c9:5e:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=9A3743D10255914DBD1F2C8768EAEF824E4D4FAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0d:42:cf:c7:cb:b8:d2:73:73:4d:2a:1e:7a: fa:30:65:65:ea:3b:c8:3e:14:c0:1c:3e:fd:25:c7: dd:5e:4e:20:78:94:cb:16:e1:d8:b5:d8:c2:3f:fc: eb:ec:18:83:00:21:f8:d2:3c:64:8a:2d:9a:72:3f: 46:95:c5:1e:f9:45:e5:63:5c:98:07:f2:f1:a3:56: 8c:02:db:56:9c:a6:71:ab:7c:32:ce:5c:cc:84:1f: 24:1a:b2:dd:b9:aa:7d:3c:eb:8f:b7:a3:31:d1:ea: 2c:81:87:16:ac:4f:04:57:02:42:df:c6:56:f5:c3: 54:23:ff:bf:bc:1c:38:06:f1:0e:92:9f:3b:54:0f: f4:2e:cc:ce:19:ba:b9:59:59:1e:d5:ba:48:1b:db: ec:0e:6c:bd:34:2a:24:62:34:9a:87:ce:44:0a:3b: 1d:44:a4:04:90:63:32:80:1d:90:87:60:a6:ea:04: be:15:3d:c8:9e:6e:6a:1f:05:25:ba:d3:df:cf:34: 06:76:87:53:45:b3:27:c9:ab:25:0f:17:f6:ae:14: 93:08:ae:b4:cd:7c:3e:ae:7f:5f:37:d6:d9:1a:f2: 59:c6:d9:07:4a:f5:17:91:dd:43:eb:3c:17:96:1b: f5:6f:1f:61:fa:bb:d5:c3:15:58:65:6a:3e:4e:fb: 9f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:37:43:D1:02:55:91:4D:BD:1F:2C:87:68:EA:EF:82:4E:4D:4F:AD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215748.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3100::/40 Signature Algorithm: sha256WithRSAEncryption 68:a7:e6:db:dc:8c:b0:f5:10:e4:8c:a5:53:67:45:fe:4d:2b: 55:05:da:30:e3:8c:7a:98:09:89:11:fc:38:5a:79:7c:40:64: 20:7c:57:74:50:f5:83:28:5d:4b:cf:3c:d0:21:44:74:6f:e0: 97:4e:b9:86:60:c8:90:bd:50:18:90:6d:e9:70:30:f4:6e:da: 40:f6:1d:35:e1:b4:49:15:53:b7:d6:80:ad:d6:d5:aa:4d:7d: 84:9e:52:3a:c0:9c:12:b5:68:c9:c3:ac:26:60:31:e8:83:dd: 53:53:ad:7f:b1:41:f3:d0:77:ba:b1:de:99:f2:e2:36:46:29: 5d:71:df:10:5e:db:7e:f4:a2:3c:a8:f2:a0:56:f4:95:6a:c3: cd:09:cc:ff:3e:2b:e7:e8:50:4e:6a:ef:bc:8c:bd:11:c2:9f: 9e:d5:4b:12:22:17:b1:a3:ce:06:9e:92:a6:11:54:fb:0d:ad: 2c:db:93:ab:65:8c:59:8b:c8:38:36:51:5c:8d:37:54:30:e4: c0:49:c0:33:f2:1d:7c:6d:50:b7:40:f5:36:25:57:7b:c9:97: 88:e8:12:2e:84:a8:84:bd:62:39:cf:88:12:be:6a:7c:48:1b: e5:86:bd:30:db:43:b5:e1:50:78:47:ec:18:ae:91:9b:c7:f2: 08:48:11:cd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURDTffTRYhRXQCEPAE6CvYlXJXvMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDlBMzc0M0QxMDI1NTkxNERCRDFGMkM4NzY4RUFFRjgyNEU0RDRGQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7DULPx8u40nNzTSoeevowZWXq O8g+FMAcPv0lx91eTiB4lMsW4di12MI//OvsGIMAIfjSPGSKLZpyP0aVxR75ReVj XJgH8vGjVowC21acpnGrfDLOXMyEHyQast25qn0864+3ozHR6iyBhxasTwRXAkLf xlb1w1Qj/7+8HDgG8Q6SnztUD/QuzM4ZurlZWR7Vukgb2+wObL00KiRiNJqHzkQK Ox1EpASQYzKAHZCHYKbqBL4VPciebmofBSW609/PNAZ2h1NFsyfJqyUPF/auFJMI rrTNfD6uf1831tka8lnG2QdK9ReR3UPrPBeWG/VvH2H6u9XDFVhlaj5O+5/VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmjdD0QJVkU29HyyHaOrvgk5NT60wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1NzQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTEwDQYJKoZIhvcNAQELBQADggEBAGin 5tvcjLD1EOSMpVNnRf5NK1UF2jDjjHqYCYkR/DhaeXxAZCB8V3RQ9YMoXUvPPNAh RHRv4JdOuYZgyJC9UBiQbelwMPRu2kD2HTXhtEkVU7fWgK3W1apNfYSeUjrAnBK1 aMnDrCZgMeiD3VNTrX+xQfPQd7qx3pny4jZGKV1x3xBe2370ojyo8qBW9JVqw80J zP8+K+foUE5q77yMvRHCn57VSxIiF7GjzgaekqYRVPsNrSzbk6tljFmLyDg2UVyN N1Qw5MBJwDPyHXxtULdA9TYlV3vJl4joEi6EqIS9YjnPiBK+anxIG+WGvTDbQ7Xh UHhH7BiukZvH8ghIEc0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:39 2025 by rpki-client