$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215843.roa File: AS215843.roa (raw, json) Hash identifier: R+UTGpVPNaJH54zVv+LZxHpL3uSMp1/4IPNxMzV837c= Subject key identifier: 4C:7A:9D:C3:89:9F:E4:D9:AA:52:17:70:79:61:6C:20:37:0C:B0:79 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 69643538A7F5A48D2B065A9B814A56000C82630C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215843.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 215843 IP address blocks: 2a06:9f81:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:64:35:38:a7:f5:a4:8d:2b:06:5a:9b:81:4a:56:00:0c:82:63:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=4C7A9DC3899FE4D9AA52177079616C20370CB079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e4:71:44:0e:13:0f:64:37:2b:63:bb:25:c2: bb:40:38:68:23:f2:10:f7:be:5c:5e:51:cc:49:cd: 00:c0:cb:2c:b5:66:67:c2:a6:91:68:fb:30:b7:56: fd:d3:22:9e:1a:e0:52:68:ab:9b:7c:d5:5f:32:18: 92:f4:d4:89:b0:e9:af:f8:26:53:3f:3b:79:7b:de: 8f:bd:fc:0d:55:67:ff:ea:0c:55:d9:e8:0c:fc:ce: d2:51:8b:09:57:27:c7:49:ad:23:21:da:60:c5:ce: 83:f3:fa:6d:5c:89:a3:44:f9:e5:24:40:af:60:62: 56:bf:bb:a9:4b:24:36:f6:3d:12:83:14:2b:84:e8: 4e:cb:bd:d7:dc:3a:fc:ee:d9:ec:b3:6c:6a:99:e6: 04:2d:ae:14:f2:ee:a7:12:17:2a:3e:50:85:e2:9e: 8d:06:4b:e0:66:d9:9d:bf:3e:73:16:02:19:f4:53: 78:af:49:60:71:a6:cc:a8:cc:93:c1:6a:00:d0:f9: f6:29:fb:a9:9a:1f:66:12:2c:1a:cf:d3:5c:62:7f: 32:8d:ee:7a:09:41:62:7d:ec:96:1f:97:2b:59:d3: 52:f4:d1:b9:c3:e8:0d:a1:ff:f8:f4:a8:39:ee:a3: 59:9b:e7:aa:b6:50:4e:7a:5e:97:9e:12:c7:c9:e0: bd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7A:9D:C3:89:9F:E4:D9:AA:52:17:70:79:61:6C:20:37:0C:B0:79 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215843.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3400::/40 Signature Algorithm: sha256WithRSAEncryption a9:3e:fb:cc:b5:cf:d3:1b:eb:b6:ad:bb:84:34:e9:40:d0:f7: 5d:9c:02:3e:ca:a2:ce:7d:25:a5:32:e7:8a:90:ca:36:4c:84: cf:d0:0c:3b:ea:98:7f:32:81:c8:07:d5:16:24:aa:d7:77:b2: 39:00:85:92:61:a0:64:43:42:72:57:7a:93:0a:42:05:ca:e7: 46:e6:3c:3d:33:2f:b6:31:42:b9:3b:b9:4e:f2:bb:fb:58:c7: 31:02:84:bb:8c:c7:67:22:7d:12:35:0e:d6:01:b6:c4:1b:df: 2e:0b:9e:a9:b7:a1:05:9b:99:49:dc:42:8c:d5:1e:26:7e:21: 85:4d:b7:6f:c3:de:4a:6c:4d:47:3e:08:59:ad:db:3a:95:2d: a5:4b:33:39:fe:c1:48:1a:3e:04:52:da:15:28:bb:92:5d:e7: 25:a4:a5:82:49:72:20:8c:dd:d0:b4:ee:9e:7b:80:42:3e:41: 0a:fc:9c:6a:a0:5a:bc:ee:d9:33:01:1b:e2:6b:05:47:f6:8e: f6:0f:73:8f:ac:a9:77:ea:38:c9:e6:e4:61:0b:c9:94:c9:39: db:b2:9d:a2:6f:82:89:71:cc:9e:02:e2:61:39:18:b9:44:79: b6:5e:f9:61:8f:65:da:3f:25:58:12:58:7d:6e:d5:15:95:11: ce:3f:ba:cf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaWQ1OKf1pI0rBlqbgUpWAAyCYwwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKDRDN0E5REMzODk5RkU0RDlBQTUyMTc3MDc5NjE2QzIwMzcwQ0IwNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDL5HFEDhMPZDcrY7slwrtAOGgj 8hD3vlxeUcxJzQDAyyy1ZmfCppFo+zC3Vv3TIp4a4FJoq5t81V8yGJL01Imw6a/4 JlM/O3l73o+9/A1VZ//qDFXZ6Az8ztJRiwlXJ8dJrSMh2mDFzoPz+m1ciaNE+eUk QK9gYla/u6lLJDb2PRKDFCuE6E7LvdfcOvzu2eyzbGqZ5gQtrhTy7qcSFyo+UIXi no0GS+Bm2Z2/PnMWAhn0U3ivSWBxpsyozJPBagDQ+fYp+6maH2YSLBrP01xifzKN 7noJQWJ97JYflytZ01L00bnD6A2h//j0qDnuo1mb56q2UE56XpeeEsfJ4L3VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTHqdw4mf5NmqUhdweWFsIDcMsHkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1ODQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTQwDQYJKoZIhvcNAQELBQADggEBAKk+ +8y1z9Mb67atu4Q06UDQ912cAj7Kos59JaUy54qQyjZMhM/QDDvqmH8ygcgH1RYk qtd3sjkAhZJhoGRDQnJXepMKQgXK50bmPD0zL7YxQrk7uU7yu/tYxzEChLuMx2ci fRI1DtYBtsQb3y4Lnqm3oQWbmUncQozVHiZ+IYVNt2/D3kpsTUc+CFmt2zqVLaVL Mzn+wUgaPgRS2hUou5Jd5yWkpYJJciCM3dC07p57gEI+QQr8nGqgWrzu2TMBG+Jr BUf2jvYPc4+sqXfqOMnm5GELyZTJOduynaJvgolxzJ4C4mE5GLlEebZe+WGPZdo/ JVgSWH1u1RWVEc4/us8= -----END CERTIFICATE-----Generated at Sat Jul 5 03:53:52 2025 by rpki-client