$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216020.roa File: AS216020.roa (raw, json) Hash identifier: 9F+7DGmv8JWYFX7tuMpUPmpzh0SDdEQnsMkG5w3F8jo= Subject key identifier: 2C:44:21:36:2F:A7:1A:49:B9:F5:DB:F9:1D:F9:F3:6B:3D:D3:9E:63 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 093E8E92A9F6240D9C04B1EBE799131A5F29D396 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216020.roa Signing time: Fri 04 Jul 2025 06:53:11 +0000 ROA not before: Fri 04 Jul 2025 06:48:11 +0000 ROA not after: Fri 03 Jul 2026 06:53:11 +0000 asID: 216020 IP address blocks: 2a05:dfc1:c900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:3e:8e:92:a9:f6:24:0d:9c:04:b1:eb:e7:99:13:1a:5f:29:d3:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:11 2025 GMT Not After : Jul 3 06:53:11 2026 GMT Subject: CN=2C4421362FA71A49B9F5DBF91DF9F36B3DD39E63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c6:3c:ac:b5:42:8c:6a:4e:d6:1a:50:20:b2: 7f:9f:63:6b:c7:91:74:96:87:7c:fc:3f:ca:61:4b: 7d:ab:dc:79:2d:53:da:3a:93:6f:2f:78:84:3c:06: 66:9a:03:c3:4d:cf:99:62:ca:70:d3:11:73:d0:ef: 26:9e:1b:ca:6b:c9:58:c5:fd:3a:4e:44:19:1a:11: e3:2c:fa:aa:85:12:f3:84:c6:13:93:41:86:0f:f4: d7:bc:2a:6e:20:23:61:e4:59:1f:d9:d3:05:71:23: ef:50:31:09:43:46:7c:2b:ae:a6:a0:00:a0:e4:0f: fb:26:32:e0:02:9a:ca:34:7e:68:7d:1a:a9:f0:29: 40:4f:eb:59:3e:74:4d:6e:48:98:69:d4:f5:78:e3: 95:d7:4b:98:69:d1:ea:3f:ac:d2:6a:4d:2a:46:f1: 5e:82:da:2a:12:8f:41:4f:04:6a:8c:ef:f8:58:06: fb:51:be:d4:14:9d:9e:85:0c:9a:a2:e4:44:f5:b2: 24:ea:68:ef:60:92:44:a8:3c:a9:de:c5:d5:b3:e4: 29:1f:54:28:34:dd:73:ef:3c:94:ad:90:60:fe:03: bb:45:7c:14:86:39:f1:64:b5:d7:9e:1b:19:c7:bd: 70:d9:aa:fc:9a:0d:2b:0a:93:b1:28:49:6b:cd:c1: f8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:44:21:36:2F:A7:1A:49:B9:F5:DB:F9:1D:F9:F3:6B:3D:D3:9E:63 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216020.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c900::/40 Signature Algorithm: sha256WithRSAEncryption 17:6d:37:60:4a:fc:a3:88:6e:35:ac:a4:86:48:fd:56:0d:73: 66:a4:63:52:1c:74:d8:93:9b:9b:2a:56:d3:16:7a:86:4a:7b: 87:d8:7c:73:dd:52:4f:2d:78:9a:9c:3a:b5:02:1e:9c:03:6a: 8d:05:a7:2f:d4:56:03:c5:58:67:6f:20:8c:d1:e2:27:80:e7: d9:83:7c:24:0f:bf:a4:d2:0d:30:cc:e1:c2:70:78:8e:8e:c0: c4:f6:1d:76:a9:ff:af:dd:cf:d6:62:36:da:50:d4:31:fd:76: c6:77:6e:6c:f5:94:c7:17:55:01:67:d7:9a:43:1f:1d:40:b4: e7:b5:01:6c:ee:0d:5a:2f:03:30:8c:8a:6d:e4:ac:8b:34:0e: 59:27:96:bf:ba:2e:66:1b:1a:4c:bb:6c:24:d0:99:ff:da:f8: 20:2a:f2:0b:f3:96:cf:99:c7:b0:dd:2b:6f:5c:8e:5d:c8:52: f4:31:0a:7b:78:07:20:cd:24:65:79:dd:6c:32:da:c9:51:f7: f6:ca:6e:be:3b:b9:f6:b5:cd:12:0d:0a:4a:cd:51:8d:38:5d: 08:d8:16:03:e8:83:ec:c2:94:25:72:34:60:89:38:df:3d:15: fc:71:45:58:e4:8c:13:36:4e:ae:16:88:e4:77:b7:27:9e:6a: 70:71:64:60 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCT6Okqn2JA2cBLHr55kTGl8p05YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTFaFw0yNjA3MDMwNjUzMTFaMDMxMTAvBgNV BAMTKDJDNDQyMTM2MkZBNzFBNDlCOUY1REJGOTFERjlGMzZCM0REMzlFNjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTxjystUKMak7WGlAgsn+fY2vH kXSWh3z8P8phS32r3HktU9o6k28veIQ8BmaaA8NNz5liynDTEXPQ7yaeG8pryVjF /TpORBkaEeMs+qqFEvOExhOTQYYP9Ne8Km4gI2HkWR/Z0wVxI+9QMQlDRnwrrqag AKDkD/smMuACmso0fmh9GqnwKUBP61k+dE1uSJhp1PV445XXS5hp0eo/rNJqTSpG 8V6C2ioSj0FPBGqM7/hYBvtRvtQUnZ6FDJqi5ET1siTqaO9gkkSoPKnexdWz5Ckf VCg03XPvPJStkGD+A7tFfBSGOfFktdeeGxnHvXDZqvyaDSsKk7EoSWvNwfjfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULEQhNi+nGkm59dv5Hfnzaz3TnmMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDIwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwckwDQYJKoZIhvcNAQELBQADggEBABdt N2BK/KOIbjWspIZI/VYNc2akY1IcdNiTm5sqVtMWeoZKe4fYfHPdUk8teJqcOrUC HpwDao0Fpy/UVgPFWGdvIIzR4ieA59mDfCQPv6TSDTDM4cJweI6OwMT2HXap/6/d z9ZiNtpQ1DH9dsZ3bmz1lMcXVQFn15pDHx1AtOe1AWzuDVovAzCMim3krIs0Dlkn lr+6LmYbGky7bCTQmf/a+CAq8gvzls+Zx7DdK29cjl3IUvQxCnt4ByDNJGV53Wwy 2slR9/bKbr47ufa1zRINCkrNUY04XQjYFgPog+zClCVyNGCJON89FfxxRVjkjBM2 Tq4WiOR3tyeeanBxZGA= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:00 2025 by rpki-client