$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216052.roa File: AS216052.roa (raw, json) Hash identifier: vO2DMxfejOirXL7eQ8Rm8BefsD0D7uci9N+7zdq6BR4= Subject key identifier: CA:69:08:F7:2B:F1:B1:1A:8A:68:50:6C:C2:39:7E:FD:79:2C:7A:A9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0EBB2607D9439D05EEF92E2104F32B4825134EF7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216052.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 216052 IP address blocks: 2a06:9f81:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:bb:26:07:d9:43:9d:05:ee:f9:2e:21:04:f3:2b:48:25:13:4e:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=CA6908F72BF1B11A8A68506CC2397EFD792C7AA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:48:db:47:05:d4:d1:d9:5e:24:4b:f4:da:41: 64:d7:8d:1d:b1:ab:25:60:e6:71:f3:18:cf:bb:27: 46:ff:52:a3:0f:7a:6c:a7:84:30:53:15:13:af:0f: e4:e7:72:7b:84:f5:e5:c6:77:39:75:0a:fe:33:be: b1:da:f9:4d:75:15:8a:97:76:f9:c3:06:59:ee:01: 2a:e7:e1:53:8c:65:5c:cb:a9:26:15:3a:d0:44:22: 90:ce:ef:22:93:a1:8a:f7:66:c2:3b:e5:14:59:21: d5:bb:a5:94:42:88:bc:0e:df:24:0b:51:66:9f:d8: 0e:cb:a5:0d:79:32:0d:77:c9:04:2e:2d:6b:77:9c: f8:24:18:9a:27:ed:ca:af:f1:f8:1a:ba:61:47:1f: 55:bf:ed:23:cf:c0:0f:8f:92:d1:8d:62:a7:e0:c8: 17:a9:8f:2f:21:2e:a6:f4:2e:f9:a5:3d:49:89:fc: 16:98:f1:ee:07:b6:15:21:97:bc:7b:99:80:5e:60: e7:74:be:bf:dc:71:31:69:10:c9:5d:e8:9e:c4:03: 55:97:5f:90:c9:b8:07:e3:ab:2d:c0:f2:09:f5:ea: 39:4a:12:2b:1e:bc:e4:64:58:ba:a8:e0:c1:6e:0b: 2e:a5:ec:76:b4:d2:d8:7e:e7:54:6e:08:bd:85:63: 77:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:69:08:F7:2B:F1:B1:1A:8A:68:50:6C:C2:39:7E:FD:79:2C:7A:A9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216052.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2200::/40 Signature Algorithm: sha256WithRSAEncryption e4:78:d1:10:b1:c2:ac:84:01:66:7c:10:0b:f4:a9:b1:c9:b5: 23:a3:9f:10:be:f2:6e:0d:84:be:58:e4:ec:29:92:9b:87:f2: c5:18:9b:ff:81:00:a1:08:e1:55:c4:c5:7d:01:3d:61:3a:c7: 14:41:0a:02:a2:95:c8:d6:cf:81:38:ec:84:87:68:96:c9:fa: ad:b0:1d:6c:4b:23:42:8b:ef:f8:bf:c9:0a:6f:5f:3f:02:72: 8b:ff:6e:61:a8:ec:15:32:37:3a:83:59:9f:c1:1d:62:6d:85: ca:23:a5:d9:33:8f:e3:65:ad:5a:c0:4b:ac:26:69:b9:76:54: 2e:dc:0b:26:59:d5:46:ad:0c:89:ee:11:12:c0:f3:17:d0:32: 22:52:e6:5b:ff:84:28:7c:78:03:29:de:4d:f0:d2:89:4e:7a: 21:84:76:ec:b2:b4:eb:93:16:b5:22:ac:cb:72:27:f1:0a:f0: 59:22:c4:16:b1:ce:23:82:9c:3f:ff:92:53:29:8f:66:9e:61: f8:12:40:a5:6b:4a:3c:67:87:8c:ac:bd:ce:4d:ea:7a:5e:e3: 73:e9:2c:6d:fe:c3:13:de:48:96:35:67:88:b6:93:4c:2f:9b: aa:da:be:8d:2f:8d:88:03:90:35:c5:c2:19:ae:f3:7a:13:c3: b2:1e:f9:4e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDrsmB9lDnQXu+S4hBPMrSCUTTvcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKENBNjkwOEY3MkJGMUIxMUE4QTY4NTA2Q0MyMzk3RUZENzkyQzdBQTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQSNtHBdTR2V4kS/TaQWTXjR2x qyVg5nHzGM+7J0b/UqMPemynhDBTFROvD+TncnuE9eXGdzl1Cv4zvrHa+U11FYqX dvnDBlnuASrn4VOMZVzLqSYVOtBEIpDO7yKToYr3ZsI75RRZIdW7pZRCiLwO3yQL UWaf2A7LpQ15Mg13yQQuLWt3nPgkGJon7cqv8fgaumFHH1W/7SPPwA+PktGNYqfg yBepjy8hLqb0LvmlPUmJ/BaY8e4HthUhl7x7mYBeYOd0vr/ccTFpEMld6J7EA1WX X5DJuAfjqy3A8gn16jlKEisevORkWLqo4MFuCy6l7Ha00th+51RuCL2FY3fHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUymkI9yvxsRqKaFBswjl+/XkseqkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSIwDQYJKoZIhvcNAQELBQADggEBAOR4 0RCxwqyEAWZ8EAv0qbHJtSOjnxC+8m4NhL5Y5OwpkpuH8sUYm/+BAKEI4VXExX0B PWE6xxRBCgKilcjWz4E47ISHaJbJ+q2wHWxLI0KL7/i/yQpvXz8Ccov/bmGo7BUy NzqDWZ/BHWJthcojpdkzj+NlrVrAS6wmabl2VC7cCyZZ1UatDInuERLA8xfQMiJS 5lv/hCh8eAMp3k3w0olOeiGEduyytOuTFrUirMtyJ/EK8FkixBaxziOCnD//klMp j2aeYfgSQKVrSjxnh4ysvc5N6npe43PpLG3+wxPeSJY1Z4i2k0wvm6ravo0vjYgD kDXFwhmu83oTw7Ie+U4= -----END CERTIFICATE-----Generated at Sat Jul 5 03:52:39 2025 by rpki-client