$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216079.roa File: AS216079.roa (raw, json) Hash identifier: WisEuqAF2JitmSj/EgDrBrnkdQg/KerJC/Xp8ZYLcTQ= Subject key identifier: 31:81:BE:F4:96:1C:B1:B7:E6:89:E7:04:5D:E4:93:CA:80:41:E8:DC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 169220E7B7CBA13BA8F5578502066E1B8DCB6CD2 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216079.roa Signing time: Fri 04 Jul 2025 06:52:56 +0000 ROA not before: Fri 04 Jul 2025 06:47:56 +0000 ROA not after: Fri 03 Jul 2026 06:52:56 +0000 asID: 216079 IP address blocks: 2a05:dfc1:c300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:92:20:e7:b7:cb:a1:3b:a8:f5:57:85:02:06:6e:1b:8d:cb:6c:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:56 2025 GMT Not After : Jul 3 06:52:56 2026 GMT Subject: CN=3181BEF4961CB1B7E689E7045DE493CA8041E8DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9d:f7:f2:f0:d7:41:75:ef:e4:ea:2a:b7:2e: 96:8c:f9:12:0c:a3:ae:57:c9:b6:2f:87:d0:db:f6: 18:11:66:77:04:a9:eb:f6:86:14:c0:dc:2e:6c:f9: 34:d5:eb:62:ad:45:7b:5b:05:16:19:8f:61:41:8a: 39:64:87:6e:d7:d2:08:bf:82:65:a9:1c:07:c7:49: 0a:48:b9:58:2a:92:8d:8f:29:14:73:2a:9d:23:af: c5:04:b5:5d:06:9c:eb:f2:ea:a4:ab:c7:c5:ec:5e: ae:3a:97:17:8f:72:3f:c7:47:af:2c:d8:fa:53:71: d2:e0:38:3d:e8:29:97:42:d3:68:88:e4:4a:38:7a: 3a:28:3c:70:a0:4b:51:6d:55:2f:67:35:48:4b:c3: f8:91:00:13:a1:21:06:2d:4c:30:45:d9:61:4e:13: 2e:ca:9e:80:17:2b:98:d8:22:d5:d2:26:62:45:ac: 77:ba:6c:ed:f3:64:31:40:d1:a6:ab:d4:20:e3:67: a8:ec:6a:e8:5c:56:92:ce:83:ca:de:4f:e6:62:8b: 74:4e:72:25:00:b5:d1:4f:46:eb:d3:d1:c0:c7:9e: 5c:9e:61:77:d3:a1:13:e0:8c:cd:de:db:a9:cc:0d: 21:a7:96:1a:40:48:4e:8d:fe:0a:3d:b8:2e:cd:7c: e0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:81:BE:F4:96:1C:B1:B7:E6:89:E7:04:5D:E4:93:CA:80:41:E8:DC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c300::/40 Signature Algorithm: sha256WithRSAEncryption 02:ab:bf:45:52:c2:0e:e7:6b:9c:bb:59:0b:eb:57:7e:ba:a8: e2:dd:85:6e:6b:c3:dd:3b:b8:32:04:d6:6b:28:11:14:8a:03: 95:13:26:0e:ef:24:38:b1:f9:cd:0d:47:6b:84:15:90:1e:d3: 31:ad:2b:80:63:2a:05:88:d4:59:08:6f:1b:96:1f:64:6e:8f: fe:04:bf:1d:6a:99:c7:1d:32:12:f4:1a:70:e0:db:fc:db:de: 13:49:02:ef:bf:82:9c:56:98:e0:93:38:c5:af:bb:5a:46:c5: ae:1d:73:4d:ac:22:45:9f:41:02:a2:56:ec:73:80:b4:ed:95: 2b:f4:e0:87:f3:e9:ef:46:06:d6:b7:3f:10:93:33:2b:03:c7: 6a:9a:a9:af:2e:05:e0:15:63:c5:29:f9:7f:be:5d:24:5c:2f: f8:3b:2a:b9:00:ff:9b:6e:93:4f:ff:04:3a:ee:51:53:e8:47: e7:11:66:14:4d:8d:66:54:83:82:c2:70:34:5f:c9:82:37:a6: 0a:fd:16:bc:e7:17:4c:31:2c:96:62:7b:e9:5e:47:1a:1b:cf: 29:ae:a8:93:a4:4b:56:17:50:42:30:05:4a:e3:6f:81:f5:de: bd:31:4c:72:b8:b3:a5:4d:a6:f3:f2:13:66:c5:82:93:41:bf: f9:22:70:85 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFpIg57fLoTuo9VeFAgZuG43LbNIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTZaFw0yNjA3MDMwNjUyNTZaMDMxMTAvBgNV BAMTKDMxODFCRUY0OTYxQ0IxQjdFNjg5RTcwNDVERTQ5M0NBODA0MUU4REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxnffy8NdBde/k6iq3LpaM+RIM o65XybYvh9Db9hgRZncEqev2hhTA3C5s+TTV62KtRXtbBRYZj2FBijlkh27X0gi/ gmWpHAfHSQpIuVgqko2PKRRzKp0jr8UEtV0GnOvy6qSrx8XsXq46lxePcj/HR68s 2PpTcdLgOD3oKZdC02iI5Eo4ejooPHCgS1FtVS9nNUhLw/iRABOhIQYtTDBF2WFO Ey7KnoAXK5jYItXSJmJFrHe6bO3zZDFA0aar1CDjZ6jsauhcVpLOg8reT+Zii3RO ciUAtdFPRuvT0cDHnlyeYXfToRPgjM3e26nMDSGnlhpASE6N/go9uC7NfOAZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMYG+9JYcsbfmiecEXeSTyoBB6NwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwcMwDQYJKoZIhvcNAQELBQADggEBAAKr v0VSwg7na5y7WQvrV366qOLdhW5rw907uDIE1msoERSKA5UTJg7vJDix+c0NR2uE FZAe0zGtK4BjKgWI1FkIbxuWH2Ruj/4Evx1qmccdMhL0GnDg2/zb3hNJAu+/gpxW mOCTOMWvu1pGxa4dc02sIkWfQQKiVuxzgLTtlSv04Ifz6e9GBta3PxCTMysDx2qa qa8uBeAVY8Up+X++XSRcL/g7KrkA/5tuk0//BDruUVPoR+cRZhRNjWZUg4LCcDRf yYI3pgr9FrznF0wxLJZie+leRxobzymuqJOkS1YXUEIwBUrjb4H13r0xTHK4s6VN pvPyE2bFgpNBv/kicIU= -----END CERTIFICATE-----Generated at Sat Jul 5 06:11:15 2025 by rpki-client