$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216087.roa File: AS216087.roa (raw, json) Hash identifier: IssK4e9wdVkcMa06R0dGpS1mhQb7ravHWl9BX3yKyAA= Subject key identifier: 1B:5E:07:49:98:B8:BA:8E:64:55:31:24:6F:1A:73:89:F1:72:2C:F2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4D2D60806BF01EBFBC2C9D76807BC7ED2999B2B5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216087.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 216087 IP address blocks: 2a05:dfc1:c200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:2d:60:80:6b:f0:1e:bf:bc:2c:9d:76:80:7b:c7:ed:29:99:b2:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=1B5E074998B8BA8E645531246F1A7389F1722CF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:03:17:aa:37:44:5d:62:99:f8:25:a8:54:f9: d9:fa:b0:ca:15:d5:89:be:c3:bf:45:ff:c2:a6:57: 65:69:20:be:e2:d6:7e:a2:e7:08:e8:48:70:5a:8e: 24:2a:b4:6b:32:7b:f6:3b:32:d7:de:70:68:62:bb: 8b:be:87:92:d1:f7:45:28:0a:bd:3f:a1:18:39:e0: f2:62:3f:3a:08:ee:08:64:17:65:5e:4c:21:9c:15: 08:f4:74:be:6e:09:c3:75:c2:07:af:2e:e4:20:3a: 06:ff:15:b4:63:8c:76:90:f5:11:aa:a6:98:cd:ca: 81:92:cf:68:cb:f1:37:34:db:19:7a:f8:1c:30:b3: bc:e3:ed:3f:d0:f5:e4:3e:19:66:4c:e7:bf:d1:4e: 8f:50:f9:cd:6e:a0:b3:c4:9a:c9:2c:52:8f:3d:87: 31:48:48:9a:29:fb:78:b8:9f:d3:78:70:49:82:a7: f9:54:30:2d:46:36:5c:ea:b3:eb:b1:d7:06:ea:77: aa:39:e0:c3:df:46:e8:3a:59:a0:8f:e8:2b:88:f4: 29:64:18:af:ac:5f:f9:7c:d9:ed:56:36:b6:60:b0: 2b:51:d0:74:41:07:df:33:45:6b:2a:c9:2a:a3:84: 8c:fc:73:87:3d:20:2d:57:d8:11:ad:67:ef:fe:70: 1d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5E:07:49:98:B8:BA:8E:64:55:31:24:6F:1A:73:89:F1:72:2C:F2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216087.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:c200::/40 Signature Algorithm: sha256WithRSAEncryption 22:73:0e:51:5a:b7:d3:5a:2d:b6:bd:e1:20:da:6c:3b:53:75: 5d:a3:4b:99:2a:dd:51:58:56:18:83:08:e9:aa:59:a3:2e:9b: 76:7a:d2:89:0a:a1:53:3f:79:ca:a6:31:1d:79:a0:8e:2b:46: db:06:5b:d8:c5:cc:96:1f:f4:66:c7:fa:84:e9:64:4c:0f:a8: 7b:1a:96:62:36:fa:cc:06:bd:16:b0:75:8f:16:60:2a:9d:68: 0a:9e:4a:2c:bd:00:78:56:0b:00:7a:6c:a1:ab:fb:2b:dc:b3: ff:ed:b4:0d:e9:9c:98:ea:24:fb:df:3f:92:ff:ed:02:23:bd: fc:6c:07:62:4a:a6:4c:ac:f6:0d:00:35:a0:58:22:4b:38:3c: 1b:df:52:df:64:6c:54:66:ac:cf:9c:c4:a3:f4:36:11:f1:cb: a4:17:c6:7f:4b:4e:3c:3a:72:8e:64:ff:a6:9b:7c:6a:cc:b2: f3:b2:47:15:7b:bd:45:6f:88:17:a3:60:97:6b:39:32:75:00: 45:0f:46:9a:37:c8:5f:10:a0:98:ce:87:70:0c:46:e3:18:a4: cd:c5:ea:de:bb:e1:88:d4:a1:b7:ed:6b:30:fa:d7:95:67:4c: d4:18:ba:32:d8:2e:f4:5c:51:5b:8e:0c:ba:41:68:69:6c:6d: 75:ca:57:5d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTS1ggGvwHr+8LJ12gHvH7SmZsrUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDFCNUUwNzQ5OThCOEJBOEU2NDU1MzEyNDZGMUE3Mzg5RjE3MjJDRjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLAxeqN0RdYpn4JahU+dn6sMoV 1Ym+w79F/8KmV2VpIL7i1n6i5wjoSHBajiQqtGsye/Y7MtfecGhiu4u+h5LR90Uo Cr0/oRg54PJiPzoI7ghkF2VeTCGcFQj0dL5uCcN1wgevLuQgOgb/FbRjjHaQ9RGq ppjNyoGSz2jL8Tc02xl6+Bwws7zj7T/Q9eQ+GWZM57/RTo9Q+c1uoLPEmsksUo89 hzFISJop+3i4n9N4cEmCp/lUMC1GNlzqs+ux1wbqd6o54MPfRug6WaCP6CuI9Clk GK+sX/l82e1WNrZgsCtR0HRBB98zRWsqySqjhIz8c4c9IC1X2BGtZ+/+cB2bAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUG14HSZi4uo5kVTEkbxpzifFyLPIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwcIwDQYJKoZIhvcNAQELBQADggEBACJz DlFat9NaLba94SDabDtTdV2jS5kq3VFYVhiDCOmqWaMum3Z60okKoVM/ecqmMR15 oI4rRtsGW9jFzJYf9GbH+oTpZEwPqHsalmI2+swGvRawdY8WYCqdaAqeSiy9AHhW CwB6bKGr+yvcs//ttA3pnJjqJPvfP5L/7QIjvfxsB2JKpkys9g0ANaBYIks4PBvf Ut9kbFRmrM+cxKP0NhHxy6QXxn9LTjw6co5k/6abfGrMsvOyRxV7vUVviBejYJdr OTJ1AEUPRpo3yF8QoJjOh3AMRuMYpM3F6t674YjUobftazD615VnTNQYujLYLvRc UVuODLpBaGlsbXXKV10= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:46 2025 by rpki-client