$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216089.roa File: AS216089.roa (raw, json) Hash identifier: 2huFmnO+3USBYx3LH9Ka0HUxV/5CKu8UrHIlKi5nDu8= Subject key identifier: F2:32:68:4E:41:73:C6:93:50:69:90:AF:75:97:89:EF:D0:05:02:AA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 51D6119556612FDC6DBE52DAC99C010635BE0C61 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216089.roa Signing time: Fri 04 Jul 2025 06:53:27 +0000 ROA not before: Fri 04 Jul 2025 06:48:27 +0000 ROA not after: Fri 03 Jul 2026 06:53:27 +0000 asID: 216089 IP address blocks: 2a05:dfc1:a800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d6:11:95:56:61:2f:dc:6d:be:52:da:c9:9c:01:06:35:be:0c:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:27 2025 GMT Not After : Jul 3 06:53:27 2026 GMT Subject: CN=F232684E4173C693506990AF759789EFD00502AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0e:18:6a:a0:f0:fd:25:b5:1a:ca:f3:f4:49: fa:6c:b4:f4:f5:23:85:d0:d7:c3:77:c6:4d:8a:94: 32:b4:c5:04:ee:da:2c:c1:09:f7:73:07:30:52:ce: 20:b0:43:7b:e7:39:a5:a5:01:6b:96:05:fc:45:9d: d9:c3:dd:c4:3b:e1:bd:72:d6:90:76:c1:1b:03:b6: e8:28:45:ea:bb:73:90:5f:e4:92:0f:bc:91:9f:c9: e0:37:57:cc:a5:cd:bb:cf:0c:5e:20:dd:03:b7:99: 57:f7:06:3d:aa:47:b4:77:6a:4e:8f:fe:65:a3:fe: 65:e4:30:7d:6f:3e:f2:6b:4b:25:d6:66:f9:e6:8a: eb:4e:14:f3:ac:e7:0d:82:0e:a3:85:73:87:98:6e: ea:58:bf:c2:b9:f2:85:0f:40:84:35:b1:7a:fc:95: 63:b0:80:df:a2:24:16:3f:61:77:ac:cb:c6:4a:3a: fa:43:dd:07:a1:bf:60:bb:38:79:ca:19:57:04:21: a7:a9:0c:be:49:49:2b:9b:8e:ad:fc:34:42:4e:8d: d0:9d:82:1c:0d:c9:13:86:80:11:e8:a4:2a:48:8d: bd:94:f8:45:27:66:ea:a1:45:41:c7:58:36:b9:f8: f7:65:41:df:78:92:90:84:76:72:26:9f:26:08:13: 7e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:32:68:4E:41:73:C6:93:50:69:90:AF:75:97:89:EF:D0:05:02:AA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216089.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a800::/40 Signature Algorithm: sha256WithRSAEncryption e2:f4:35:b2:1d:3f:9b:d6:17:0b:6f:06:03:8a:bb:d2:b5:be: 5e:72:f2:79:96:09:ce:ff:47:44:2a:5e:80:0d:db:53:c2:92: 3b:15:2d:0a:82:f8:73:4d:8a:0b:10:0d:ce:c6:28:34:fb:02: e7:b2:30:aa:64:ee:20:22:85:27:8d:87:e7:f8:b4:c1:f8:4d: 59:13:9f:51:92:a9:c6:0f:bd:d2:61:e1:dc:24:08:fe:ce:c7: 62:6d:6c:26:d0:73:9e:25:ad:26:0c:08:ac:ca:ce:d9:17:44: bf:fe:cd:40:bb:a7:ed:3f:de:51:cb:f9:62:8c:59:f5:2a:e8: cc:9b:9b:7f:17:ea:8d:29:65:40:8b:21:04:74:a9:a3:f0:05: 90:c7:bb:ee:60:12:46:cc:72:ac:b5:d0:a2:fa:41:93:3e:9f: b3:3c:e2:11:72:88:3e:c1:cb:16:a0:0c:de:52:08:5b:58:ae: e8:3d:8e:4a:57:f1:1e:01:29:62:2b:e7:5c:40:38:c5:b9:d9: 8a:ad:8e:d6:bc:10:90:f9:55:20:55:6f:a7:98:b0:96:b8:b8: 33:cb:83:b6:d7:26:97:b7:e4:d1:d5:fa:67:ba:26:ab:d3:03: fb:c5:a0:ff:0f:91:99:a9:f8:5c:bf:30:d3:ea:c6:05:0d:9c: 2e:8e:86:b7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUdYRlVZhL9xtvlLayZwBBjW+DGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjdaFw0yNjA3MDMwNjUzMjdaMDMxMTAvBgNV BAMTKEYyMzI2ODRFNDE3M0M2OTM1MDY5OTBBRjc1OTc4OUVGRDAwNTAyQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDDhhqoPD9JbUayvP0SfpstPT1 I4XQ18N3xk2KlDK0xQTu2izBCfdzBzBSziCwQ3vnOaWlAWuWBfxFndnD3cQ74b1y 1pB2wRsDtugoReq7c5Bf5JIPvJGfyeA3V8ylzbvPDF4g3QO3mVf3Bj2qR7R3ak6P /mWj/mXkMH1vPvJrSyXWZvnmiutOFPOs5w2CDqOFc4eYbupYv8K58oUPQIQ1sXr8 lWOwgN+iJBY/YXesy8ZKOvpD3Qehv2C7OHnKGVcEIaepDL5JSSubjq38NEJOjdCd ghwNyROGgBHopCpIjb2U+EUnZuqhRUHHWDa5+PdlQd94kpCEdnImnyYIE36lAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8jJoTkFzxpNQaZCvdZeJ79AFAqowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwagwDQYJKoZIhvcNAQELBQADggEBAOL0 NbIdP5vWFwtvBgOKu9K1vl5y8nmWCc7/R0QqXoAN21PCkjsVLQqC+HNNigsQDc7G KDT7AueyMKpk7iAihSeNh+f4tMH4TVkTn1GSqcYPvdJh4dwkCP7Ox2JtbCbQc54l rSYMCKzKztkXRL/+zUC7p+0/3lHL+WKMWfUq6Mybm38X6o0pZUCLIQR0qaPwBZDH u+5gEkbMcqy10KL6QZM+n7M84hFyiD7ByxagDN5SCFtYrug9jkpX8R4BKWIr51xA OMW52Yqtjta8EJD5VSBVb6eYsJa4uDPLg7bXJpe35NHV+me6JqvTA/vFoP8PkZmp +Fy/MNPqxgUNnC6Ohrc= -----END CERTIFICATE-----Generated at Sat Jul 5 03:58:48 2025 by rpki-client