$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216113.roa File: AS216113.roa (raw, json) Hash identifier: xfprvVrPOtiyjSOWuHp8HTq7tfQXcaz2OnaAxaH/snc= Subject key identifier: 4A:17:46:A3:A1:B9:6E:82:56:35:BD:E5:4F:1A:6C:5E:ED:66:10:EC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1EAD2BCCD36FCCC82981B98438289A3A3897A417 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216113.roa Signing time: Fri 05 Jun 2026 07:12:19 +0000 ROA not before: Fri 05 Jun 2026 07:07:19 +0000 ROA not after: Fri 04 Jun 2027 07:12:19 +0000 asID: 216113 IP address blocks: 2a05:dfc1:b600::/40 maxlen: 48 2a05:dfc1:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ad:2b:cc:d3:6f:cc:c8:29:81:b9:84:38:28:9a:3a:38:97:a4:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:19 2026 GMT Not After : Jun 4 07:12:19 2027 GMT Subject: CN=4A1746A3A1B96E825635BDE54F1A6C5EED6610EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ae:40:23:1f:20:35:32:92:39:5d:de:08:64: 91:81:f1:0f:8c:35:5c:12:9b:48:ed:f9:6d:55:3c: 06:67:24:6f:c7:e5:73:4d:77:f5:8d:11:1f:61:24: eb:02:29:05:69:d9:6e:9a:c7:56:d4:f6:ee:4d:24: b1:0a:f5:63:6d:5f:8d:29:8a:05:40:99:46:6e:dd: 09:64:36:3c:60:5f:cc:40:70:ef:b4:0c:76:a7:77: 91:08:4c:c7:0d:15:81:3c:4a:99:39:08:85:5b:82: ac:0b:09:5e:01:37:a4:1f:d1:6d:36:a7:70:09:43: ea:37:0b:5e:85:4f:14:4b:57:31:a0:f3:4f:8a:8c: 54:2d:99:00:e1:87:1a:70:5d:99:02:09:6e:ca:a6: 7d:1f:13:14:72:dc:9c:14:df:9d:0d:b1:44:8c:70: 2b:47:16:7e:02:09:88:b9:de:2b:c0:36:8c:6c:6b: 06:73:f0:dc:35:1d:9e:26:42:31:99:e7:6f:b8:21: 61:3e:3e:4a:88:a3:84:8c:61:ab:18:b7:ae:58:2c: 98:07:e7:ab:aa:e5:1d:68:31:16:20:74:73:8f:5c: 2e:67:be:5f:65:69:1b:79:38:e4:f2:17:bd:4e:5c: 16:ed:a0:51:b8:b0:7a:2a:6e:3b:17:f0:ed:83:f4: 89:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:17:46:A3:A1:B9:6E:82:56:35:BD:E5:4F:1A:6C:5E:ED:66:10:EC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b600::/39 Signature Algorithm: sha256WithRSAEncryption 00:06:3f:95:78:6d:c1:0d:a1:ed:3d:28:52:bd:c6:40:6c:92: f0:25:47:8c:ec:52:a6:3d:11:56:97:ad:36:2b:dc:68:32:11: 59:12:67:ce:82:e2:da:bc:75:d8:68:81:ac:96:f1:ca:ec:61: f5:17:28:71:0b:f2:2a:9c:4d:33:8a:16:8e:54:05:39:f6:64: 54:80:4e:59:1f:a9:c8:f4:8b:9c:00:53:e0:49:f2:00:61:bb: 52:1f:bf:7a:ed:28:23:be:cb:7c:68:79:79:4d:0e:43:f6:28: cf:38:12:cc:89:21:21:b7:78:40:02:45:0b:09:28:c2:3b:b7: 2e:18:db:e5:d2:be:66:1e:fa:71:fe:3f:2d:24:7a:ef:55:60: 84:59:11:8e:b3:d3:00:e8:c0:82:c7:f6:4b:14:a4:df:dc:1c: 35:af:97:f1:de:7b:96:48:c4:8c:58:2f:7a:5c:87:e0:c3:91: 92:f0:88:52:b0:8c:77:29:5d:83:de:ae:a0:65:b1:db:dd:72: b1:c0:b8:4d:07:ef:08:a4:ff:9a:df:83:87:91:70:96:d1:99: 78:cf:58:1e:e0:15:5c:e9:d6:f5:c4:0c:f7:6c:50:fa:ec:58: 9e:be:03:2e:4c:8b:2b:da:b7:ba:4a:01:9c:d3:16:96:d8:c5: 1d:c7:20:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHq0rzNNvzMgpgbmEOCiaOjiXpBcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTlaFw0yNzA2MDQwNzEyMTlaMDMxMTAvBgNV BAMTKDRBMTc0NkEzQTFCOTZFODI1NjM1QkRFNTRGMUE2QzVFRUQ2NjEwRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDErkAjHyA1MpI5Xd4IZJGB8Q+M NVwSm0jt+W1VPAZnJG/H5XNNd/WNER9hJOsCKQVp2W6ax1bU9u5NJLEK9WNtX40p igVAmUZu3QlkNjxgX8xAcO+0DHand5EITMcNFYE8Spk5CIVbgqwLCV4BN6Qf0W02 p3AJQ+o3C16FTxRLVzGg80+KjFQtmQDhhxpwXZkCCW7Kpn0fExRy3JwU350NsUSM cCtHFn4CCYi53ivANoxsawZz8Nw1HZ4mQjGZ52+4IWE+PkqIo4SMYasYt65YLJgH 56uq5R1oMRYgdHOPXC5nvl9laRt5OOTyF71OXBbtoFG4sHoqbjsX8O2D9IkJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUShdGo6G5boJWNb3lTxpsXu1mEOwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbYwDQYJKoZIhvcNAQELBQADggEBAAAG P5V4bcENoe09KFK9xkBskvAlR4zsUqY9EVaXrTYr3GgyEVkSZ86C4tq8ddhogayW 8crsYfUXKHEL8iqcTTOKFo5UBTn2ZFSATlkfqcj0i5wAU+BJ8gBhu1Ifv3rtKCO+ y3xoeXlNDkP2KM84EsyJISG3eEACRQsJKMI7ty4Y2+XSvmYe+nH+Py0keu9VYIRZ EY6z0wDowILH9ksUpN/cHDWvl/Hee5ZIxIxYL3pch+DDkZLwiFKwjHcpXYPerqBl sdvdcrHAuE0H7wik/5rfg4eRcJbRmXjPWB7gFVzp1vXEDPdsUPrsWJ6+Ay5Miyva t7pKAZzTFpbYxR3HIEM= -----END CERTIFICATE-----Generated at Sat Jun 6 09:38:46 2026 by rpki-client