$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216113.roa File: AS216113.roa (raw, json) Hash identifier: 5SCRF3uJLbKv7NYEne7CS8HeB0+7cLbT63KiArzfSsA= Subject key identifier: 32:D3:08:5F:93:5D:32:21:8C:D5:8C:B0:BB:D7:BE:E7:C3:73:A4:89 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7794ED7E7C34F1F0F5029BDDED3F150518D2F676 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216113.roa Signing time: Fri 04 Jul 2025 06:53:27 +0000 ROA not before: Fri 04 Jul 2025 06:48:27 +0000 ROA not after: Fri 03 Jul 2026 06:53:27 +0000 asID: 216113 IP address blocks: 2a05:dfc1:b600::/40 maxlen: 48 2a05:dfc1:b700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:94:ed:7e:7c:34:f1:f0:f5:02:9b:dd:ed:3f:15:05:18:d2:f6:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:27 2025 GMT Not After : Jul 3 06:53:27 2026 GMT Subject: CN=32D3085F935D32218CD58CB0BBD7BEE7C373A489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:70:4b:cf:fc:ce:cc:96:00:97:63:00:6a:28: 88:86:21:95:99:79:89:7e:91:1e:5d:4a:94:5e:23: bb:85:94:46:1f:21:8a:99:9f:2a:fe:54:f2:22:b1: 6b:e8:34:e3:3f:97:1b:a7:82:ac:a6:9a:81:43:8a: 3d:71:44:af:2e:40:07:3a:f1:51:12:6f:c2:7f:08: 66:e0:db:d5:be:b2:86:5b:4a:e6:02:a9:c8:c4:16: 68:c3:79:fb:eb:fa:bf:0d:33:c3:c5:82:19:ec:4e: 4c:07:e0:8f:86:22:42:0a:2f:23:0b:28:fb:be:f6: af:bf:4d:a9:7b:fc:f8:a1:59:85:63:de:30:d0:6d: 5c:69:32:52:b3:95:c2:16:b6:1d:68:3a:71:1d:d2: 9b:24:97:75:ba:75:31:be:52:0e:9a:26:cb:c1:d4: cb:39:79:98:ce:33:00:14:29:34:3f:34:d6:52:57: 72:1f:d8:f7:19:0c:fb:e7:9b:06:46:8b:88:89:ad: d3:86:80:0c:d9:67:89:a3:81:84:df:68:88:18:eb: 63:29:8d:54:b3:d7:ed:eb:55:5d:6c:8a:80:79:5d: 2a:00:4e:ff:f6:89:d4:d8:59:38:f4:58:62:96:6b: 5a:36:eb:0b:c1:f1:87:a9:8d:c6:b9:38:c1:e0:2c: 2c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D3:08:5F:93:5D:32:21:8C:D5:8C:B0:BB:D7:BE:E7:C3:73:A4:89 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216113.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b600::/39 Signature Algorithm: sha256WithRSAEncryption 9c:b6:90:8e:31:41:ce:74:43:03:71:2e:45:53:ed:f8:19:96: cf:5a:45:72:3d:49:5c:7e:90:bf:8d:67:fc:a2:66:aa:af:fc: c5:b4:93:b1:a1:3a:ea:5e:de:9b:ae:02:39:bc:bd:f1:66:66: 81:b1:fb:2c:a3:8b:d8:89:40:01:68:d0:88:c2:56:37:31:39: 9c:ae:2f:a6:af:1e:7f:e0:3c:36:09:36:87:48:c6:c8:39:b1: ee:b0:df:7a:9d:3d:8a:ae:8a:f9:82:de:83:6b:6e:9d:94:3d: bd:a6:8f:1f:f1:25:5e:4d:73:cd:f3:d8:44:d6:b2:1b:38:e3: 8f:60:58:44:3a:7f:05:b5:3c:21:6c:51:46:c6:6c:39:a1:19: 6b:e1:c8:9d:27:b0:33:7b:0c:ae:04:52:7c:63:03:6e:41:5b: 2f:fe:8a:94:63:be:d3:dd:64:9e:03:88:5f:28:63:7e:aa:18: 50:10:db:8b:22:57:83:bf:0d:26:1e:fa:33:e8:bf:39:72:2b: 7d:63:28:b2:7a:bc:9c:c0:b5:d9:ea:44:d5:78:9e:75:e3:ed: 20:25:aa:fe:83:4b:2a:68:90:9d:76:6a:d1:0f:ec:c0:df:4c: 4b:22:d8:81:64:0e:65:ef:3e:66:7c:89:bd:81:84:52:14:aa: 5e:4b:b9:90 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd5Ttfnw08fD1Apvd7T8VBRjS9nYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjdaFw0yNjA3MDMwNjUzMjdaMDMxMTAvBgNV BAMTKDMyRDMwODVGOTM1RDMyMjE4Q0Q1OENCMEJCRDdCRUU3QzM3M0E0ODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUcEvP/M7MlgCXYwBqKIiGIZWZ eYl+kR5dSpReI7uFlEYfIYqZnyr+VPIisWvoNOM/lxungqymmoFDij1xRK8uQAc6 8VESb8J/CGbg29W+soZbSuYCqcjEFmjDefvr+r8NM8PFghnsTkwH4I+GIkIKLyML KPu+9q+/Tal7/PihWYVj3jDQbVxpMlKzlcIWth1oOnEd0pskl3W6dTG+Ug6aJsvB 1Ms5eZjOMwAUKTQ/NNZSV3If2PcZDPvnmwZGi4iJrdOGgAzZZ4mjgYTfaIgY62Mp jVSz1+3rVV1sioB5XSoATv/2idTYWTj0WGKWa1o26wvB8Yepjca5OMHgLCwRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMtMIX5NdMiGM1Yywu9e+58NzpIkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTEzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbYwDQYJKoZIhvcNAQELBQADggEBAJy2 kI4xQc50QwNxLkVT7fgZls9aRXI9SVx+kL+NZ/yiZqqv/MW0k7GhOupe3puuAjm8 vfFmZoGx+yyji9iJQAFo0IjCVjcxOZyuL6avHn/gPDYJNodIxsg5se6w33qdPYqu ivmC3oNrbp2UPb2mjx/xJV5Nc83z2ETWshs4449gWEQ6fwW1PCFsUUbGbDmhGWvh yJ0nsDN7DK4EUnxjA25BWy/+ipRjvtPdZJ4DiF8oY36qGFAQ24siV4O/DSYe+jPo vzlyK31jKLJ6vJzAtdnqRNV4nnXj7SAlqv6DSypokJ12atEP7MDfTEsi2IFkDmXv PmZ8ib2BhFIUql5LuZA= -----END CERTIFICATE-----Generated at Sat Jul 5 06:09:09 2025 by rpki-client