$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216121.roa File: AS216121.roa (raw, json) Hash identifier: 7A+GtsQdDiKAZnWTCT7bvDgSNZZy4kARQCMBwn1KTJ0= Subject key identifier: E9:18:1C:2A:9A:69:50:0A:B5:40:55:2C:CB:D4:C3:E2:64:E8:C3:9F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5336C48D78FC3A0C02FF5987B01E12C4E6EF5F50 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216121.roa Signing time: Fri 04 Jul 2025 06:53:28 +0000 ROA not before: Fri 04 Jul 2025 06:48:28 +0000 ROA not after: Fri 03 Jul 2026 06:53:28 +0000 asID: 216121 IP address blocks: 2a05:dfc1:b00::/40 maxlen: 48 2a05:dfc1:b100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:36:c4:8d:78:fc:3a:0c:02:ff:59:87:b0:1e:12:c4:e6:ef:5f:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:28 2025 GMT Not After : Jul 3 06:53:28 2026 GMT Subject: CN=E9181C2A9A69500AB540552CCBD4C3E264E8C39F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3e:7f:d2:de:f0:65:40:b4:70:fb:e8:e7:51: 90:e2:37:38:95:65:9e:f0:1c:e0:b8:f3:74:7c:64: f5:7f:81:d2:13:f2:58:c3:40:b9:0e:0e:03:44:15: e3:25:f5:5d:0c:b8:71:b4:68:5e:d6:a7:0f:79:0e: 8f:d7:ea:2c:a8:aa:40:4c:0c:95:22:6c:ab:a9:89: 75:a5:9e:ac:c9:b3:70:1c:96:9e:68:d7:5c:50:fb: d4:0b:04:bb:a9:be:9c:a3:14:26:f6:d9:66:16:4f: 2d:0d:00:66:1c:00:43:cc:9a:78:68:12:67:31:e0: 08:19:82:04:26:95:b4:f3:91:a5:ec:9e:2a:8e:d1: e3:25:14:4b:37:01:b7:fb:c6:3f:33:67:94:27:ba: 94:c4:5a:0c:01:4d:b6:bc:c5:9b:39:1e:cb:41:fa: 05:9d:e3:78:2d:fc:61:6e:d4:b3:64:1b:a9:f4:18: 46:9c:ca:32:66:2c:07:7d:8a:fc:e1:8d:21:4e:65: ca:7d:fe:00:cc:3a:19:50:19:eb:a5:63:b2:01:bf: c3:a7:7c:28:63:f4:f7:dc:d9:6a:68:6d:fc:0e:a5: fd:55:a5:23:25:7c:2e:71:50:cf:a0:b0:35:e3:84: 24:18:3b:f1:da:16:07:a9:78:e1:50:41:de:3e:5e: 5a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:18:1C:2A:9A:69:50:0A:B5:40:55:2C:CB:D4:C3:E2:64:E8:C3:9F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216121.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b00::/40 2a05:dfc1:b100::/40 Signature Algorithm: sha256WithRSAEncryption 4c:cf:bd:69:d4:99:54:c8:e9:79:1c:c0:e4:03:f8:80:2a:c4: a4:bd:9b:1a:fb:12:06:28:8a:0e:d6:94:84:a4:50:72:49:ea: 75:aa:f5:e3:ea:1b:07:00:56:b4:43:f0:56:24:90:40:72:ed: 92:8b:62:ba:3a:7d:29:f9:7b:1a:f2:84:4c:06:18:f7:d4:ad: c3:82:cf:0d:7f:ef:78:ff:35:83:38:ec:b8:d9:f5:c9:9a:7b: d3:36:6c:5c:c5:4d:e5:77:64:53:eb:73:8f:eb:43:3d:09:28: 6a:4d:83:53:33:e3:90:1c:93:0c:75:fa:0a:1c:49:43:12:5a: c5:84:35:c1:f5:db:a2:e4:c5:a3:5e:0a:2a:dd:ce:6e:33:d1: a4:e9:17:3d:ac:b9:9c:27:c4:08:20:8b:e3:a9:0e:3b:eb:08: f4:48:22:4e:8b:0d:e3:be:c3:0c:88:db:35:b1:d7:6c:b9:97: df:dd:d3:20:ac:b8:26:17:87:91:f1:98:59:d0:9d:eb:e2:ed: a0:2a:85:7a:bb:a4:b7:85:30:5f:a3:58:94:46:03:29:25:40: 27:e9:03:9d:14:71:7d:90:01:47:48:97:87:df:74:a2:6b:34: d0:15:52:21:b5:72:db:1d:87:58:e4:c8:7d:4f:0e:83:da:f6: 3f:22:28:2d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUUzbEjXj8OgwC/1mHsB4SxObvX1AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjhaFw0yNjA3MDMwNjUzMjhaMDMxMTAvBgNV BAMTKEU5MTgxQzJBOUE2OTUwMEFCNTQwNTUyQ0NCRDRDM0UyNjRFOEMzOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4Pn/S3vBlQLRw++jnUZDiNziV ZZ7wHOC483R8ZPV/gdIT8ljDQLkODgNEFeMl9V0MuHG0aF7Wpw95Do/X6iyoqkBM DJUibKupiXWlnqzJs3Aclp5o11xQ+9QLBLupvpyjFCb22WYWTy0NAGYcAEPMmnho Emcx4AgZggQmlbTzkaXsniqO0eMlFEs3Abf7xj8zZ5QnupTEWgwBTba8xZs5HstB +gWd43gt/GFu1LNkG6n0GEacyjJmLAd9ivzhjSFOZcp9/gDMOhlQGeulY7IBv8On fChj9Pfc2WpobfwOpf1VpSMlfC5xUM+gsDXjhCQYO/HaFgepeOFQQd4+XlpxAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQU6RgcKpppUAq1QFUsy9TD4mTow58wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTIxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgXfwQsDBgAqBd/BsTANBgkqhkiG9w0BAQsF AAOCAQEATM+9adSZVMjpeRzA5AP4gCrEpL2bGvsSBiiKDtaUhKRQcknqdar14+ob BwBWtEPwViSQQHLtkotiujp9Kfl7GvKETAYY99Stw4LPDX/veP81gzjsuNn1yZp7 0zZsXMVN5XdkU+tzj+tDPQkoak2DUzPjkByTDHX6ChxJQxJaxYQ1wfXbouTFo14K Kt3ObjPRpOkXPay5nCfECCCL46kOO+sI9EgiTosN477DDIjbNbHXbLmX393TIKy4 JheHkfGYWdCd6+LtoCqFerukt4UwX6NYlEYDKSVAJ+kDnRRxfZABR0iXh990oms0 0BVSIbVy2x2HWOTIfU8Og9r2PyIoLQ== -----END CERTIFICATE-----Generated at Sat Jul 5 03:58:32 2025 by rpki-client