$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216127.roa File: AS216127.roa (raw, json) Hash identifier: HRVLTbiRaNnhW2ujQoJU+BnCA6VwCLIOQ6e6G8kIdmQ= Subject key identifier: 5C:4A:CD:8E:8F:A0:D8:68:60:4D:14:B3:63:D9:0D:8A:6A:11:F0:40 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6CBE845170A7EE33AE5609845391451AE1420950 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216127.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 216127 IP address blocks: 2a05:dfc1:a000::/40 maxlen: 48 2a05:dfc1:a100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:be:84:51:70:a7:ee:33:ae:56:09:84:53:91:45:1a:e1:42:09:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=5C4ACD8E8FA0D868604D14B363D90D8A6A11F040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:2a:4e:06:64:57:e1:67:a1:03:fd:fc:b0: 4d:53:51:f3:3a:07:86:74:29:6a:66:3a:ab:93:e3: 52:83:31:7d:39:8f:e3:73:32:4f:f3:12:f7:f4:37: 59:7e:4f:0c:14:cc:9e:fc:80:69:28:2c:bd:7d:26: 8a:67:15:0c:36:47:d3:58:ee:34:5f:67:65:38:9e: 70:43:5e:49:9d:c1:c0:17:51:c6:45:8b:12:5d:8f: da:6c:33:d0:a6:d5:5a:5b:43:4e:df:72:4f:2d:e5: c4:77:9b:c2:88:6b:95:66:c3:2c:5b:2b:11:37:8f: 62:8e:0d:8c:27:69:51:14:ed:6f:22:d2:88:61:fd: d0:32:87:a8:a5:8c:db:1b:f8:ec:1b:2d:bb:34:59: 88:00:a1:19:49:77:ca:1e:f8:ea:97:64:fd:e1:ac: 64:ee:84:0b:62:94:9e:2c:2a:9d:8b:ec:f1:33:d4: 42:ac:b1:b3:b6:23:c4:78:01:77:65:3e:a8:4c:80: b0:fb:0f:96:18:d2:8a:85:c4:02:b2:84:45:6a:d6: ca:d5:cd:58:ea:36:57:44:64:48:e3:22:85:d7:d5: f2:c3:fc:49:e8:39:e1:57:39:8e:07:5d:ef:50:74: b0:c6:12:2e:e9:d2:4b:73:fe:28:02:ee:e2:2e:63: 1b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4A:CD:8E:8F:A0:D8:68:60:4D:14:B3:63:D9:0D:8A:6A:11:F0:40 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216127.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a000::/39 Signature Algorithm: sha256WithRSAEncryption e3:92:d4:ec:68:14:ba:d4:c8:07:82:98:ca:77:99:cf:ce:36: 82:69:a0:dd:cb:0e:a3:e4:b0:67:ea:aa:fe:0d:0f:93:b0:af: 8e:f9:2a:52:10:2a:2c:d9:18:e7:6c:35:6c:c0:4d:3c:e4:c0: d8:a3:cc:a2:69:3c:d4:92:81:d0:75:17:fc:42:33:d3:b2:da: a4:6a:38:ff:88:4b:0c:4e:d5:a1:25:8c:e2:e0:61:de:f4:83: ed:c5:43:eb:2b:2c:06:d6:ac:e7:c8:d1:88:21:63:0b:42:f7: 71:6c:aa:c5:63:fd:bb:2f:d1:8f:19:0d:39:b1:0b:8f:a8:60: 48:af:cc:c0:09:f6:e5:f0:5d:df:99:97:0d:26:4e:b3:68:9d: 45:67:75:5a:62:24:9a:0e:6c:b7:6f:05:65:14:74:2f:44:0a: db:09:6c:6b:aa:71:37:c8:ed:02:85:1f:10:32:b7:f9:6c:66: d4:a9:82:f8:d3:2e:07:94:95:07:a7:cc:73:d7:e3:26:e5:a6: ee:27:5a:38:60:44:d9:a3:c9:11:4f:9b:fa:48:08:0e:0d:ae: 50:3a:50:b2:f3:3b:44:9d:7e:2a:e2:ca:47:4e:bc:a8:89:7b: dd:5f:f7:51:2c:60:c5:3d:3a:ce:a2:67:5b:cf:dd:74:d6:bd: 34:b1:85:76 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbL6EUXCn7jOuVgmEU5FFGuFCCVAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDVDNEFDRDhFOEZBMEQ4Njg2MDREMTRCMzYzRDkwRDhBNkExMUYwNDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrbipOBmRX4WehA/38sE1TUfM6 B4Z0KWpmOquT41KDMX05j+NzMk/zEvf0N1l+TwwUzJ78gGkoLL19JopnFQw2R9NY 7jRfZ2U4nnBDXkmdwcAXUcZFixJdj9psM9Cm1VpbQ07fck8t5cR3m8KIa5Vmwyxb KxE3j2KODYwnaVEU7W8i0ohh/dAyh6iljNsb+OwbLbs0WYgAoRlJd8oe+OqXZP3h rGTuhAtilJ4sKp2L7PEz1EKssbO2I8R4AXdlPqhMgLD7D5YY0oqFxAKyhEVq1srV zVjqNldEZEjjIoXX1fLD/EnoOeFXOY4HXe9QdLDGEi7p0ktz/igC7uIuYxufAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXErNjo+g2GhgTRSzY9kNimoR8EAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTI3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwaAwDQYJKoZIhvcNAQELBQADggEBAOOS 1OxoFLrUyAeCmMp3mc/ONoJpoN3LDqPksGfqqv4ND5Owr475KlIQKizZGOdsNWzA TTzkwNijzKJpPNSSgdB1F/xCM9Oy2qRqOP+ISwxO1aEljOLgYd70g+3FQ+srLAbW rOfI0YghYwtC93FsqsVj/bsv0Y8ZDTmxC4+oYEivzMAJ9uXwXd+Zlw0mTrNonUVn dVpiJJoObLdvBWUUdC9ECtsJbGuqcTfI7QKFHxAyt/lsZtSpgvjTLgeUlQenzHPX 4yblpu4nWjhgRNmjyRFPm/pICA4NrlA6ULLzO0SdfiriykdOvKiJe91f91EsYMU9 Os6iZ1vP3XTWvTSxhXY= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:46 2025 by rpki-client