$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216242.roa File: AS216242.roa (raw, json) Hash identifier: RzX90JQiZHBWLwIuCF2JRQXVfRphiz5ZlIH4zhGyykw= Subject key identifier: 33:C6:93:24:8A:D0:FC:C4:31:3F:C0:BA:01:D1:76:1C:A8:5F:F0:23 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 643A4E9BC6CD2CA046ED0D1CCA8647B0F5C999F7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216242.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 216242 IP address blocks: 2a05:dfc1:9800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:3a:4e:9b:c6:cd:2c:a0:46:ed:0d:1c:ca:86:47:b0:f5:c9:99:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=33C693248AD0FCC4313FC0BA01D1761CA85FF023 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:a4:7d:44:49:fb:8f:ea:0c:35:d4:ee:75: 22:3e:a8:83:06:bb:3c:92:3b:ad:8b:9c:e2:2e:71: 76:52:a2:ef:12:bc:e2:16:14:5b:a0:03:f8:6e:37: 40:07:6e:c5:7b:e9:fc:1a:15:78:7e:15:73:e5:d5: 07:38:24:af:78:b4:da:0e:80:98:f7:45:3f:09:cd: 14:49:26:b7:a2:c8:70:46:73:ca:e6:c7:5b:d2:cb: 1f:f1:72:eb:38:7f:66:39:07:a1:ba:cd:07:f5:eb: 0b:4d:f7:f9:41:0a:f9:e0:e0:70:84:31:4e:b6:9f: f1:94:e0:b0:15:9b:07:cf:9e:dc:44:31:e6:53:97: fb:76:57:d1:13:1e:f3:ad:cf:16:7a:43:ee:98:f3: a2:af:99:7b:69:60:8e:04:59:91:86:f1:84:a9:09: 6b:c6:e2:a8:b8:0c:8f:4b:7d:3f:b5:9e:cc:45:1b: 38:5b:68:93:83:e9:8b:d2:23:96:73:87:c5:54:88: c3:29:d9:83:c6:61:81:ef:cb:d8:7e:73:36:fd:95: bb:64:10:f6:dd:20:6a:98:33:8f:b3:0d:a2:68:ef: 0a:8d:e6:31:b3:0b:f9:8a:a5:24:91:f8:a2:04:05: 4b:fc:5a:1f:d3:17:45:fa:a1:85:3a:1c:a6:8e:6e: 08:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:C6:93:24:8A:D0:FC:C4:31:3F:C0:BA:01:D1:76:1C:A8:5F:F0:23 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216242.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9800::/40 Signature Algorithm: sha256WithRSAEncryption be:12:1c:f3:76:ae:f7:05:7c:8d:17:65:d3:00:6b:87:07:49: b1:c6:37:0a:59:b5:7c:71:80:14:9b:c0:36:ca:05:aa:31:61: 2c:a1:e0:42:99:4d:e9:71:1f:e9:ea:62:75:26:97:4d:b8:39: 64:58:67:0a:b2:f0:61:0f:be:53:e1:58:ed:d1:3a:eb:34:d7: 3f:21:b9:22:2c:bf:2d:67:bc:71:92:08:85:45:37:06:99:a7: 9a:b0:13:59:42:30:2a:61:96:c3:ab:5a:76:7a:ac:d4:f8:81: 59:a8:df:f7:c5:92:ca:2b:91:db:bb:cc:97:b7:89:2e:1b:22: 95:ef:83:56:28:53:fa:e9:2d:e6:c7:c9:a1:62:da:75:3a:26: 5a:d8:92:f0:88:7c:0f:c1:59:fc:29:1b:e5:45:a4:23:24:15: df:bd:c2:93:c8:ed:62:dc:77:1b:d0:11:9a:db:db:64:11:36: 10:eb:8f:9d:9c:96:de:40:4a:21:63:26:8a:56:ff:de:f2:5f: 1b:59:4d:75:16:cf:4b:d4:13:fc:f9:d5:cc:17:85:b9:bf:f3: 61:02:3d:79:b0:44:b1:13:88:4c:36:3e:c2:0d:2c:c6:78:23: c4:04:e5:b6:d7:f8:ce:78:c0:b6:38:7e:1f:fa:05:80:72:83: 7a:91:aa:db -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZDpOm8bNLKBG7Q0cyoZHsPXJmfcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKDMzQzY5MzI0OEFEMEZDQzQzMTNGQzBCQTAxRDE3NjFDQTg1RkYwMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1dqR9REn7j+oMNdTudSI+qIMG uzySO62LnOIucXZSou8SvOIWFFugA/huN0AHbsV76fwaFXh+FXPl1Qc4JK94tNoO gJj3RT8JzRRJJreiyHBGc8rmx1vSyx/xcus4f2Y5B6G6zQf16wtN9/lBCvng4HCE MU62n/GU4LAVmwfPntxEMeZTl/t2V9ETHvOtzxZ6Q+6Y86KvmXtpYI4EWZGG8YSp CWvG4qi4DI9LfT+1nsxFGzhbaJOD6YvSI5Zzh8VUiMMp2YPGYYHvy9h+czb9lbtk EPbdIGqYM4+zDaJo7wqN5jGzC/mKpSSR+KIEBUv8Wh/TF0X6oYU6HKaObgjJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUM8aTJIrQ/MQxP8C6AdF2HKhf8CMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MjQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZgwDQYJKoZIhvcNAQELBQADggEBAL4S HPN2rvcFfI0XZdMAa4cHSbHGNwpZtXxxgBSbwDbKBaoxYSyh4EKZTelxH+nqYnUm l024OWRYZwqy8GEPvlPhWO3ROus01z8huSIsvy1nvHGSCIVFNwaZp5qwE1lCMCph lsOrWnZ6rNT4gVmo3/fFksorkdu7zJe3iS4bIpXvg1YoU/rpLebHyaFi2nU6JlrY kvCIfA/BWfwpG+VFpCMkFd+9wpPI7WLcdxvQEZrb22QRNhDrj52clt5ASiFjJopW /97yXxtZTXUWz0vUE/z51cwXhbm/82ECPXmwRLETiEw2PsINLMZ4I8QE5bbX+M54 wLY4fh/6BYByg3qRqts= -----END CERTIFICATE-----Generated at Sat Jul 5 04:20:06 2025 by rpki-client