$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216305.roa File: AS216305.roa (raw, json) Hash identifier: I7uy0xZu686uQzmZv1q0eV2UxZ26uOZuoV4cQNiYQk4= Subject key identifier: 36:F1:69:8B:94:37:2F:9B:B8:F4:FE:D0:B4:61:01:B8:32:72:E8:9C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2F9D93B9E541058DACCB697455F8C94772BFA1DF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216305.roa Signing time: Fri 05 Jun 2026 07:12:47 +0000 ROA not before: Fri 05 Jun 2026 07:07:47 +0000 ROA not after: Fri 04 Jun 2027 07:12:47 +0000 asID: 216305 IP address blocks: 2a06:9f81:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 19:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:9d:93:b9:e5:41:05:8d:ac:cb:69:74:55:f8:c9:47:72:bf:a1:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:47 2026 GMT Not After : Jun 4 07:12:47 2027 GMT Subject: CN=36F1698B94372F9BB8F4FED0B46101B83272E89C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c0:b3:70:e2:8c:27:bb:20:b7:4c:a3:ba:43: 8a:d4:f8:60:55:86:88:5c:e7:b7:e3:fd:ff:44:39: 33:3e:af:0f:77:4a:a1:12:86:4b:9f:db:f9:35:a8: c5:6a:1e:bc:e8:0b:63:6d:db:91:70:cb:de:6b:e6: b5:8d:52:4a:15:69:dd:cc:49:70:bd:68:74:49:f9: 62:ed:ae:20:8d:ed:f1:1c:62:11:90:81:10:bd:ee: a5:a1:45:42:e5:8e:49:cd:ac:29:ce:5b:a3:6f:d5: e0:59:4e:e1:60:f0:3c:40:a3:b7:7b:af:79:2a:90: 1e:35:67:c4:89:c4:07:98:55:65:56:ab:f4:5c:69: fb:e3:23:5e:48:9e:ba:83:d5:d6:da:b0:f9:ba:ac: 4b:5d:ae:9b:ab:6e:1d:52:ba:63:c1:62:5c:a4:c4: 12:ab:fb:3d:aa:74:8a:54:2e:52:06:43:c9:6c:f4: 7f:6b:c0:7d:d3:88:8c:69:9c:12:89:68:36:f4:11: 15:5c:ad:74:c4:fa:2a:2d:99:52:1a:65:55:9c:de: 28:b5:76:51:c3:18:76:fd:46:a0:2c:09:22:0b:bd: 10:97:b5:bd:6f:a2:04:50:17:d6:61:30:9c:23:c5: 45:d2:6f:38:d2:22:f8:23:50:9e:b3:80:97:eb:c9: 85:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F1:69:8B:94:37:2F:9B:B8:F4:FE:D0:B4:61:01:B8:32:72:E8:9C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216305.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5900::/40 Signature Algorithm: sha256WithRSAEncryption ea:3c:03:e6:bc:c4:08:67:05:af:99:88:a6:01:a8:ad:3b:35: db:ca:62:86:a4:d5:a8:39:a4:fb:f8:58:99:d7:00:08:52:c7: ad:d2:42:a7:fb:e1:4c:4d:5d:ac:87:4e:6d:7d:fc:7f:06:ce: 39:e0:a0:56:96:70:5e:95:13:28:40:1b:d5:96:3b:71:35:6d: 26:07:74:85:93:05:91:92:c1:1c:19:17:e7:fb:4f:f9:9e:4f: 92:49:b3:45:96:9a:2b:44:85:46:7e:71:1d:e8:f0:56:84:41: cf:3c:ee:ab:1f:cd:88:61:4d:a3:66:cd:d4:51:1b:2f:0e:59: d4:fd:be:e7:de:5e:1a:95:8a:0f:87:c8:65:cd:61:7f:c4:c4: 32:0b:ef:eb:88:12:49:71:1b:03:2f:09:b4:a9:1f:ff:85:e1: 24:18:9e:52:c0:2f:1e:43:f8:e5:55:45:1e:26:94:0d:7e:ac: 04:c8:1e:ed:6a:63:a1:55:5a:b4:99:44:fe:3c:26:3d:e0:d5: cc:f0:d0:f8:43:44:7d:c5:8d:7d:bb:d6:3f:23:f8:9e:46:2c: 28:77:de:4b:19:b1:b4:df:a3:6c:89:75:f1:b4:5e:cf:79:5f: f2:54:3d:16:bb:1f:8c:c6:aa:0d:de:f8:6a:9e:10:ad:ae:52: bc:ab:ee:8c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUL52TueVBBY2sy2l0VfjJR3K/od8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDdaFw0yNzA2MDQwNzEyNDdaMDMxMTAvBgNV BAMTKDM2RjE2OThCOTQzNzJGOUJCOEY0RkVEMEI0NjEwMUI4MzI3MkU4OUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/wLNw4ownuyC3TKO6Q4rU+GBV hohc57fj/f9EOTM+rw93SqEShkuf2/k1qMVqHrzoC2Nt25Fwy95r5rWNUkoVad3M SXC9aHRJ+WLtriCN7fEcYhGQgRC97qWhRULljknNrCnOW6Nv1eBZTuFg8DxAo7d7 r3kqkB41Z8SJxAeYVWVWq/RcafvjI15InrqD1dbasPm6rEtdrpurbh1SumPBYlyk xBKr+z2qdIpULlIGQ8ls9H9rwH3TiIxpnBKJaDb0ERVcrXTE+iotmVIaZVWc3ii1 dlHDGHb9RqAsCSILvRCXtb1vogRQF9ZhMJwjxUXSbzjSIvgjUJ6zgJfryYUlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUNvFpi5Q3L5u49P7QtGEBuDJy6JwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MzA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVkwDQYJKoZIhvcNAQELBQADggEBAOo8 A+a8xAhnBa+ZiKYBqK07NdvKYoak1ag5pPv4WJnXAAhSx63SQqf74UxNXayHTm19 /H8GzjngoFaWcF6VEyhAG9WWO3E1bSYHdIWTBZGSwRwZF+f7T/meT5JJs0WWmitE hUZ+cR3o8FaEQc887qsfzYhhTaNmzdRRGy8OWdT9vufeXhqVig+HyGXNYX/ExDIL 7+uIEklxGwMvCbSpH/+F4SQYnlLALx5D+OVVRR4mlA1+rATIHu1qY6FVWrSZRP48 Jj3g1czw0PhDRH3FjX271j8j+J5GLCh33ksZsbTfo2yJdfG0Xs95X/JUPRa7H4zG qg3e+GqeEK2uUryr7ow= -----END CERTIFICATE-----Generated at Sat Jun 6 05:23:10 2026 by rpki-client