$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216305.roa File: AS216305.roa (raw, json) Hash identifier: KuG07qrWa2QCtHvt9tvE3qBhSkXjdFgllW23NsBdXfU= Subject key identifier: 63:A8:52:97:38:2D:B0:8F:4A:1D:66:FD:A9:79:C4:33:91:B2:98:E4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 35FD6F4354650CBD4AF8DBED645179B6DD8F6D82 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216305.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 216305 IP address blocks: 2a06:9f81:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:fd:6f:43:54:65:0c:bd:4a:f8:db:ed:64:51:79:b6:dd:8f:6d:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=63A85297382DB08F4A1D66FDA979C43391B298E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b2:b4:36:e6:5d:8a:bf:cf:b6:88:be:15:38: aa:77:fc:c0:a0:6d:02:d8:54:c3:e8:6a:1f:23:88: ed:2b:9c:bf:9b:01:09:87:e8:62:ad:ad:95:76:fd: bd:87:1f:10:30:20:8b:3e:81:89:fa:e3:4c:17:72: b4:e3:93:f6:8e:f5:83:33:dc:c6:b7:9d:56:03:f1: ac:70:2c:90:93:0a:64:29:65:5f:78:25:d1:38:02: bd:69:0b:e3:7a:e2:27:67:27:98:89:f3:e0:fe:3b: 35:01:7e:3c:3d:58:ef:83:71:9e:15:69:82:df:b4: 51:36:ba:ab:f7:05:e2:a9:a0:17:8c:08:e8:97:31: e1:59:ea:1b:d1:f6:33:3f:d9:6c:29:b6:e3:b2:8b: 2f:3d:04:25:22:fb:e1:71:88:7e:2f:6d:d7:39:e7: 4d:bc:47:9f:e2:94:a4:54:1d:f4:bb:06:7e:5d:c5: 0d:c7:61:5d:bb:fd:4c:a4:5b:d0:f5:c2:08:05:fb: 9e:9d:8d:be:4a:88:d7:94:29:9b:7e:f2:68:fd:7d: 64:47:f6:9d:c9:2c:cc:5e:55:d9:41:cd:52:fb:81: 31:d5:2a:7d:96:39:f3:7a:ba:16:7a:cf:b4:df:0c: 70:a6:7b:a2:0b:02:05:87:67:02:ed:18:1e:ec:1b: f4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A8:52:97:38:2D:B0:8F:4A:1D:66:FD:A9:79:C4:33:91:B2:98:E4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216305.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5900::/40 Signature Algorithm: sha256WithRSAEncryption 01:d7:19:9c:cf:fb:ec:13:aa:4c:81:ed:a4:f7:3e:07:f1:d5: 03:e0:97:8a:85:2b:df:dd:b3:00:cc:2a:12:42:f7:de:1e:88: 14:92:7b:4f:bc:0a:74:b8:ba:4a:ec:bd:e3:fb:1e:c3:57:fc: bf:7f:8f:05:49:4a:ed:55:80:31:c8:88:07:db:5b:64:ca:54: 45:4f:59:1f:69:e0:9e:eb:5a:fe:98:ba:ab:c1:49:4c:91:64: c1:a8:9d:f0:c8:79:a1:f2:a2:4b:81:64:b3:c4:83:4e:02:f1: 7f:72:77:92:36:ed:c4:5c:8c:d5:96:b1:87:eb:5d:ca:36:ec: 26:d6:12:2a:2f:ce:ff:d8:c9:6a:52:b3:30:6c:0e:79:d0:8c: 20:06:d5:15:17:18:db:6b:60:bc:4c:18:76:1f:c4:3b:f8:47: 16:a8:03:cb:13:9e:cd:b3:33:09:28:04:04:13:d4:b6:f1:a6: 30:cc:f6:bd:50:6d:5f:40:76:36:ae:c8:25:74:a9:e1:99:03: 9f:9f:1d:23:4e:a4:9c:f8:ce:6f:2c:e1:27:0d:b2:fa:69:ca: 71:a3:46:73:19:31:36:d0:eb:dc:cf:fa:8e:c2:c6:5b:96:3a: 78:c9:ff:63:a9:4c:2c:d1:10:42:56:4d:77:fd:0c:13:bd:44: aa:b2:40:18 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNf1vQ1RlDL1K+NvtZFF5tt2PbYIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKDYzQTg1Mjk3MzgyREIwOEY0QTFENjZGREE5NzlDNDMzOTFCMjk4RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzsrQ25l2Kv8+2iL4VOKp3/MCg bQLYVMPoah8jiO0rnL+bAQmH6GKtrZV2/b2HHxAwIIs+gYn640wXcrTjk/aO9YMz 3Ma3nVYD8axwLJCTCmQpZV94JdE4Ar1pC+N64idnJ5iJ8+D+OzUBfjw9WO+DcZ4V aYLftFE2uqv3BeKpoBeMCOiXMeFZ6hvR9jM/2WwptuOyiy89BCUi++FxiH4vbdc5 5028R5/ilKRUHfS7Bn5dxQ3HYV27/UykW9D1wggF+56djb5KiNeUKZt+8mj9fWRH 9p3JLMxeVdlBzVL7gTHVKn2WOfN6uhZ6z7TfDHCme6ILAgWHZwLtGB7sG/RdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUY6hSlzgtsI9KHWb9qXnEM5GymOQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MzA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVkwDQYJKoZIhvcNAQELBQADggEBAAHX GZzP++wTqkyB7aT3Pgfx1QPgl4qFK9/dswDMKhJC994eiBSSe0+8CnS4ukrsveP7 HsNX/L9/jwVJSu1VgDHIiAfbW2TKVEVPWR9p4J7rWv6YuqvBSUyRZMGonfDIeaHy okuBZLPEg04C8X9yd5I27cRcjNWWsYfrXco27CbWEiovzv/YyWpSszBsDnnQjCAG 1RUXGNtrYLxMGHYfxDv4RxaoA8sTns2zMwkoBAQT1LbxpjDM9r1QbV9AdjauyCV0 qeGZA5+fHSNOpJz4zm8s4ScNsvppynGjRnMZMTbQ69zP+o7CxluWOnjJ/2OpTCzR EEJWTXf9DBO9RKqyQBg= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:03 2025 by rpki-client