$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216340.roa File: AS216340.roa (raw, json) Hash identifier: C8vCT2wPCafw8zGcbSgKc7EKNEDuQ1zTl8FVRHxF0N8= Subject key identifier: 78:BF:DA:A7:C9:CE:AC:DC:CF:8F:88:F4:9D:CA:67:A5:2E:97:E5:53 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1B6464A27C51838AB0D51A6610E91760E84E6C4C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216340.roa Signing time: Fri 04 Jul 2025 06:52:58 +0000 ROA not before: Fri 04 Jul 2025 06:47:58 +0000 ROA not after: Fri 03 Jul 2026 06:52:58 +0000 asID: 216340 IP address blocks: 2a05:dfc1:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:64:64:a2:7c:51:83:8a:b0:d5:1a:66:10:e9:17:60:e8:4e:6c:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:58 2025 GMT Not After : Jul 3 06:52:58 2026 GMT Subject: CN=78BFDAA7C9CEACDCCF8F88F49DCA67A52E97E553 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:33:db:df:a7:3e:a0:ce:eb:f7:ac:ee:d4:4e: 00:09:cf:03:c2:cc:d0:5d:8f:ce:06:bd:c0:10:6c: 36:81:55:a1:cd:b0:c3:83:75:09:c9:d0:35:a2:31: 3a:76:70:d6:d0:fb:b5:0a:71:f1:07:e3:72:70:09: ce:4d:50:c5:2c:29:46:4b:8d:fe:48:ed:31:9b:9f: 6d:e1:81:82:fb:1c:80:66:e2:2f:8a:fe:8d:11:0b: dc:ff:65:d7:06:ed:70:b2:d2:18:0d:f6:9f:5f:1a: e0:8c:70:83:9f:1e:87:c4:0f:56:69:f4:44:27:6b: 8f:d4:77:65:b4:31:87:ca:4c:2c:b3:d6:b7:42:8d: b1:30:da:95:68:30:74:71:8c:71:60:e6:17:c3:1e: e9:eb:d0:3c:5d:52:9f:30:a7:76:5f:60:4c:96:e6: 18:35:c7:c8:c8:fd:7b:46:21:f9:d8:5f:d3:ad:df: 7b:5b:9e:92:c8:a6:1a:70:66:94:15:12:99:9b:63: 6f:4a:ce:2f:27:de:72:34:1f:b2:54:49:75:ba:bd: 6b:2d:01:a7:07:3d:1c:4b:7c:04:9d:7a:cd:4b:86: d7:e8:95:2e:46:af:3f:94:f1:9c:d9:e1:32:65:c2: ac:3b:c7:5a:86:c4:35:ae:8c:28:16:86:6c:79:75: b7:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:BF:DA:A7:C9:CE:AC:DC:CF:8F:88:F4:9D:CA:67:A5:2E:97:E5:53 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216340.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 38:5b:e8:f8:69:70:1f:2d:47:2d:a8:4e:d4:b1:c4:32:8d:da: a1:a0:e9:01:34:06:75:cb:13:b8:6d:c9:40:2a:f4:4f:3d:47: 8c:17:05:11:fa:12:54:b8:99:12:85:56:ea:83:7b:19:d3:23: f6:c5:9f:e8:aa:09:f3:86:6d:27:63:bc:db:c8:7f:db:d0:b2: f3:1a:d8:94:b4:e0:27:0f:d6:cc:47:c6:98:93:3b:ef:bf:62: b8:cb:03:8b:fe:4e:ff:fb:74:ad:a6:73:3b:7c:b3:eb:d6:1d: 43:8e:bc:cb:46:9c:5c:b5:e8:70:5e:56:5b:2f:37:c4:9b:f7: 51:19:58:fd:94:f1:a9:c0:27:13:e2:da:4e:07:4f:07:de:17: 6a:1d:a7:15:19:ee:a5:54:72:1f:58:25:70:93:c9:b0:e9:81: a2:e3:e1:fd:b7:e3:1f:a9:f7:99:94:04:06:f3:33:65:1a:6c: 8a:48:07:ff:d4:91:34:32:26:27:6b:9d:f7:53:7e:69:5e:d6: e7:1b:53:82:77:3e:7d:cd:35:43:6f:22:54:b5:e8:f4:15:2f: 53:ed:01:0b:c9:7a:89:58:af:98:fd:4b:85:67:b3:7c:82:07: 6a:8a:36:4b:34:9a:ba:53:72:78:6e:cf:80:cc:86:27:e1:b7: 9c:96:fc:e1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUG2RkonxRg4qw1RpmEOkXYOhObEwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NThaFw0yNjA3MDMwNjUyNThaMDMxMTAvBgNV BAMTKDc4QkZEQUE3QzlDRUFDRENDRjhGODhGNDlEQ0E2N0E1MkU5N0U1NTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5M9vfpz6gzuv3rO7UTgAJzwPC zNBdj84GvcAQbDaBVaHNsMODdQnJ0DWiMTp2cNbQ+7UKcfEH43JwCc5NUMUsKUZL jf5I7TGbn23hgYL7HIBm4i+K/o0RC9z/ZdcG7XCy0hgN9p9fGuCMcIOfHofED1Zp 9EQna4/Ud2W0MYfKTCyz1rdCjbEw2pVoMHRxjHFg5hfDHunr0DxdUp8wp3ZfYEyW 5hg1x8jI/XtGIfnYX9Ot33tbnpLIphpwZpQVEpmbY29Kzi8n3nI0H7JUSXW6vWst AacHPRxLfASdes1LhtfolS5Grz+U8ZzZ4TJlwqw7x1qGxDWujCgWhmx5dbdfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUeL/ap8nOrNzPj4j0ncpnpS6X5VMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MzQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwY8wDQYJKoZIhvcNAQELBQADggEBADhb 6PhpcB8tRy2oTtSxxDKN2qGg6QE0BnXLE7htyUAq9E89R4wXBRH6ElS4mRKFVuqD exnTI/bFn+iqCfOGbSdjvNvIf9vQsvMa2JS04CcP1sxHxpiTO++/YrjLA4v+Tv/7 dK2mczt8s+vWHUOOvMtGnFy16HBeVlsvN8Sb91EZWP2U8anAJxPi2k4HTwfeF2od pxUZ7qVUch9YJXCTybDpgaLj4f234x+p95mUBAbzM2UabIpIB//UkTQyJidrnfdT fmle1ucbU4J3Pn3NNUNvIlS16PQVL1PtAQvJeolYr5j9S4Vns3yCB2qKNks0mrpT cnhuz4DMhifht5yW/OE= -----END CERTIFICATE-----Generated at Sat Jul 5 04:05:54 2025 by rpki-client