$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216340.roa File: AS216340.roa (raw, json) Hash identifier: dsh/GHcLtrSh6cctSMWyu5qkIFDNhsY/4RRLcnZa/nw= Subject key identifier: C6:2B:00:E5:AB:88:4E:D3:F5:9F:61:88:00:63:B8:62:35:2A:49:49 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 66433051CE60C1392A22DCE942B977E3245E1810 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216340.roa Signing time: Fri 05 Jun 2026 07:12:21 +0000 ROA not before: Fri 05 Jun 2026 07:07:21 +0000 ROA not after: Fri 04 Jun 2027 07:12:21 +0000 asID: 216340 IP address blocks: 2a05:dfc1:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:43:30:51:ce:60:c1:39:2a:22:dc:e9:42:b9:77:e3:24:5e:18:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:21 2026 GMT Not After : Jun 4 07:12:21 2027 GMT Subject: CN=C62B00E5AB884ED3F59F61880063B862352A4949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:71:04:37:f0:2d:e4:e7:a9:8c:f8:82:65:8d: fe:9c:95:3c:8f:ee:36:5a:b8:7e:78:bb:7b:f7:98: 47:08:a7:1f:22:8e:24:c8:12:25:dd:f6:cd:c1:89: 81:a2:ef:41:b6:8b:23:13:bf:04:6a:a9:9c:23:be: 92:1b:07:de:68:80:0a:19:02:c9:e4:5e:fa:68:e4: 59:cd:0d:46:fe:75:a3:0e:09:50:54:55:d6:fa:59: fc:25:68:6a:56:12:51:c9:33:d9:58:75:f7:15:1d: b9:0c:e2:ed:98:64:62:d0:64:ac:7d:a3:f0:19:3d: 02:14:f9:20:c2:a3:30:dc:80:a9:e7:6a:f2:69:ad: 26:fd:9c:93:50:dc:a8:f6:29:f5:f0:81:69:7e:52: b6:2d:71:89:03:d0:25:62:03:1e:6f:1d:d9:e1:6d: 05:55:78:bd:ba:28:f1:77:c3:a2:e3:5e:1e:eb:a4: ca:73:f5:f0:25:b0:1a:23:ad:04:19:1a:f1:82:64: f9:95:09:e0:9c:d8:87:ed:d9:27:3c:2a:f2:02:ab: d9:38:39:52:83:17:c2:b6:f7:0d:dd:1d:32:13:d4: a8:8a:4c:02:57:00:41:26:42:84:12:15:c5:c2:ad: c7:da:77:a8:e5:c4:de:46:29:08:f6:ef:2a:31:62: 14:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2B:00:E5:AB:88:4E:D3:F5:9F:61:88:00:63:B8:62:35:2A:49:49 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216340.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8f00::/40 Signature Algorithm: sha256WithRSAEncryption ce:1f:75:a1:c2:30:7a:0c:d1:1a:71:ea:95:48:5d:4f:25:d3: 1e:1e:9a:17:2d:78:1c:78:c8:a2:f5:c6:55:49:50:57:ed:3f: ad:02:91:d5:b8:bc:d9:e5:51:15:ec:33:14:8e:d8:58:b8:a8: 03:53:6f:b2:28:87:0f:ee:f7:36:d9:19:6b:19:9c:a8:9c:26: 24:ba:15:0a:0c:17:39:17:d2:b4:62:22:f5:e8:8a:61:62:d4: 9b:dc:75:87:10:80:6b:67:dc:ce:cd:57:d6:e8:8d:76:86:af: 96:43:0f:b8:bd:b7:d9:5b:ed:d1:c1:17:b5:6c:9c:0f:2e:04: 68:df:50:08:1a:17:f8:6d:dc:45:e1:5c:80:da:bd:7c:6c:06: 40:a4:8a:ef:b7:31:5e:0a:0a:32:0f:65:4a:96:cf:aa:3b:c6: ec:9a:c0:90:e3:7b:5b:4c:87:fe:cd:7c:fc:46:0d:d4:56:e6: 66:a9:60:4e:a2:e6:45:54:2e:18:6a:03:56:44:a9:06:9a:d4: e8:f9:52:32:52:bc:fd:35:26:e3:a3:53:d7:bd:40:b6:cf:0d: 42:50:1d:3f:4a:6b:25:f2:3e:01:5c:1d:54:2e:d8:45:c4:71: df:9d:14:e6:f9:a5:80:24:c6:ad:55:98:cc:4e:96:49:cc:11: 5b:37:c5:f1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZkMwUc5gwTkqItzpQrl34yReGBAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjFaFw0yNzA2MDQwNzEyMjFaMDMxMTAvBgNV BAMTKEM2MkIwMEU1QUI4ODRFRDNGNTlGNjE4ODAwNjNCODYyMzUyQTQ5NDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBcQQ38C3k56mM+IJljf6clTyP 7jZauH54u3v3mEcIpx8ijiTIEiXd9s3BiYGi70G2iyMTvwRqqZwjvpIbB95ogAoZ AsnkXvpo5FnNDUb+daMOCVBUVdb6WfwlaGpWElHJM9lYdfcVHbkM4u2YZGLQZKx9 o/AZPQIU+SDCozDcgKnnavJprSb9nJNQ3Kj2KfXwgWl+UrYtcYkD0CViAx5vHdnh bQVVeL26KPF3w6LjXh7rpMpz9fAlsBojrQQZGvGCZPmVCeCc2Ift2Sc8KvICq9k4 OVKDF8K29w3dHTIT1KiKTAJXAEEmQoQSFcXCrcfad6jlxN5GKQj27yoxYhSbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxisA5auITtP1n2GIAGO4YjUqSUkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MzQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwY8wDQYJKoZIhvcNAQELBQADggEBAM4f daHCMHoM0Rpx6pVIXU8l0x4emhcteBx4yKL1xlVJUFftP60CkdW4vNnlURXsMxSO 2Fi4qANTb7Iohw/u9zbZGWsZnKicJiS6FQoMFzkX0rRiIvXoimFi1JvcdYcQgGtn 3M7NV9bojXaGr5ZDD7i9t9lb7dHBF7VsnA8uBGjfUAgaF/ht3EXhXIDavXxsBkCk iu+3MV4KCjIPZUqWz6o7xuyawJDje1tMh/7NfPxGDdRW5mapYE6i5kVULhhqA1ZE qQaa1Oj5UjJSvP01JuOjU9e9QLbPDUJQHT9KayXyPgFcHVQu2EXEcd+dFOb5pYAk xq1VmMxOlknMEVs3xfE= -----END CERTIFICATE-----Generated at Sat Jun 6 06:42:32 2026 by rpki-client