$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216429.roa File: AS216429.roa (raw, json) Hash identifier: m1YXxkgLUqnDYKYvvTe0WCUUCuCA09f6ddaukkrdb7o= Subject key identifier: 29:D7:4A:A6:3C:2F:91:1A:E8:34:C9:13:9B:84:B1:08:16:10:7D:18 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 388F6ADDDE12D995A0C8E2857B031D581A870F11 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216429.roa Signing time: Fri 04 Jul 2025 06:53:07 +0000 ROA not before: Fri 04 Jul 2025 06:48:07 +0000 ROA not after: Fri 03 Jul 2026 06:53:07 +0000 asID: 216429 IP address blocks: 2a05:dfc1:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:8f:6a:dd:de:12:d9:95:a0:c8:e2:85:7b:03:1d:58:1a:87:0f:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:07 2025 GMT Not After : Jul 3 06:53:07 2026 GMT Subject: CN=29D74AA63C2F911AE834C9139B84B10816107D18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4a:1a:14:81:cd:6f:1b:46:64:ef:c9:d7:0a: 85:31:5f:48:08:89:f8:51:43:55:84:bd:67:16:6b: ed:5e:2b:e1:44:06:48:3b:b3:2e:a6:1a:5b:78:0b: 30:77:fd:5b:a4:2c:fa:fb:2d:c9:98:35:72:9d:16: a9:c8:e7:bf:48:a4:53:30:fe:82:82:a6:64:15:08: 01:7b:fc:45:d2:4d:67:fc:20:d1:cd:5b:6b:49:aa: c1:c7:d8:5f:59:a4:45:6f:53:8f:71:9e:24:8d:44: 49:87:dd:b7:8b:d2:73:7d:0a:ad:41:a9:80:94:e3: ae:9c:08:61:39:5c:98:be:95:70:64:bc:3c:e6:d8: 68:54:54:0e:bd:8e:da:ca:1d:a1:bf:27:ee:f2:fa: e6:09:9c:bf:09:87:d5:34:cd:ef:02:2f:8e:0b:7a: a6:12:2b:6a:57:16:49:a5:bf:6f:e2:b2:8d:77:2c: b9:8c:66:fb:a6:d8:4d:63:45:ca:2d:aa:47:57:49: a2:8e:c9:3c:a9:bf:54:7e:91:87:e6:c0:4d:f4:a0: 0e:c1:99:e9:7b:04:84:54:30:01:70:43:c1:ef:19: 7a:50:ca:63:ff:a3:e7:ca:61:29:2c:f8:07:cb:cf: 22:89:61:bd:32:48:45:a7:a9:63:1a:32:a4:ed:12: ef:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D7:4A:A6:3C:2F:91:1A:E8:34:C9:13:9B:84:B1:08:16:10:7D:18 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216429.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8700::/40 Signature Algorithm: sha256WithRSAEncryption 64:07:c4:d6:3e:f5:17:7c:11:82:8f:8d:f4:df:39:50:2f:f4: 78:81:05:18:5b:5a:92:d8:71:cc:0c:03:59:d0:6b:52:28:e9: 7a:df:17:92:de:a9:2f:a4:60:1c:2f:e2:e0:b5:4c:06:db:50: 5f:80:f5:75:b1:44:10:90:d8:a1:34:fb:86:1d:26:18:52:08: 76:d8:fa:91:cb:2d:33:43:f5:70:4f:5c:c7:c2:5b:3f:5e:13: 17:a3:59:76:db:4a:17:cb:b8:c9:4e:50:ac:37:ff:6b:e9:35: bd:90:36:61:d8:ae:93:e8:01:65:94:e8:30:6f:ed:ac:95:9e: 64:7c:bc:80:a3:77:87:0c:26:1c:e2:0b:b0:7c:14:4e:36:af: 5a:ce:46:d3:cf:c0:17:93:e4:47:27:22:e9:03:fd:3c:62:e0: fc:0b:58:96:76:54:b7:6d:34:c6:fa:69:0b:1b:12:da:2a:d6: 86:6b:d9:f9:a4:15:48:dd:f0:ad:e5:b9:82:39:8a:a1:ef:70: a4:f9:7b:7b:12:60:08:7f:5e:02:6f:95:20:d5:14:b2:2a:86: 1e:10:0c:f3:35:3d:3c:b4:b8:ec:09:26:89:ad:9b:15:2c:af: 7a:c7:be:2d:7f:de:e3:1f:c4:36:7f:96:ee:42:35:b9:26:ad: 8a:c5:70:a6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUOI9q3d4S2ZWgyOKFewMdWBqHDxEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDdaFw0yNjA3MDMwNjUzMDdaMDMxMTAvBgNV BAMTKDI5RDc0QUE2M0MyRjkxMUFFODM0QzkxMzlCODRCMTA4MTYxMDdEMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEShoUgc1vG0Zk78nXCoUxX0gI ifhRQ1WEvWcWa+1eK+FEBkg7sy6mGlt4CzB3/VukLPr7LcmYNXKdFqnI579IpFMw /oKCpmQVCAF7/EXSTWf8INHNW2tJqsHH2F9ZpEVvU49xniSNREmH3beL0nN9Cq1B qYCU466cCGE5XJi+lXBkvDzm2GhUVA69jtrKHaG/J+7y+uYJnL8Jh9U0ze8CL44L eqYSK2pXFkmlv2/iso13LLmMZvum2E1jRcotqkdXSaKOyTypv1R+kYfmwE30oA7B mel7BIRUMAFwQ8HvGXpQymP/o+fKYSks+AfLzyKJYb0ySEWnqWMaMqTtEu9jAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUKddKpjwvkRroNMkTm4SxCBYQfRgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2NDI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYcwDQYJKoZIhvcNAQELBQADggEBAGQH xNY+9Rd8EYKPjfTfOVAv9HiBBRhbWpLYccwMA1nQa1Io6XrfF5LeqS+kYBwv4uC1 TAbbUF+A9XWxRBCQ2KE0+4YdJhhSCHbY+pHLLTND9XBPXMfCWz9eExejWXbbShfL uMlOUKw3/2vpNb2QNmHYrpPoAWWU6DBv7ayVnmR8vICjd4cMJhziC7B8FE42r1rO RtPPwBeT5EcnIukD/Txi4PwLWJZ2VLdtNMb6aQsbEtoq1oZr2fmkFUjd8K3luYI5 iqHvcKT5e3sSYAh/XgJvlSDVFLIqhh4QDPM1PTy0uOwJJomtmxUsr3rHvi1/3uMf xDZ/lu5CNbkmrYrFcKY= -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:39 2025 by rpki-client