$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216452.roa File: AS216452.roa (raw, json) Hash identifier: hX2CT6xZCb7U7osy1SM/us+pG/GXd2wTaSRjAqPYu3M= Subject key identifier: B2:3C:40:DD:2B:12:D9:52:95:DD:81:13:80:BE:B9:7F:66:9B:06:90 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4E5B0C7BF1CE1B65FB8106AD2AC9F8D1B89B894F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216452.roa Signing time: Fri 04 Jul 2025 06:53:24 +0000 ROA not before: Fri 04 Jul 2025 06:48:24 +0000 ROA not after: Fri 03 Jul 2026 06:53:24 +0000 asID: 216452 IP address blocks: 2a05:dfc1:8200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5b:0c:7b:f1:ce:1b:65:fb:81:06:ad:2a:c9:f8:d1:b8:9b:89:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:24 2025 GMT Not After : Jul 3 06:53:24 2026 GMT Subject: CN=B23C40DD2B12D95295DD811380BEB97F669B0690 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:99:7c:8d:2d:32:95:b5:0f:d1:69:76:1c:8b: 6c:f7:de:92:b0:dd:ba:e4:ef:67:66:9f:8f:0f:20: 1b:17:a2:60:eb:43:7d:4c:ee:b2:08:a1:87:f4:97: f2:57:c4:f2:41:fc:81:68:da:4e:9b:0e:22:5f:66: 5f:8b:3f:e3:85:d1:2f:72:3d:af:52:24:11:95:35: 48:7c:04:0e:d1:4a:4c:7c:f8:49:b5:9f:0d:58:a3: 79:b9:0e:b3:73:9e:26:46:a2:53:14:53:1f:ce:63: 72:e3:41:b2:1e:a9:7f:80:f7:43:5c:44:0f:c6:68: e7:a3:8b:05:41:48:69:b2:4b:59:07:f9:36:9b:4c: fd:4d:e8:3f:9a:93:89:17:11:52:32:4b:c5:68:c6: 9e:a5:15:70:7a:60:8c:61:5e:0b:13:99:f0:fc:6e: f8:5e:8e:9f:72:44:c4:a1:93:85:b2:31:dc:3c:05: a7:ac:70:3c:88:a7:e9:e1:13:6f:0d:8a:c7:51:d6: cd:ea:25:7f:a8:27:21:b1:8f:0e:3d:6a:5c:18:01: 8b:ad:0a:6c:9d:26:1e:bb:a9:16:07:98:73:0b:99: 1c:5f:c4:c1:42:66:9c:63:e3:21:d0:26:19:e2:90: 34:c1:58:12:e0:99:cd:34:fb:a7:dd:dd:10:e8:9d: 4a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3C:40:DD:2B:12:D9:52:95:DD:81:13:80:BE:B9:7F:66:9B:06:90 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216452.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8200::/40 Signature Algorithm: sha256WithRSAEncryption 61:28:ee:b2:1c:12:f6:e5:4b:f1:ca:1a:57:38:da:55:a1:4a: b1:6a:af:9b:5b:ee:46:cf:10:8a:2f:6b:49:58:f3:4e:6d:e7: ee:f9:b3:68:c2:ca:e8:01:81:45:27:ab:c0:1f:0b:e6:df:ea: cd:13:f9:59:09:3d:21:c5:70:31:31:92:e0:a2:71:fe:25:f6: aa:eb:f7:b3:70:a1:bf:90:a8:59:fa:69:33:59:82:32:c2:71: 06:0b:f5:2d:01:ce:d8:3f:65:08:ec:71:41:0e:38:11:91:99: 13:2f:0a:cb:61:d1:89:87:7b:8d:6f:28:b5:7c:ec:0d:6b:8d: 25:68:25:7f:11:b0:5e:9e:10:d4:ee:68:01:f2:d8:d3:16:cc: 30:b8:a2:e3:ee:3c:d9:eb:dd:4f:51:f6:57:f6:08:95:32:59: 46:0c:d9:0d:67:73:8a:2b:05:25:76:f0:e3:cf:46:bf:83:d7: fd:57:62:3d:b5:cf:1d:54:0b:56:00:c1:60:0c:bc:b6:65:14: bb:50:65:d2:02:a1:85:47:2f:96:d9:1b:06:f6:93:e0:b8:69: b5:31:48:88:c1:be:7c:5b:c5:b9:18:1d:e4:9c:d9:7e:21:cc: 0c:9c:47:db:f6:39:8a:ea:85:25:06:82:0a:80:4c:aa:ef:e7: 03:50:49:f8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTlsMe/HOG2X7gQatKsn40bibiU8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjRaFw0yNjA3MDMwNjUzMjRaMDMxMTAvBgNV BAMTKEIyM0M0MEREMkIxMkQ5NTI5NUREODExMzgwQkVCOTdGNjY5QjA2OTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHmXyNLTKVtQ/RaXYci2z33pKw 3brk72dmn48PIBsXomDrQ31M7rIIoYf0l/JXxPJB/IFo2k6bDiJfZl+LP+OF0S9y Pa9SJBGVNUh8BA7RSkx8+Em1nw1Yo3m5DrNzniZGolMUUx/OY3LjQbIeqX+A90Nc RA/GaOejiwVBSGmyS1kH+TabTP1N6D+ak4kXEVIyS8Voxp6lFXB6YIxhXgsTmfD8 bvhejp9yRMShk4WyMdw8BaescDyIp+nhE28NisdR1s3qJX+oJyGxjw49alwYAYut CmydJh67qRYHmHMLmRxfxMFCZpxj4yHQJhnikDTBWBLgmc00+6fd3RDonUphAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsjxA3SsS2VKV3YETgL65f2abBpAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2NDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYIwDQYJKoZIhvcNAQELBQADggEBAGEo 7rIcEvblS/HKGlc42lWhSrFqr5tb7kbPEIova0lY805t5+75s2jCyugBgUUnq8Af C+bf6s0T+VkJPSHFcDExkuCicf4l9qrr97Nwob+QqFn6aTNZgjLCcQYL9S0Bztg/ ZQjscUEOOBGRmRMvCsth0YmHe41vKLV87A1rjSVoJX8RsF6eENTuaAHy2NMWzDC4 ouPuPNnr3U9R9lf2CJUyWUYM2Q1nc4orBSV28OPPRr+D1/1XYj21zx1UC1YAwWAM vLZlFLtQZdICoYVHL5bZGwb2k+C4abUxSIjBvnxbxbkYHeSc2X4hzAycR9v2OYrq hSUGggqATKrv5wNQSfg= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:54 2025 by rpki-client