$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216452.roa File: AS216452.roa (raw, json) Hash identifier: Z+oXlZBjhYXBA5HhpI78jErxtGnr/owuz/a4x7ZKnvo= Subject key identifier: 59:8E:0D:92:5B:1D:C1:6B:87:5B:DA:23:FE:66:38:86:92:BF:07:1B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0422F84A16F07112D0A746DE4C4A2636D6A8B797 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216452.roa Signing time: Fri 05 Jun 2026 07:12:23 +0000 ROA not before: Fri 05 Jun 2026 07:07:23 +0000 ROA not after: Fri 04 Jun 2027 07:12:23 +0000 asID: 216452 IP address blocks: 2a05:dfc1:8200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:22:f8:4a:16:f0:71:12:d0:a7:46:de:4c:4a:26:36:d6:a8:b7:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:23 2026 GMT Not After : Jun 4 07:12:23 2027 GMT Subject: CN=598E0D925B1DC16B875BDA23FE66388692BF071B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ac:0e:b7:e6:aa:ea:00:78:f3:f2:a2:5c:e7: 3c:ff:3d:28:ee:07:eb:f7:be:b9:13:df:4b:6a:21: d0:74:2f:62:49:f0:c7:1c:fd:cd:83:8f:bb:10:e5: f7:c5:e1:b6:10:c8:f8:ed:55:b2:cf:99:96:12:bf: 5f:f1:dc:be:f5:4a:3b:f1:b7:50:61:32:1e:01:46: ee:17:7a:84:60:0f:fe:c8:10:13:cd:9b:93:e8:8e: a9:26:54:1b:06:e4:75:29:4b:1b:93:1d:25:46:f7: 34:a7:dd:66:8a:7e:d0:9b:1c:62:92:09:76:5c:76: c4:f9:1f:5a:c1:55:54:38:25:7f:84:6c:d5:04:82: c1:c2:c6:4a:08:3f:6c:95:82:65:fa:4f:5d:bf:33: e2:6c:b3:df:d7:65:7c:48:b6:58:c5:b0:d3:5c:7b: 8b:79:de:99:c2:a2:af:39:42:9a:9b:dd:04:2c:10: 09:6e:b7:04:c7:5b:40:bb:c6:9e:c7:4e:97:c3:24: d1:bb:38:35:fa:d5:60:61:25:6f:ba:7d:f6:de:e9: 25:c2:6b:3c:44:32:48:c8:d6:0a:78:a3:c5:56:ab: 33:b9:40:08:ca:f5:c1:cb:dc:10:59:7b:8f:79:de: fa:68:e5:b4:96:3c:09:76:13:12:b2:3e:dc:19:ac: 07:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8E:0D:92:5B:1D:C1:6B:87:5B:DA:23:FE:66:38:86:92:BF:07:1B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216452.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8200::/40 Signature Algorithm: sha256WithRSAEncryption bf:9e:b9:1c:a3:ef:2e:64:59:20:e5:f7:69:a5:2b:cd:74:fe: 05:92:e8:f8:15:51:f4:2c:ff:d9:3b:31:b1:04:0b:42:1f:59: 2d:76:bf:69:f6:c0:62:19:ac:49:91:1d:29:99:1c:c7:98:0b: 5c:2c:62:fd:71:d1:6f:6e:ad:3b:7c:65:67:aa:f8:87:0b:7e: 58:f7:f9:32:af:e1:23:86:44:cd:1e:b4:3f:c1:a3:46:35:04: 5f:51:9b:f9:0d:b4:09:59:c4:39:29:3c:4b:64:06:82:64:e1: 4f:4e:15:89:b1:02:a5:07:6a:a3:d0:1c:07:16:31:c8:86:88: f3:ab:92:be:76:ba:1c:19:56:20:fc:87:19:d5:d1:b7:d4:32: d1:e2:18:7d:6b:eb:c0:2d:24:3a:1a:86:79:ce:e4:e1:01:a0: b5:24:c2:17:c8:d8:42:7f:75:b5:83:b3:5b:18:47:f7:fa:bf: ba:1c:69:fa:a9:7e:8e:3f:2f:19:11:56:f2:a2:d6:37:76:b2: 4b:5a:f0:d8:59:72:00:17:e0:df:2b:84:56:65:85:80:c0:18: fd:bc:55:f6:e0:6a:1e:c3:35:ed:43:77:3c:bd:9e:d6:96:e9: 14:4c:0f:c1:86:a3:b7:f8:98:29:1e:aa:7c:a3:a1:b9:db:35: 68:d1:6d:26 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBCL4ShbwcRLQp0beTEomNtaot5cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjNaFw0yNzA2MDQwNzEyMjNaMDMxMTAvBgNV BAMTKDU5OEUwRDkyNUIxREMxNkI4NzVCREEyM0ZFNjYzODg2OTJCRjA3MUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVrA635qrqAHjz8qJc5zz/PSju B+v3vrkT30tqIdB0L2JJ8Mcc/c2Dj7sQ5ffF4bYQyPjtVbLPmZYSv1/x3L71Sjvx t1BhMh4BRu4XeoRgD/7IEBPNm5PojqkmVBsG5HUpSxuTHSVG9zSn3WaKftCbHGKS CXZcdsT5H1rBVVQ4JX+EbNUEgsHCxkoIP2yVgmX6T12/M+Jss9/XZXxItljFsNNc e4t53pnCoq85Qpqb3QQsEAlutwTHW0C7xp7HTpfDJNG7ODX61WBhJW+6ffbe6SXC azxEMkjI1gp4o8VWqzO5QAjK9cHL3BBZe4953vpo5bSWPAl2ExKyPtwZrAetAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWY4NklsdwWuHW9oj/mY4hpK/BxswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2NDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYIwDQYJKoZIhvcNAQELBQADggEBAL+e uRyj7y5kWSDl92mlK810/gWS6PgVUfQs/9k7MbEEC0IfWS12v2n2wGIZrEmRHSmZ HMeYC1wsYv1x0W9urTt8ZWeq+IcLflj3+TKv4SOGRM0etD/Bo0Y1BF9Rm/kNtAlZ xDkpPEtkBoJk4U9OFYmxAqUHaqPQHAcWMciGiPOrkr52uhwZViD8hxnV0bfUMtHi GH1r68AtJDoahnnO5OEBoLUkwhfI2EJ/dbWDs1sYR/f6v7ocafqpfo4/LxkRVvKi 1jd2skta8NhZcgAX4N8rhFZlhYDAGP28Vfbgah7DNe1Ddzy9ntaW6RRMD8GGo7f4 mCkeqnyjobnbNWjRbSY= -----END CERTIFICATE-----Generated at Sat Jun 6 09:38:46 2026 by rpki-client