$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216454.roa File: AS216454.roa (raw, json) Hash identifier: b0vZ+kj1vBZh9tnIwoawjzpLd9ncf3dkkminbfgL8pc= Subject key identifier: 74:AB:54:58:B9:C8:B8:6F:60:5F:A4:4B:84:09:54:C5:1C:AF:B0:0B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5F82F5121260FB2AA23CFF3357912A1544718520 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216454.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 216454 IP address blocks: 2a05:dfc1:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:82:f5:12:12:60:fb:2a:a2:3c:ff:33:57:91:2a:15:44:71:85:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=74AB5458B9C8B86F605FA44B840954C51CAFB00B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9d:db:33:b2:be:b1:ee:7f:48:b9:9a:aa:c8: cb:10:d4:0d:c4:94:2b:e3:a5:b9:e9:f2:89:9d:f1: d0:35:42:58:ee:12:4e:e1:96:5f:16:d6:87:3b:dd: 47:0a:1e:b7:ec:82:19:ef:77:eb:ae:75:0f:04:3a: 4f:51:e9:02:c9:73:82:c8:d7:96:7a:4c:52:05:bd: 2f:6a:40:f7:c7:b2:36:25:40:5e:5c:86:e9:d1:05: 81:f3:3d:c8:9b:24:0b:48:7a:d4:9a:49:a4:1e:b5: 84:21:10:90:71:7a:11:f8:a9:af:0e:a5:16:c3:94: 9a:78:2a:95:d5:6c:2c:0e:8f:90:e6:b4:73:ed:07: d5:c1:1b:29:c1:84:ac:2d:7b:63:e8:31:42:d6:58: cf:2a:01:a6:cd:f2:b4:82:99:6d:30:7e:bd:9c:27: 13:8e:1a:4f:29:f8:69:7a:09:38:7e:72:0e:7c:2b: 7f:bd:b4:00:b8:a7:40:63:32:25:87:9e:e9:35:32: 52:d2:67:da:88:d1:d4:4d:4f:ea:db:ad:b3:9c:08: 2c:4c:20:12:7c:61:bd:4d:6d:59:72:bd:22:ec:7a: eb:64:6d:bd:94:7e:75:06:f2:c3:cc:21:75:fd:2e: 1f:c0:8a:a9:e0:09:b2:e1:5b:88:83:5f:ee:a2:4f: 12:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:AB:54:58:B9:C8:B8:6F:60:5F:A4:4B:84:09:54:C5:1C:AF:B0:0B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8300::/40 Signature Algorithm: sha256WithRSAEncryption 43:8a:1b:8e:7e:4d:f6:eb:e5:b6:da:2a:6c:fa:39:c3:dd:d8: b1:23:b9:46:79:ee:04:d8:c3:c8:99:f4:26:d8:24:87:87:ed: c3:ce:b9:a3:08:4c:ae:14:f1:fd:8e:77:a0:c4:09:1a:8f:b5: 98:72:d0:4d:ef:5a:92:c1:56:4d:9f:2a:41:6d:cf:af:2e:b9: b0:4d:bd:6b:1f:6d:a7:04:0f:6b:81:c2:8c:af:21:9d:d9:cf: b4:c1:4e:25:a6:62:75:44:3a:be:ca:aa:c9:f9:08:63:45:87: 16:f3:39:7a:df:e9:1f:60:70:99:78:4c:54:e1:99:3f:88:f4: b2:e1:72:97:0c:d9:17:47:24:e2:8a:88:66:ec:2d:33:2a:da: b1:4d:ac:36:1a:d7:7f:63:24:f7:9a:ce:ab:80:08:e6:a6:94: a7:d2:a2:03:a8:c6:bb:1d:8b:a0:36:50:a0:2b:ea:0f:49:60: bf:95:e7:75:c8:99:2d:2d:45:a1:62:7b:ae:2e:cb:d6:a2:21: 8a:90:5e:90:6e:1f:4e:6d:15:82:e1:26:cc:5d:79:a2:3a:2b: e7:cd:dc:ee:d1:68:bb:d0:a1:99:23:68:13:90:ac:38:c3:52: 0c:41:a2:f6:0c:55:6e:2c:d6:ea:17:9b:8d:fb:9f:37:f4:57: 74:c2:3f:39 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX4L1EhJg+yqiPP8zV5EqFURxhSAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDc0QUI1NDU4QjlDOEI4NkY2MDVGQTQ0Qjg0MDk1NEM1MUNBRkIwMEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ndszsr6x7n9IuZqqyMsQ1A3E lCvjpbnp8omd8dA1QljuEk7hll8W1oc73UcKHrfsghnvd+uudQ8EOk9R6QLJc4LI 15Z6TFIFvS9qQPfHsjYlQF5chunRBYHzPcibJAtIetSaSaQetYQhEJBxehH4qa8O pRbDlJp4KpXVbCwOj5DmtHPtB9XBGynBhKwte2PoMULWWM8qAabN8rSCmW0wfr2c JxOOGk8p+Gl6CTh+cg58K3+9tAC4p0BjMiWHnuk1MlLSZ9qI0dRNT+rbrbOcCCxM IBJ8Yb1NbVlyvSLseutkbb2UfnUG8sPMIXX9Lh/AiqngCbLhW4iDX+6iTxIjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdKtUWLnIuG9gX6RLhAlUxRyvsAswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2NDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYMwDQYJKoZIhvcNAQELBQADggEBAEOK G45+Tfbr5bbaKmz6OcPd2LEjuUZ57gTYw8iZ9CbYJIeH7cPOuaMITK4U8f2Od6DE CRqPtZhy0E3vWpLBVk2fKkFtz68uubBNvWsfbacED2uBwoyvIZ3Zz7TBTiWmYnVE Or7Kqsn5CGNFhxbzOXrf6R9gcJl4TFThmT+I9LLhcpcM2RdHJOKKiGbsLTMq2rFN rDYa139jJPeazquACOamlKfSogOoxrsdi6A2UKAr6g9JYL+V53XImS0tRaFie64u y9aiIYqQXpBuH05tFYLhJsxdeaI6K+fN3O7RaLvQoZkjaBOQrDjDUgxBovYMVW4s 1uoXm437nzf0V3TCPzk= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:43 2025 by rpki-client