$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS23449.roa File: AS23449.roa (raw, json) Hash identifier: 9sqOEEdbu7kChg303whkkd0FmqCF4kicp90cRbBL3OM= Subject key identifier: 55:47:9C:7A:BA:D6:2D:0E:0E:4B:78:B1:E6:B0:53:BF:A2:35:72:57 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: AF1CF2A0DFB9B37C48F121469AD252F540F645 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS23449.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 23449 IP address blocks: 2a05:dfc1:9700::/40 maxlen: 48 2a06:9f81:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: af:1c:f2:a0:df:b9:b3:7c:48:f1:21:46:9a:d2:52:f5:40:f6:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=55479C7ABAD62D0E0E4B78B1E6B053BFA2357257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:40:19:28:2a:5a:57:c1:81:50:22:63:20:97: b7:86:00:5a:84:72:05:ed:cf:ce:5a:45:6b:44:7d: 7f:5d:84:02:13:6d:33:65:4e:95:82:b3:bc:90:0e: eb:78:f6:81:b5:40:08:91:03:f8:b7:09:a5:f0:74: af:8c:a3:31:b9:ba:e1:f9:7d:16:d8:01:c5:22:95: c7:15:ea:9e:a5:47:3b:5d:70:a8:a9:21:a5:ff:5a: 26:47:d4:c7:eb:c8:30:b7:9b:40:f7:b6:75:f3:4e: a2:49:b5:a1:ad:4c:45:f5:e4:a2:4d:93:bb:13:cc: f4:2c:68:71:30:a0:df:a6:9a:cf:a6:d8:d2:2d:f5: 63:91:d0:09:6d:19:93:ed:4e:9b:84:ac:f2:8a:2e: 88:89:9f:fa:2e:bf:31:2e:44:00:83:88:43:4d:38: dd:82:9d:ac:1b:30:03:1a:a1:65:ee:3b:58:88:21: bd:47:7d:ad:98:6c:ae:13:82:0a:89:a6:8d:82:19: f7:cb:9b:1c:be:12:08:1d:bd:f3:4d:f4:6c:0e:99: 74:9b:65:0c:d2:17:69:e4:55:fa:2a:fc:cf:28:d4: d1:64:53:b3:ff:f0:41:79:c7:6f:44:fe:3f:64:e9: 7f:e2:03:e5:e7:97:c9:96:49:17:c5:cc:a4:5a:8d: 6d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:47:9C:7A:BA:D6:2D:0E:0E:4B:78:B1:E6:B0:53:BF:A2:35:72:57 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS23449.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9700::/40 2a06:9f81:6000::/40 Signature Algorithm: sha256WithRSAEncryption 13:30:f7:45:5d:0a:93:e3:5a:58:7e:db:21:ac:05:cd:91:bc: 8b:23:43:d4:f0:39:ae:54:4d:a0:b6:91:25:41:34:92:60:f4: 14:d8:4c:b4:1e:b2:57:47:d6:f4:48:e6:bb:43:92:b3:c5:29: c6:2a:8c:32:40:32:56:cc:3b:ce:ce:c8:27:fe:6b:71:3e:88: 9f:b0:72:68:1f:77:6a:f1:c9:28:65:3c:fb:ab:02:10:ef:45: 62:87:a2:19:d7:e5:52:48:ea:56:6c:94:76:10:09:89:2f:f8: e0:aa:6b:8d:22:a0:5c:32:13:99:15:42:49:2b:20:ca:d6:9d: e5:9d:cf:fa:84:d1:09:61:f3:18:42:4b:1e:cf:ec:36:bc:af: bb:d5:ac:f0:b7:f2:a7:72:f4:b2:4e:8b:e7:76:8a:4e:06:8b: 07:f7:db:f5:ef:5c:a9:43:88:25:67:6f:65:2c:76:f2:90:50: 13:81:91:11:4f:69:62:23:cb:ba:29:59:ce:8b:c9:00:8b:1a: aa:bb:2f:20:bd:1a:c4:f5:5d:97:e5:6a:e2:50:6d:20:06:2a: 0e:df:6f:8a:e3:9a:6e:86:3f:b5:61:86:87:05:f7:aa:f8:04: 0f:17:61:b8:71:72:96:10:51:47:e2:63:de:1c:04:ca:d8:59: a6:be:7a:79 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUAK8c8qDfubN8SPEhRprSUvVA9kUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKDU1NDc5QzdBQkFENjJEMEUwRTRCNzhCMUU2QjA1M0JGQTIzNTcyNTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHQBkoKlpXwYFQImMgl7eGAFqE cgXtz85aRWtEfX9dhAITbTNlTpWCs7yQDut49oG1QAiRA/i3CaXwdK+MozG5uuH5 fRbYAcUilccV6p6lRztdcKipIaX/WiZH1MfryDC3m0D3tnXzTqJJtaGtTEX15KJN k7sTzPQsaHEwoN+mms+m2NIt9WOR0AltGZPtTpuErPKKLoiJn/ouvzEuRACDiENN ON2CnawbMAMaoWXuO1iIIb1Hfa2YbK4TggqJpo2CGffLmxy+EggdvfNN9GwOmXSb ZQzSF2nkVfoq/M8o1NFkU7P/8EF5x29E/j9k6X/iA+Xnl8mWSRfFzKRajW09AgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUVUecerrWLQ4OS3ix5rBTv6I1clcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjM0NDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BlwMGACoGn4FgMA0GCSqGSIb3DQEBCwUA A4IBAQATMPdFXQqT41pYftshrAXNkbyLI0PU8DmuVE2gtpElQTSSYPQU2Ey0HrJX R9b0SOa7Q5KzxSnGKowyQDJWzDvOzsgn/mtxPoifsHJoH3dq8ckoZTz7qwIQ70Vi h6IZ1+VSSOpWbJR2EAmJL/jgqmuNIqBcMhOZFUJJKyDK1p3lnc/6hNEJYfMYQkse z+w2vK+71azwt/KncvSyTovndopOBosH99v171ypQ4glZ29lLHbykFATgZERT2li I8u6KVnOi8kAixqquy8gvRrE9V2X5WriUG0gBioO32+K45puhj+1YYaHBfeq+AQP F2G4cXKWEFFH4mPeHATK2Fmmvnp5 -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:06 2025 by rpki-client