$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS23470.roa File: AS23470.roa (raw, json) Hash identifier: zi4HmIFvNoVbKQpI6HYpgANeTRedpxReIRwvcYjCNxY= Subject key identifier: C2:C0:5D:EA:8C:AC:28:D5:6A:A4:31:DF:F0:F2:98:E1:DC:06:EC:24 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6F5683DBBD75E4EED07FA8E16CBAA9CF00B05DA2 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS23470.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 23470 IP address blocks: 2a05:dfc1:5800::/40 maxlen: 48 2a0a:6040:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:56:83:db:bd:75:e4:ee:d0:7f:a8:e1:6c:ba:a9:cf:00:b0:5d:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=C2C05DEA8CAC28D56AA431DFF0F298E1DC06EC24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6b:e2:b6:83:6c:41:95:f4:25:bd:5f:dc:91: d3:ed:c8:c4:d4:e3:78:b2:87:25:cf:52:37:91:43: 03:f6:80:84:4f:7b:17:70:e6:03:97:38:00:fb:6a: df:03:c5:66:b4:01:b5:cd:81:5c:00:c0:d6:72:1c: 49:fe:67:45:10:9f:84:29:5b:ca:63:6a:83:e5:e0: 69:84:3a:51:a3:b1:57:f3:c4:7d:2d:11:2e:d9:01: 24:75:68:37:1e:9d:58:6d:02:21:95:bc:ea:fb:60: 57:58:db:0d:ba:19:16:eb:23:14:6f:8d:7b:b4:e0: 8c:6d:4c:29:9b:f9:bd:6a:f9:45:b8:c8:83:3b:91: 74:7c:00:29:bc:26:98:16:c2:93:fb:ed:7e:17:c2: 95:7c:cd:85:b5:3c:3d:3c:ca:cf:95:8f:e8:93:68: ac:8b:49:18:0a:59:e6:29:80:81:b0:75:78:1a:c1: c1:03:94:c1:36:5d:6b:19:66:64:05:52:43:ee:bd: 9e:c3:70:8f:de:8b:ad:a2:68:87:30:ff:7a:20:0e: 08:cb:e1:06:50:b6:3f:0e:fb:1e:f1:93:4b:2d:6c: 86:63:a8:b8:f3:b2:48:ed:00:03:92:61:61:06:94: c4:86:fd:cd:63:4f:9a:2c:af:ac:15:80:55:67:42: 2d:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C0:5D:EA:8C:AC:28:D5:6A:A4:31:DF:F0:F2:98:E1:DC:06:EC:24 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS23470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5800::/40 2a0a:6040:3900::/40 Signature Algorithm: sha256WithRSAEncryption 83:63:99:88:38:7f:70:e9:8a:da:3e:20:cc:79:79:a5:cb:20: 65:1a:68:bf:da:64:4f:27:d2:4b:c5:46:70:5e:f5:5a:d1:c5: e8:68:c6:ae:50:1a:1b:20:62:89:04:d4:07:9b:4a:5e:04:1e: a8:c9:1a:46:4f:e2:8e:e4:fd:14:77:a1:5a:76:29:c6:10:2a: 87:bb:55:64:d4:6e:00:b9:42:2b:32:b2:f4:0a:b3:03:21:91: 49:1a:4f:ab:fc:35:30:9f:45:40:a2:af:a3:7c:fe:1a:d6:37: 53:a0:62:df:d0:e8:db:70:54:e4:c8:6c:f4:cd:bc:55:31:4e: b7:11:91:5f:5f:5b:f7:ec:49:54:da:6d:10:3f:6a:f2:9b:b6: 89:58:65:e5:66:a6:b1:6c:ce:bc:b4:53:40:a3:78:f0:d6:1c: d8:6e:50:d6:6c:97:e5:ea:24:70:9f:29:bd:49:95:3e:42:44: 2a:5d:a0:7b:13:22:dd:5c:b9:96:6f:16:40:49:b9:ca:4c:3e: 4f:d7:ff:5a:b4:0b:5b:32:9c:a5:08:79:bb:9c:f1:e9:73:e1: 9e:1a:83:3d:d2:7e:08:47:ae:81:0e:4a:2b:36:1c:aa:3e:2c: 50:75:e6:9d:25:c8:4b:ac:94:34:da:a1:c3:12:f1:47:7d:51: cb:58:ed:a8 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUb1aD27115O7Qf6jhbLqpzwCwXaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKEMyQzA1REVBOENBQzI4RDU2QUE0MzFERkYwRjI5OEUxREMwNkVDMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpa+K2g2xBlfQlvV/ckdPtyMTU 43iyhyXPUjeRQwP2gIRPexdw5gOXOAD7at8DxWa0AbXNgVwAwNZyHEn+Z0UQn4Qp W8pjaoPl4GmEOlGjsVfzxH0tES7ZASR1aDcenVhtAiGVvOr7YFdY2w26GRbrIxRv jXu04IxtTCmb+b1q+UW4yIM7kXR8ACm8JpgWwpP77X4XwpV8zYW1PD08ys+Vj+iT aKyLSRgKWeYpgIGwdXgawcEDlME2XWsZZmQFUkPuvZ7DcI/ei62iaIcw/3ogDgjL 4QZQtj8O+x7xk0stbIZjqLjzskjtAAOSYWEGlMSG/c1jT5osr6wVgFVnQi39AgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUwsBd6oysKNVqpDHf8PKY4dwG7CQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjM0NzAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BWAMGACoKYEA5MA0GCSqGSIb3DQEBCwUA A4IBAQCDY5mIOH9w6YraPiDMeXmlyyBlGmi/2mRPJ9JLxUZwXvVa0cXoaMauUBob IGKJBNQHm0peBB6oyRpGT+KO5P0Ud6FadinGECqHu1Vk1G4AuUIrMrL0CrMDIZFJ Gk+r/DUwn0VAoq+jfP4a1jdToGLf0OjbcFTkyGz0zbxVMU63EZFfX1v37ElU2m0Q P2rym7aJWGXlZqaxbM68tFNAo3jw1hzYblDWbJfl6iRwnym9SZU+QkQqXaB7EyLd XLmWbxZASbnKTD5P1/9atAtbMpylCHm7nPHpc+GeGoM90n4IR66BDkorNhyqPixQ deadJchLrJQ02qHDEvFHfVHLWO2o -----END CERTIFICATE-----Generated at Sat Jul 5 04:16:01 2025 by rpki-client