$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS35913.roa File: AS35913.roa (raw, json) Hash identifier: cu/vakh7y9xCRUV+T5QbO/r/WsJDzm1APWZ+baD0mjE= Subject key identifier: 5F:60:02:A7:5D:34:68:E0:8D:FB:07:92:0F:2B:64:50:97:00:B0:72 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2411F28FB396E26E8926D966337039F691E154BD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS35913.roa Signing time: Fri 05 Jun 2026 07:12:17 +0000 ROA not before: Fri 05 Jun 2026 07:07:17 +0000 ROA not after: Fri 04 Jun 2027 07:12:17 +0000 asID: 35913 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 04:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:11:f2:8f:b3:96:e2:6e:89:26:d9:66:33:70:39:f6:91:e1:54:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:17 2026 GMT Not After : Jun 4 07:12:17 2027 GMT Subject: CN=5F6002A75D3468E08DFB07920F2B64509700B072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b0:a5:31:0f:1d:5f:8d:54:ca:b7:18:f5:4e: f3:e9:2b:49:0c:2e:47:50:2c:c7:f0:39:81:9a:d6: 93:54:0f:0b:39:83:c9:b8:25:60:89:9c:cc:8d:fe: c1:37:a1:68:ce:85:85:0a:15:e3:d8:92:ec:bd:66: b9:ef:f0:9c:af:ce:e5:f5:25:79:1d:75:fd:59:d0: 9c:a4:b7:6d:77:d7:f3:fb:dc:7d:86:03:bf:21:a0: 2a:2e:49:ef:0e:e7:84:8b:94:e9:04:5b:3b:2c:e4: ae:fd:ae:08:41:ec:ba:83:40:34:94:2a:6c:49:19: b0:3b:4c:15:f4:6a:60:b4:74:4d:ff:3e:6f:01:31: 73:c2:b2:d9:40:6b:91:94:3b:b1:3a:42:72:d8:ff: 6f:9a:80:03:86:60:43:3a:79:5f:61:9b:ab:ee:67: 3b:b6:dc:d9:4f:2a:1c:13:7d:27:43:7a:79:3e:26: c8:9d:74:86:14:5e:b3:a8:ea:b9:c6:3b:e5:bb:db: 47:50:a1:3a:ab:65:b4:3a:5b:a1:00:37:dd:71:f4: 04:79:78:a6:7a:84:d6:5f:00:58:41:47:9f:cf:76: aa:c2:25:d2:b4:7a:e6:4c:2e:df:30:3b:1b:08:2e: 64:38:c6:cf:d9:38:06:cf:65:86:fe:3b:e2:d9:bb: 83:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:60:02:A7:5D:34:68:E0:8D:FB:07:92:0F:2B:64:50:97:00:B0:72 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS35913.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption 6f:cf:a9:7c:69:fc:d7:23:81:41:a6:de:f0:4f:3a:99:32:9f: 8c:5b:62:0b:a9:b9:15:96:a1:1d:7c:4a:9e:1e:42:88:05:ae: d9:ba:4f:2d:e5:77:b1:e9:0a:de:48:4a:3e:d5:23:f8:14:14: 33:08:09:15:7c:48:e7:ae:14:da:35:db:c9:52:c1:10:2d:ef: e6:b4:2f:22:0d:12:eb:fa:20:e3:ad:64:2d:f8:83:ba:88:50: 17:59:08:3d:22:a9:59:ff:7c:c0:c6:4c:be:91:6d:56:98:bb: 6b:3a:91:ca:bd:e7:38:2c:d9:7f:68:6f:0c:cb:02:ff:39:98: e5:51:24:6b:97:ca:34:1e:07:13:07:6b:c5:6a:88:ca:d8:7b: 66:40:9d:b2:9a:59:e8:63:b1:37:57:73:a2:33:09:69:45:23: f3:29:7f:90:6e:2c:ab:32:e0:5b:7d:e0:7e:7c:d3:c7:86:f7: 88:b3:85:74:bc:b5:3e:c8:09:4b:aa:a0:65:50:b7:6c:bb:51: 48:e8:c9:2b:1c:3d:d3:36:82:f8:c7:e0:d6:fe:6b:58:fc:48: 70:bb:2f:b9:3c:ff:33:16:6b:e2:84:76:f5:b0:80:15:63:42: b1:7a:b1:3d:82:4b:ef:59:64:90:4b:5e:67:22:0c:23:1b:ab: b5:d0:10:7c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUJBHyj7OW4m6JJtlmM3A59pHhVL0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTdaFw0yNzA2MDQwNzEyMTdaMDMxMTAvBgNV BAMTKDVGNjAwMkE3NUQzNDY4RTA4REZCMDc5MjBGMkI2NDUwOTcwMEIwNzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLsKUxDx1fjVTKtxj1TvPpK0kM LkdQLMfwOYGa1pNUDws5g8m4JWCJnMyN/sE3oWjOhYUKFePYkuy9Zrnv8JyvzuX1 JXkddf1Z0Jykt2131/P73H2GA78hoCouSe8O54SLlOkEWzss5K79rghB7LqDQDSU KmxJGbA7TBX0amC0dE3/Pm8BMXPCstlAa5GUO7E6QnLY/2+agAOGYEM6eV9hm6vu Zzu23NlPKhwTfSdDenk+JsiddIYUXrOo6rnGO+W720dQoTqrZbQ6W6EAN91x9AR5 eKZ6hNZfAFhBR5/PdqrCJdK0euZMLt8wOxsILmQ4xs/ZOAbPZYb+O+LZu4O7AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUX2ACp100aOCN+weSDytkUJcAsHIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMzU5MTMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBA+jANBgkqhkiG9w0BAQsFAAOCAQEAb8+p fGn81yOBQabe8E86mTKfjFtiC6m5FZahHXxKnh5CiAWu2bpPLeV3sekK3khKPtUj +BQUMwgJFXxI564U2jXbyVLBEC3v5rQvIg0S6/og461kLfiDuohQF1kIPSKpWf98 wMZMvpFtVpi7azqRyr3nOCzZf2hvDMsC/zmY5VEka5fKNB4HEwdrxWqIyth7ZkCd sppZ6GOxN1dzojMJaUUj8yl/kG4sqzLgW33gfnzTx4b3iLOFdLy1PsgJS6qgZVC3 bLtRSOjJKxw90zaC+Mfg1v5rWPxIcLsvuTz/MxZr4oR29bCAFWNCsXqxPYJL71lk kEteZyIMIxurtdAQfA== -----END CERTIFICATE-----Generated at Sat Jun 6 12:40:03 2026 by rpki-client