$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: 6zgBJxo839fsRGni8RtU+k9y+XSTLEJZhcA6Sz9t/dQ= Subject key identifier: 65:3A:6D:F3:F3:EF:BF:B6:29:16:17:82:0D:1C:1D:57:E5:C5:D8:44 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 11DC9D1C72D2053363878C9E459FD938FECDDF4D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS47272.roa Signing time: Fri 04 Jul 2025 06:53:19 +0000 ROA not before: Fri 04 Jul 2025 06:48:19 +0000 ROA not after: Fri 03 Jul 2026 06:53:19 +0000 asID: 47272 IP address blocks: 2a06:9f81:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:dc:9d:1c:72:d2:05:33:63:87:8c:9e:45:9f:d9:38:fe:cd:df:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:19 2025 GMT Not After : Jul 3 06:53:19 2026 GMT Subject: CN=653A6DF3F3EFBFB6291617820D1C1D57E5C5D844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:27:b5:68:c2:34:7c:8f:dc:98:eb:22:ad:28: 11:ef:c2:47:b9:7b:c1:e4:b0:01:5e:87:bc:06:f6: 81:0e:06:bf:65:92:58:2a:6c:2c:b7:6b:cd:22:0a: f4:f7:7b:81:36:2a:4f:d8:65:87:86:15:34:80:bd: 8a:05:77:d6:11:3a:78:c1:d5:b8:79:50:cc:d9:a7: 25:59:e5:51:96:36:f1:8f:17:79:cb:2f:ad:34:42: 7d:1c:02:27:c9:c7:00:be:d8:82:9c:f3:bc:27:18: 45:ee:93:c5:8b:c7:1a:ef:3b:59:93:10:32:c4:bd: ef:13:3e:20:5d:18:7c:40:73:2c:6a:01:5f:6b:a5: 33:34:96:79:bd:e2:12:7f:9c:96:6e:db:0e:0a:0b: ab:28:07:3a:7a:ee:b9:b0:22:2e:6e:85:22:64:c9: 2c:20:57:ac:3a:47:13:64:6b:d7:a5:cc:a7:cf:0f: fa:f5:8a:3a:9a:a8:98:51:35:a6:a5:eb:e7:03:b2: 5e:54:3b:f4:3b:28:3a:e4:6d:1d:fc:0c:3a:94:13: de:bd:59:ed:6b:ae:ee:33:ec:97:85:8d:6d:79:1f: 90:d2:f0:d3:57:42:0f:a0:45:9b:bb:5f:b8:17:cd: 0c:8f:24:ac:11:18:53:7b:51:26:fc:d4:33:fb:72: 67:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3A:6D:F3:F3:EF:BF:B6:29:16:17:82:0D:1C:1D:57:E5:C5:D8:44 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1000::/40 Signature Algorithm: sha256WithRSAEncryption d1:ac:8a:59:ad:d3:fd:b8:95:29:9c:e2:cd:3b:af:04:a4:0b: 96:22:ec:4d:3a:c2:4b:a5:35:f2:e5:2d:35:f7:10:bb:e2:f7: a9:35:f9:09:2a:ab:b2:b2:14:37:5f:d7:a5:6b:12:e9:65:28: 50:6b:d4:e9:75:19:fb:74:24:99:07:f7:af:c9:82:47:f1:60: 81:20:6e:28:cc:aa:01:de:69:f9:7f:af:c0:42:0c:2a:06:57: 90:74:b4:78:c7:7d:d2:9b:3f:e9:86:8e:d1:88:d4:fb:25:0f: fb:f7:c5:c9:eb:98:48:3e:27:9d:28:42:d2:59:51:9f:5e:9f: 52:26:e9:cc:94:1b:ed:bd:75:34:81:58:6c:1d:bc:9f:e2:06: 42:f9:d5:c8:ee:c4:3a:fb:4e:17:c4:fe:50:92:13:62:9c:b3: 69:4b:8a:74:4d:23:4b:d0:78:08:5c:f3:f0:33:5b:39:bf:41: b4:56:ff:87:98:ae:7b:91:57:99:f5:df:11:ba:2f:4e:7d:b7: f2:e6:e4:37:75:10:6b:47:c1:37:43:ec:1a:ee:ef:db:23:65: 00:d5:66:c1:82:4c:47:d8:34:57:80:26:7e:50:79:9f:0e:ae: fb:26:d0:91:e9:cc:ad:21:09:84:c1:a5:fb:63:f9:12:0b:55: 39:84:91:9e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUEdydHHLSBTNjh4yeRZ/ZOP7N300wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTlaFw0yNjA3MDMwNjUzMTlaMDMxMTAvBgNV BAMTKDY1M0E2REYzRjNFRkJGQjYyOTE2MTc4MjBEMUMxRDU3RTVDNUQ4NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjJ7VowjR8j9yY6yKtKBHvwke5 e8HksAFeh7wG9oEOBr9lklgqbCy3a80iCvT3e4E2Kk/YZYeGFTSAvYoFd9YROnjB 1bh5UMzZpyVZ5VGWNvGPF3nLL600Qn0cAifJxwC+2IKc87wnGEXuk8WLxxrvO1mT EDLEve8TPiBdGHxAcyxqAV9rpTM0lnm94hJ/nJZu2w4KC6soBzp67rmwIi5uhSJk ySwgV6w6RxNka9elzKfPD/r1ijqaqJhRNaal6+cDsl5UO/Q7KDrkbR38DDqUE969 We1rru4z7JeFjW15H5DS8NNXQg+gRZu7X7gXzQyPJKwRGFN7USb81DP7cmcpAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUZTpt8/Pvv7YpFheCDRwdV+XF2EQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNDcyNzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBp+BEDANBgkqhkiG9w0BAQsFAAOCAQEA0ayK Wa3T/biVKZzizTuvBKQLliLsTTrCS6U18uUtNfcQu+L3qTX5CSqrsrIUN1/XpWsS 6WUoUGvU6XUZ+3QkmQf3r8mCR/FggSBuKMyqAd5p+X+vwEIMKgZXkHS0eMd90ps/ 6YaO0YjU+yUP+/fFyeuYSD4nnShC0llRn16fUibpzJQb7b11NIFYbB28n+IGQvnV yO7EOvtOF8T+UJITYpyzaUuKdE0jS9B4CFzz8DNbOb9BtFb/h5iue5FXmfXfEbov Tn238ubkN3UQa0fBN0PsGu7v2yNlANVmwYJMR9g0V4AmflB5nw6u+ybQkenMrSEJ hMGl+2P5EgtVOYSRng== -----END CERTIFICATE-----Generated at Sat Jul 5 06:05:28 2025 by rpki-client