$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS48215.roa File: AS48215.roa (raw, json) Hash identifier: pGLof6503Ud+qc1koW1s+HFRqaWDU0MlIAELfMh0WOw= Subject key identifier: 55:98:C5:BA:12:34:2B:7E:63:39:12:DA:43:2A:B6:2F:AD:87:07:BA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 39FEAF13844775975C6B57F38F0DDD2418408BDB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS48215.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 48215 IP address blocks: 2a05:dfc1:700::/40 maxlen: 40 2a05:dfc1:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:fe:af:13:84:47:75:97:5c:6b:57:f3:8f:0d:dd:24:18:40:8b:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=5598C5BA12342B7E633912DA432AB62FAD8707BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:dd:10:94:57:b1:c6:ba:eb:b7:3d:e1:70:e5: 0e:18:54:e3:e0:ba:c6:44:d0:b9:3f:34:d7:21:4d: 40:c0:2e:a2:ec:1d:cb:85:06:87:71:ab:c6:20:a5: 36:45:60:83:98:df:25:8d:f6:e3:29:b4:28:17:44: 52:4e:de:cb:85:bd:3a:2a:c5:83:7e:e1:dd:d2:17: e8:04:b2:27:32:b5:47:b8:3e:51:5d:54:6a:f7:90: 97:ff:d0:db:e4:e5:db:17:37:f4:db:e1:0d:68:7b: d8:b4:07:88:d4:2e:5e:b4:36:cb:0b:b0:3f:d2:f3: 21:2c:d6:ba:4a:0b:35:b8:65:94:27:50:ec:7b:64: 60:8a:d3:34:45:0b:e4:3f:bb:3e:86:b8:5b:2c:23: 72:e7:7c:60:a9:62:f7:ff:f8:e6:f6:ab:82:fa:07: ae:aa:95:c4:3e:e1:46:b1:6f:de:13:04:05:ae:20: f3:42:6b:ed:21:be:95:c6:7f:9c:80:8a:65:91:98: 0b:04:ba:d8:70:0d:57:8c:b7:2e:50:59:00:f2:28: 86:13:7c:da:87:29:9b:b4:19:68:51:a2:70:ec:99: bd:1c:23:4a:53:a6:81:e1:d0:e4:aa:7c:33:29:c0: 84:53:bf:00:42:04:cc:0d:9c:59:99:23:4f:4a:18: e2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:98:C5:BA:12:34:2B:7E:63:39:12:DA:43:2A:B6:2F:AD:87:07:BA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS48215.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:700::/40 Signature Algorithm: sha256WithRSAEncryption 13:fd:31:91:cd:ce:d3:3b:cc:12:8e:d2:82:a2:92:17:98:75: ea:22:39:0a:08:fe:ff:b3:cb:d0:08:ff:53:96:36:48:d4:74: dc:35:fa:60:92:f3:a0:5b:18:a8:c3:8a:ce:a0:54:18:b1:6d: 38:ad:ed:f6:02:71:f5:81:d7:d1:6c:98:a1:ab:dc:ec:4a:d3: d4:74:f4:32:6c:14:0e:29:b7:07:df:c3:da:3e:71:08:1f:e1: 95:71:c2:d4:8a:86:ed:d2:7c:12:b6:e1:83:ab:63:f6:f9:d1: b0:47:49:93:fa:f8:6b:3e:63:6f:05:95:9c:1c:31:6f:74:59: a9:47:14:43:6c:f8:75:94:e1:2e:70:8e:88:fd:7c:59:4f:1d: 05:39:81:b1:8a:03:69:d4:6b:11:e8:17:34:dc:05:76:04:bf: f2:d4:f9:86:ea:a4:51:be:b0:4b:47:5f:a5:8b:96:f0:29:8f: 67:dc:96:3c:ea:da:5d:d4:b8:31:71:7c:fd:ee:3d:be:f5:68: 6a:02:56:19:86:33:e9:81:eb:69:69:82:6e:b9:33:b9:c7:8a: e2:8f:e1:ab:a5:88:d5:cf:7e:85:0f:f7:c9:df:55:3a:32:fb: a6:bc:c7:ea:9a:98:39:98:e7:3e:88:71:4c:a1:d6:7e:da:0f: ff:8b:81:53 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUOf6vE4RHdZdca1fzjw3dJBhAi9swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKDU1OThDNUJBMTIzNDJCN0U2MzM5MTJEQTQzMkFCNjJGQUQ4NzA3QkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe3RCUV7HGuuu3PeFw5Q4YVOPg usZE0Lk/NNchTUDALqLsHcuFBodxq8YgpTZFYIOY3yWN9uMptCgXRFJO3suFvToq xYN+4d3SF+gEsicytUe4PlFdVGr3kJf/0Nvk5dsXN/Tb4Q1oe9i0B4jULl60NssL sD/S8yEs1rpKCzW4ZZQnUOx7ZGCK0zRFC+Q/uz6GuFssI3LnfGCpYvf/+Ob2q4L6 B66qlcQ+4Uaxb94TBAWuIPNCa+0hvpXGf5yAimWRmAsEuthwDVeMty5QWQDyKIYT fNqHKZu0GWhRonDsmb0cI0pTpoHh0OSqfDMpwIRTvwBCBMwNnFmZI09KGOJTAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUVZjFuhI0K35jORLaQyq2L62HB7owHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNDgyMTUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BBzANBgkqhkiG9w0BAQsFAAOCAQEAE/0x kc3O0zvMEo7SgqKSF5h16iI5Cgj+/7PL0Aj/U5Y2SNR03DX6YJLzoFsYqMOKzqBU GLFtOK3t9gJx9YHX0WyYoavc7ErT1HT0MmwUDim3B9/D2j5xCB/hlXHC1IqG7dJ8 Erbhg6tj9vnRsEdJk/r4az5jbwWVnBwxb3RZqUcUQ2z4dZThLnCOiP18WU8dBTmB sYoDadRrEegXNNwFdgS/8tT5huqkUb6wS0dfpYuW8CmPZ9yWPOraXdS4MXF8/e49 vvVoagJWGYYz6YHraWmCbrkzuceK4o/hq6WI1c9+hQ/3yd9VOjL7przH6pqYOZjn PohxTKHWftoP/4uBUw== -----END CERTIFICATE-----Generated at Sat Jul 5 06:09:43 2025 by rpki-client