$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49286.roa File: AS49286.roa (raw, json) Hash identifier: +3zCb0WidsfNAsg1N2rXaYLY6G1gnYOvUP3pNQgAJ+Y= Subject key identifier: D1:12:08:59:C3:CF:92:68:11:41:96:4D:1F:E5:2F:DA:89:69:A5:4D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4729783106200E22BFC9FF753AFB017ED4FECAFF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49286.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 49286 IP address blocks: 2a0a:6040:6a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:29:78:31:06:20:0e:22:bf:c9:ff:75:3a:fb:01:7e:d4:fe:ca:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=D1120859C3CF92681141964D1FE52FDA8969A54D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:76:31:42:e6:82:21:2a:89:f5:08:a9:d3:c2: 3d:c0:07:4d:5c:7e:a3:b6:f4:34:7c:ef:53:5c:f8: 80:db:f8:8b:22:a8:92:f6:48:6c:f2:06:f8:df:fb: dc:f2:4f:13:3c:f2:e9:c0:e3:1a:24:a2:b7:59:3b: 2a:17:ad:20:20:c5:59:90:7f:13:10:31:53:c2:6b: 6a:2b:5f:1e:81:22:16:2b:14:c5:42:8c:50:b2:01: 08:e5:a1:30:32:ae:b9:19:27:e8:3c:6e:11:06:b2: 37:e5:f7:28:ed:aa:8b:fd:a6:01:4c:ae:d3:44:cf: f6:b7:6e:47:84:a6:f1:2e:66:2e:78:fd:17:34:73: e5:63:18:08:b4:de:23:70:3a:94:ac:5a:78:d2:b3: 73:3e:d0:ac:26:05:75:23:cb:b7:09:64:94:b4:61: 13:05:1b:6f:a3:5d:15:23:26:09:ac:f4:c6:95:12: 49:63:e2:3a:08:2b:3f:a1:fc:5c:d2:51:d7:c7:25: 9a:3c:d2:a8:f8:a9:73:96:b7:82:4b:85:18:a7:0e: 3f:3c:6e:f0:29:d0:d8:86:89:69:76:a8:48:98:1c: 4d:1f:b7:bc:70:71:f0:7d:64:70:5c:7d:46:4c:d8: 3f:0a:7b:cf:b4:57:b3:fb:1c:30:30:57:ab:14:d1: 69:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:12:08:59:C3:CF:92:68:11:41:96:4D:1F:E5:2F:DA:89:69:A5:4D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49286.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6a00::/40 Signature Algorithm: sha256WithRSAEncryption 84:a0:11:5f:44:7a:8d:ca:53:f1:55:0c:1f:08:26:78:df:9b: af:42:f0:05:bf:36:f4:83:16:af:9f:ab:c6:72:33:50:51:08: 51:49:93:49:d5:fc:6d:c2:22:d7:26:80:c8:84:a0:4e:bd:04: b3:c1:4b:06:df:28:f8:54:88:cf:c9:72:00:38:1f:d2:8f:37: 28:79:c9:eb:8a:9d:d5:74:ea:6b:23:10:8b:ee:f2:4c:2e:e6: 26:55:5f:19:5e:49:70:4c:2c:c7:c8:21:09:08:85:b4:5d:92: 42:e8:13:8d:9a:76:3d:ed:0d:1e:84:9e:8b:99:9c:23:24:5e: 42:00:3c:88:48:3f:ce:68:d6:77:10:37:17:09:b5:43:41:e8: c9:16:75:74:52:7e:9d:6e:4e:bd:e1:a7:29:30:0a:a7:d4:14: 9e:80:c9:d1:1f:e1:1b:11:93:60:47:39:49:be:bf:e3:99:41: 47:83:f6:90:7d:02:29:ea:84:67:10:d5:ab:68:d3:b0:e6:23: 20:2c:9f:97:bc:1f:a6:cf:8d:d9:c5:19:dd:16:2f:e8:c7:b2: 15:57:46:be:55:b2:da:14:3f:59:f7:8a:0d:0c:32:cf:70:a1: 55:aa:fe:4b:96:b6:e0:9c:99:cc:51:28:dd:ac:8d:af:79:49: 4f:cd:65:96 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIURyl4MQYgDiK/yf91OvsBftT+yv8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKEQxMTIwODU5QzNDRjkyNjgxMTQxOTY0RDFGRTUyRkRBODk2OUE1NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOdjFC5oIhKon1CKnTwj3AB01c fqO29DR871Nc+IDb+IsiqJL2SGzyBvjf+9zyTxM88unA4xokordZOyoXrSAgxVmQ fxMQMVPCa2orXx6BIhYrFMVCjFCyAQjloTAyrrkZJ+g8bhEGsjfl9yjtqov9pgFM rtNEz/a3bkeEpvEuZi54/Rc0c+VjGAi03iNwOpSsWnjSs3M+0KwmBXUjy7cJZJS0 YRMFG2+jXRUjJgms9MaVEklj4joIKz+h/FzSUdfHJZo80qj4qXOWt4JLhRinDj88 bvAp0NiGiWl2qEiYHE0ft7xwcfB9ZHBcfUZM2D8Ke8+0V7P7HDAwV6sU0WntAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU0RIIWcPPkmgRQZZNH+Uv2olppU0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNDkyODYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAajANBgkqhkiG9w0BAQsFAAOCAQEAhKAR X0R6jcpT8VUMHwgmeN+br0LwBb829IMWr5+rxnIzUFEIUUmTSdX8bcIi1yaAyISg Tr0Es8FLBt8o+FSIz8lyADgf0o83KHnJ64qd1XTqayMQi+7yTC7mJlVfGV5JcEws x8ghCQiFtF2SQugTjZp2Pe0NHoSei5mcIyReQgA8iEg/zmjWdxA3Fwm1Q0HoyRZ1 dFJ+nW5OveGnKTAKp9QUnoDJ0R/hGxGTYEc5Sb6/45lBR4P2kH0CKeqEZxDVq2jT sOYjICyfl7wfps+N2cUZ3RYv6MeyFVdGvlWy2hQ/WfeKDQwyz3ChVar+S5a24JyZ zFEo3ayNr3lJT81llg== -----END CERTIFICATE-----Generated at Sat Jul 5 03:50:37 2025 by rpki-client