$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49707.roa File: AS49707.roa (raw, json) Hash identifier: LfRph5xYrwI4gcllhldukEzODgqKhwOJThKXR9e0zRU= Subject key identifier: 54:FE:39:17:FB:F4:3B:47:DC:D1:FC:F2:B7:65:44:A6:41:15:EF:D1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 793F5B447B8F7360E74DD3F68A60CB57D233C879 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49707.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 49707 IP address blocks: 2a0a:6040:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:3f:5b:44:7b:8f:73:60:e7:4d:d3:f6:8a:60:cb:57:d2:33:c8:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=54FE3917FBF43B47DCD1FCF2B76544A64115EFD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5c:2e:6b:ed:2a:fc:4c:e7:c7:9a:87:da:29: b3:f1:81:fb:1d:c8:a4:0d:5e:b1:e5:f3:1e:b2:e4: bc:b0:80:fb:56:1b:7b:50:5b:64:f5:50:8f:9c:41: 0a:f2:61:5d:4b:44:fb:ce:3b:cc:df:e4:90:eb:72: c6:b4:91:cb:f6:d8:f3:52:4b:44:c4:04:3e:ee:a1: 68:2f:c2:d4:d8:97:db:1f:21:22:06:71:a9:39:49: 7c:7e:5a:54:b5:f2:47:b8:6f:1a:b6:83:bc:42:5e: ca:d2:04:74:55:af:2e:de:4f:5f:d4:7f:a5:7c:67: cc:89:8b:9e:ef:58:4a:7d:3d:ed:89:7d:47:b5:ad: 5a:f3:a3:e8:0a:62:8a:6e:b4:1a:1f:82:c3:b4:4c: 5b:68:f1:52:f5:45:83:58:f6:cc:94:cf:0d:3a:03: 60:5a:e1:87:f2:41:56:51:a5:68:ff:af:09:ca:16: 4e:5c:50:53:02:82:2c:a3:aa:d7:15:72:87:11:09: 09:37:07:98:e2:50:c5:fd:29:bf:c3:cb:86:c1:6f: 87:e4:54:a5:15:c7:c4:f2:0e:29:6c:12:7a:cf:b0: 34:83:09:f8:11:9c:96:07:11:de:df:99:1a:99:80: 08:8f:50:3e:7d:5a:ad:23:97:df:54:a7:e0:53:06: b3:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:FE:39:17:FB:F4:3B:47:DC:D1:FC:F2:B7:65:44:A6:41:15:EF:D1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49707.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4c00::/40 Signature Algorithm: sha256WithRSAEncryption d9:a6:62:18:a6:71:e0:29:23:fd:a6:be:5d:a2:d0:d3:f2:f1: dd:ae:d0:36:22:71:b8:32:a3:38:33:2c:8b:20:4b:97:c0:44: 3f:15:e5:c1:4c:f5:b0:91:ad:5c:15:c7:87:92:02:a7:8b:46: 01:e5:95:08:b8:34:cd:68:cd:cf:f4:db:16:a2:26:3d:0a:71: fa:58:39:37:8a:ab:76:03:d4:eb:8b:93:7a:ab:71:b0:9f:7c: df:f9:42:42:2b:61:05:06:21:3c:53:12:66:6a:5a:02:75:b9: a0:6d:4e:31:24:02:ef:bc:d3:2c:0a:77:14:98:98:60:e3:bb: 1d:70:75:ef:2d:d5:0e:d2:fd:52:00:8d:27:a4:d1:77:57:e1: fc:64:61:4b:47:13:b9:9f:99:46:e4:01:4b:a9:bc:38:79:ef: b2:23:d9:f9:f1:e8:13:29:03:89:6a:94:e2:a5:5b:c6:2e:8f: 7a:5c:bc:a4:59:aa:91:92:af:e5:ba:36:1c:52:8d:f5:e4:0d: d3:8a:e0:bc:36:ec:38:76:89:44:7f:82:7a:46:e0:f9:14:d9: 00:cd:01:2a:59:2f:e5:9e:0e:c5:fa:35:1c:1b:3e:0e:87:89: ae:43:2e:f5:e2:29:2c:17:de:a9:a7:3e:45:c5:69:6a:c5:07: 71:a6:19:e9 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUeT9bRHuPc2DnTdP2imDLV9IzyHkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDU0RkUzOTE3RkJGNDNCNDdEQ0QxRkNGMkI3NjU0NEE2NDExNUVGRDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaXC5r7Sr8TOfHmofaKbPxgfsd yKQNXrHl8x6y5LywgPtWG3tQW2T1UI+cQQryYV1LRPvOO8zf5JDrcsa0kcv22PNS S0TEBD7uoWgvwtTYl9sfISIGcak5SXx+WlS18ke4bxq2g7xCXsrSBHRVry7eT1/U f6V8Z8yJi57vWEp9Pe2JfUe1rVrzo+gKYoputBofgsO0TFto8VL1RYNY9syUzw06 A2Ba4YfyQVZRpWj/rwnKFk5cUFMCgiyjqtcVcocRCQk3B5jiUMX9Kb/Dy4bBb4fk VKUVx8TyDilsEnrPsDSDCfgRnJYHEd7fmRqZgAiPUD59Wq0jl99Up+BTBrMtAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUVP45F/v0O0fc0fzyt2VEpkEV79EwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNDk3MDcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBATDANBgkqhkiG9w0BAQsFAAOCAQEA2aZi GKZx4Ckj/aa+XaLQ0/Lx3a7QNiJxuDKjODMsiyBLl8BEPxXlwUz1sJGtXBXHh5IC p4tGAeWVCLg0zWjNz/TbFqImPQpx+lg5N4qrdgPU64uTeqtxsJ983/lCQithBQYh PFMSZmpaAnW5oG1OMSQC77zTLAp3FJiYYOO7HXB17y3VDtL9UgCNJ6TRd1fh/GRh S0cTuZ+ZRuQBS6m8OHnvsiPZ+fHoEykDiWqU4qVbxi6Pely8pFmqkZKv5bo2HFKN 9eQN04rgvDbsOHaJRH+Cekbg+RTZAM0BKlkv5Z4Oxfo1HBs+DoeJrkMu9eIpLBfe qac+RcVpasUHcaYZ6Q== -----END CERTIFICATE-----Generated at Sat Jul 5 04:07:51 2025 by rpki-client