$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49975.roa File: AS49975.roa (raw, json) Hash identifier: jK9/KQgCLj8ZIVR+2dOeSYWbTOd+lOvR/qbIK+1tYBI= Subject key identifier: 7A:EB:8A:BF:ED:FB:08:B3:FB:F1:B1:BE:34:8E:16:5B:B2:36:14:E1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6420F112E0737B28CACF3F6B8E67A2875EBF4E85 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49975.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 49975 IP address blocks: 2a0a:6040:6d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:20:f1:12:e0:73:7b:28:ca:cf:3f:6b:8e:67:a2:87:5e:bf:4e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=7AEB8ABFEDFB08B3FBF1B1BE348E165BB23614E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c4:b1:74:71:3d:93:72:bb:98:e1:c4:a8:13: fc:63:e0:0d:43:a1:f3:43:a1:a2:b3:0b:ae:d2:fe: 1c:f6:18:60:58:64:d4:71:ec:ec:26:84:91:74:3d: f9:db:bd:66:11:a0:37:05:f7:fb:02:32:2b:17:af: 17:ef:d7:6b:1e:aa:8c:66:4a:26:c3:d7:96:44:19: c4:89:7e:f6:4f:f6:f5:9c:6f:1b:57:b3:0e:93:0b: 9f:d0:01:fa:0d:28:8f:2b:5a:9d:b3:0b:68:23:3d: a7:ae:87:5e:99:cf:b7:9e:9c:54:a4:5c:66:40:8e: 39:6c:d3:36:8f:e5:95:88:12:57:c0:5c:85:af:7c: 4a:f5:27:9e:5e:42:76:10:e2:9b:f9:a0:f9:c6:99: eb:c8:8d:8a:02:c8:b5:02:d8:27:09:63:16:60:8b: 0e:e5:f8:d7:41:f3:35:01:f8:07:4e:a8:ba:98:0c: 56:68:2f:f7:10:14:0b:3c:ab:30:f4:bc:d4:17:f7: 59:9a:27:bc:7f:a9:1a:ab:61:1c:db:05:58:01:4f: 1a:c1:92:0c:7a:ca:8c:30:d2:c0:d7:d7:87:bc:4b: a2:a3:14:76:95:9d:be:6c:7f:c2:5a:9d:2e:f0:77: 4d:8d:56:b0:c7:80:f7:d2:1b:48:82:af:40:36:e4: 71:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EB:8A:BF:ED:FB:08:B3:FB:F1:B1:BE:34:8E:16:5B:B2:36:14:E1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS49975.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6d00::/40 Signature Algorithm: sha256WithRSAEncryption 4f:ae:03:d9:35:1e:c5:1d:5e:c9:e2:40:10:4b:d1:21:01:6f: 72:66:1b:b6:6e:80:3f:13:af:a0:0b:ec:66:83:38:a9:78:08: 2b:8a:5f:67:3e:70:6b:ba:c2:e7:ec:ab:fe:8f:7b:09:e1:50: 3f:ff:cb:86:03:85:2c:eb:9f:03:01:74:79:50:01:66:84:fd: 02:3a:87:43:8d:73:0b:b4:6d:22:59:8b:91:fa:cc:29:ea:d0: 2d:10:d6:ea:0d:02:eb:a8:fb:81:10:1d:ea:96:86:e1:95:ac: 71:63:79:ff:36:37:c8:a5:9e:b9:96:be:66:2c:0c:11:bf:34: 54:0f:65:02:af:cf:54:45:dd:b4:76:2a:63:6b:a7:e9:d3:d4: 4b:2a:a5:46:83:d0:8f:92:6e:5a:c2:95:11:95:ae:b5:f2:ea: b0:77:14:56:d0:be:22:ec:bb:0b:ef:e2:ca:8c:c7:19:47:a4: d8:c3:95:bd:dc:22:29:8f:31:2e:cf:59:89:c6:de:10:ce:5d: 0c:4f:89:10:43:31:dd:ee:69:ad:33:1f:1d:ad:df:81:38:cd: 46:99:8e:ac:71:1d:cd:7c:6e:94:3c:c1:d5:46:4d:b4:14:9c: 79:d9:31:2f:5a:e4:24:e3:ae:a0:15:9e:b7:49:32:19:44:72: 18:30:d7:39 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUZCDxEuBzeyjKzz9rjmeih16/ToUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKDdBRUI4QUJGRURGQjA4QjNGQkYxQjFCRTM0OEUxNjVCQjIzNjE0RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPxLF0cT2TcruY4cSoE/xj4A1D ofNDoaKzC67S/hz2GGBYZNRx7OwmhJF0PfnbvWYRoDcF9/sCMisXrxfv12seqoxm SibD15ZEGcSJfvZP9vWcbxtXsw6TC5/QAfoNKI8rWp2zC2gjPaeuh16Zz7eenFSk XGZAjjls0zaP5ZWIElfAXIWvfEr1J55eQnYQ4pv5oPnGmevIjYoCyLUC2CcJYxZg iw7l+NdB8zUB+AdOqLqYDFZoL/cQFAs8qzD0vNQX91maJ7x/qRqrYRzbBVgBTxrB kgx6yoww0sDX14e8S6KjFHaVnb5sf8JanS7wd02NVrDHgPfSG0iCr0A25HF5AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUeuuKv+37CLP78bG+NI4WW7I2FOEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNDk5NzUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAbTANBgkqhkiG9w0BAQsFAAOCAQEAT64D 2TUexR1eyeJAEEvRIQFvcmYbtm6APxOvoAvsZoM4qXgIK4pfZz5wa7rC5+yr/o97 CeFQP//LhgOFLOufAwF0eVABZoT9AjqHQ41zC7RtIlmLkfrMKerQLRDW6g0C66j7 gRAd6paG4ZWscWN5/zY3yKWeuZa+ZiwMEb80VA9lAq/PVEXdtHYqY2un6dPUSyql RoPQj5JuWsKVEZWutfLqsHcUVtC+Iuy7C+/iyozHGUek2MOVvdwiKY8xLs9Zicbe EM5dDE+JEEMx3e5prTMfHa3fgTjNRpmOrHEdzXxulDzB1UZNtBScedkxL1rkJOOu oBWet0kyGURyGDDXOQ== -----END CERTIFICATE-----Generated at Sat Jul 5 08:09:58 2025 by rpki-client