$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS52210.roa File: AS52210.roa (raw, json) Hash identifier: tZkL743bQJ/Dh1E0Aim0n2PiJus1F0TXqvi7X1JOUWA= Subject key identifier: 1A:CF:27:49:58:2A:8F:CC:78:96:A7:6A:6C:89:FB:45:52:ED:E9:F0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7DAE878DB5D3D5FAF2AC517E8E66AF28CCA8169D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS52210.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 52210 IP address blocks: 2a0a:6040:c500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ae:87:8d:b5:d3:d5:fa:f2:ac:51:7e:8e:66:af:28:cc:a8:16:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=1ACF2749582A8FCC7896A76A6C89FB4552EDE9F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c4:54:c6:04:b9:7c:d8:8d:19:24:88:58:2a: e7:54:71:79:13:0e:f2:b0:c5:7b:aa:02:9d:cb:d3: a6:d4:98:94:10:54:f9:39:fa:7c:69:17:c2:54:84: 75:5a:e1:87:63:a7:96:d3:8c:41:e0:61:98:3a:46: 53:3f:32:22:5f:97:8e:04:5a:a6:61:a1:cd:a2:6e: e1:68:ef:5b:c6:2d:27:94:18:ab:88:33:0a:08:1c: 72:fb:1f:9f:1f:30:47:c7:07:f8:6b:0a:67:23:94: 1b:39:16:9c:5b:17:48:c5:2b:e3:67:a3:7f:4e:3c: 15:56:df:6a:21:2b:a8:95:0b:0d:da:b4:2b:94:59: ae:ac:6b:19:6f:de:06:f0:92:90:c9:ee:88:d5:c6: e3:1a:ea:f0:15:a7:2e:26:92:d2:95:68:7b:71:59: d7:d7:43:9f:a2:0b:ac:b0:f2:0a:1f:e4:ba:5a:55: 63:a9:0c:09:7c:e7:61:24:1c:45:4a:fe:58:ac:fb: 63:78:93:6a:03:4a:02:0a:bc:9e:df:ad:6e:d7:e9: d3:53:5a:0e:91:c1:96:ab:98:78:e6:31:df:2c:44: d0:76:7e:4e:38:5b:5f:9b:d1:2d:f8:92:9e:70:8b: db:85:00:a7:b1:cc:4a:3f:7c:e4:95:aa:6e:e8:b9: a6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CF:27:49:58:2A:8F:CC:78:96:A7:6A:6C:89:FB:45:52:ED:E9:F0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS52210.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:c500::/40 Signature Algorithm: sha256WithRSAEncryption 80:8b:8d:08:81:90:fa:79:33:9d:93:18:a2:0d:7c:06:2b:1b: f8:50:28:03:50:60:4a:b2:b0:3d:82:9a:e7:3a:25:46:e1:c1: 04:f5:eb:f1:b9:b2:8a:b0:e6:a8:66:97:6e:b9:3a:04:e4:e3: 23:16:9f:52:66:68:23:9c:8a:f2:8f:c0:df:7f:e1:6e:ee:4b: fd:ac:55:4d:d0:2a:1d:11:89:5b:90:13:23:43:3c:27:e0:0d: 32:af:22:4a:95:6e:df:1f:f8:70:17:18:a6:7a:ca:41:89:f6: 37:fe:9d:07:31:a3:1c:b5:b8:c8:f0:cc:76:18:a9:c3:f4:14: e7:dc:7a:9d:4f:90:18:67:91:81:03:60:e5:f0:94:ad:f8:53: 95:75:a4:ef:a7:64:8e:e3:30:62:75:77:16:88:c2:5f:93:2a: 12:71:72:20:66:22:67:fd:f8:a2:92:f3:b8:92:6b:03:69:4f: c5:47:bc:6c:c2:cd:4c:29:ed:e2:1f:d1:69:50:16:6e:1c:8e: 58:50:da:ff:c0:58:f2:45:95:55:f5:d6:4a:00:d4:c7:e5:b3: 0c:2e:c1:86:b2:b0:03:d9:17:1d:e5:9e:dc:9f:94:95:ce:8a: c1:c0:ea:c0:f1:07:4d:17:a3:79:59:9f:c0:8e:ee:0a:e3:8d: 69:58:f1:b0 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUfa6HjbXT1fryrFF+jmavKMyoFp0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKDFBQ0YyNzQ5NTgyQThGQ0M3ODk2QTc2QTZDODlGQjQ1NTJFREU5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtxFTGBLl82I0ZJIhYKudUcXkT DvKwxXuqAp3L06bUmJQQVPk5+nxpF8JUhHVa4Ydjp5bTjEHgYZg6RlM/MiJfl44E WqZhoc2ibuFo71vGLSeUGKuIMwoIHHL7H58fMEfHB/hrCmcjlBs5FpxbF0jFK+Nn o39OPBVW32ohK6iVCw3atCuUWa6saxlv3gbwkpDJ7ojVxuMa6vAVpy4mktKVaHtx WdfXQ5+iC6yw8gof5LpaVWOpDAl852EkHEVK/lis+2N4k2oDSgIKvJ7frW7X6dNT Wg6RwZarmHjmMd8sRNB2fk44W1+b0S34kp5wi9uFAKexzEo/fOSVqm7ouaZtAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUGs8nSVgqj8x4lqdqbIn7RVLt6fAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNTIyMTAucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAxTANBgkqhkiG9w0BAQsFAAOCAQEAgIuN CIGQ+nkznZMYog18Bisb+FAoA1BgSrKwPYKa5zolRuHBBPXr8bmyirDmqGaXbrk6 BOTjIxafUmZoI5yK8o/A33/hbu5L/axVTdAqHRGJW5ATI0M8J+ANMq8iSpVu3x/4 cBcYpnrKQYn2N/6dBzGjHLW4yPDMdhipw/QU59x6nU+QGGeRgQNg5fCUrfhTlXWk 76dkjuMwYnV3FojCX5MqEnFyIGYiZ/34opLzuJJrA2lPxUe8bMLNTCnt4h/RaVAW bhyOWFDa/8BY8kWVVfXWSgDUx+WzDC7BhrKwA9kXHeWe3J+Ulc6KwcDqwPEHTRej eVmfwI7uCuONaVjxsA== -----END CERTIFICATE-----Generated at Sat Jul 5 03:50:38 2025 by rpki-client