$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS58212.roa File: AS58212.roa (raw, json) Hash identifier: nRJkbC5vazx/9xRoqOdylfGIo0WEP2HSW1kcE3qn+2o= Subject key identifier: 20:B0:3B:4B:D1:5A:55:DB:A0:0B:34:B1:5B:0E:28:7E:94:C4:5A:EA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3F244E8B05DC2FDED8BBBFC6A0CF6380C9D063FA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS58212.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 58212 IP address blocks: 2a05:dfc1:5800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:24:4e:8b:05:dc:2f:de:d8:bb:bf:c6:a0:cf:63:80:c9:d0:63:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=20B03B4BD15A55DBA00B34B15B0E287E94C45AEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fc:45:83:0b:48:29:75:0c:c5:7f:ff:82:18: 7f:5a:96:64:3f:73:aa:b0:dc:bb:45:c9:5e:66:af: 9f:2f:a8:c1:06:c1:74:e7:d6:8b:68:3b:b0:7e:90: a6:0f:86:5f:dc:c9:8e:24:12:e2:eb:e9:64:f5:05: 41:63:4a:39:8a:ea:35:18:b3:e0:14:13:62:74:39: 7c:d7:4b:37:3c:bd:85:cf:93:56:99:c1:27:b8:aa: 06:66:d4:3f:92:4a:a2:05:68:56:bb:80:95:fa:4a: 99:ed:a8:97:f9:f3:bb:05:4c:31:9d:c6:00:fd:08: ee:85:73:0b:bc:e3:25:d4:e8:3e:d5:6c:a9:40:f7: 33:36:bb:fe:75:b5:fd:bf:67:e3:1b:ef:bd:02:77: c9:93:d4:3b:f3:11:76:b2:9f:b5:2f:db:ce:64:06: d5:67:d5:c5:29:44:84:99:ae:a3:40:19:46:e0:c5: 3e:6e:f3:8f:a9:c8:5b:4d:35:c8:0e:a5:75:5b:bd: 5c:70:4e:41:b9:59:ee:2a:96:ff:c8:69:c6:11:ed: 59:68:42:ab:42:f4:d2:49:fc:b2:a9:ee:65:11:e1: f1:e2:ac:ed:2a:d8:54:67:78:19:10:c4:d6:71:9a: f5:41:b4:c3:2b:6d:69:ae:21:8a:b4:8a:6c:ff:51: 57:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:B0:3B:4B:D1:5A:55:DB:A0:0B:34:B1:5B:0E:28:7E:94:C4:5A:EA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS58212.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5800::/40 Signature Algorithm: sha256WithRSAEncryption b5:25:1d:c8:70:80:d2:c7:e2:2a:a0:4d:ee:1e:24:63:06:f1: c5:28:b7:81:87:15:2e:7a:b0:11:e6:10:57:ef:b7:8c:70:26: 35:8f:a7:2b:73:f2:08:ae:c0:3b:0e:bf:83:cc:a8:78:0b:2b: 41:7d:23:a6:c6:54:a3:38:cb:8a:ea:00:87:c6:44:0a:79:fa: ef:86:85:7c:3c:79:e4:72:2c:9a:65:66:39:95:03:3f:63:34: 80:1e:87:d8:9b:a3:b7:16:ae:3b:bd:06:61:84:fd:92:38:f8: 93:89:b7:da:5f:3f:24:95:d6:95:81:36:04:b4:de:fb:f5:09: 31:05:ce:37:1f:ff:e2:6f:c8:31:11:74:1e:41:3c:b8:da:3a: f0:cf:bd:11:f4:a1:ed:18:56:df:b3:ac:cc:ad:51:31:64:c1: 1f:04:8c:83:15:69:0d:68:a4:fc:cc:3f:d4:db:d8:3a:bd:c3: ac:7f:63:f7:11:33:73:b9:8f:6f:84:b4:74:2a:7e:ca:4d:ee: 58:6d:e0:bc:a9:85:4d:ac:6e:40:27:0d:a4:7a:bb:5a:e3:f0: ee:e4:ab:03:ca:03:f9:7c:bf:44:c5:7e:d9:ac:74:c2:7d:95: 50:55:1f:13:02:b7:f3:41:d7:08:4f:48:f1:f9:1f:f3:46:fe: f3:4c:af:62 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUPyROiwXcL97Yu7/GoM9jgMnQY/owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKDIwQjAzQjRCRDE1QTU1REJBMDBCMzRCMTVCMEUyODdFOTRDNDVBRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDU/EWDC0gpdQzFf/+CGH9almQ/ c6qw3LtFyV5mr58vqMEGwXTn1otoO7B+kKYPhl/cyY4kEuLr6WT1BUFjSjmK6jUY s+AUE2J0OXzXSzc8vYXPk1aZwSe4qgZm1D+SSqIFaFa7gJX6SpntqJf587sFTDGd xgD9CO6Fcwu84yXU6D7VbKlA9zM2u/51tf2/Z+Mb770Cd8mT1DvzEXayn7Uv285k BtVn1cUpRISZrqNAGUbgxT5u84+pyFtNNcgOpXVbvVxwTkG5We4qlv/IacYR7Vlo QqtC9NJJ/LKp7mUR4fHirO0q2FRneBkQxNZxmvVBtMMrbWmuIYq0imz/UVd9AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUILA7S9FaVdugCzSxWw4ofpTEWuowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNTgyMTIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BWDANBgkqhkiG9w0BAQsFAAOCAQEAtSUd yHCA0sfiKqBN7h4kYwbxxSi3gYcVLnqwEeYQV++3jHAmNY+nK3PyCK7AOw6/g8yo eAsrQX0jpsZUozjLiuoAh8ZECnn674aFfDx55HIsmmVmOZUDP2M0gB6H2Jujtxau O70GYYT9kjj4k4m32l8/JJXWlYE2BLTe+/UJMQXONx//4m/IMRF0HkE8uNo68M+9 EfSh7RhW37OszK1RMWTBHwSMgxVpDWik/Mw/1NvYOr3DrH9j9xEzc7mPb4S0dCp+ yk3uWG3gvKmFTaxuQCcNpHq7WuPw7uSrA8oD+Xy/RMV+2ax0wn2VUFUfEwK380HX CE9I8fkf80b+80yvYg== -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:34 2025 by rpki-client