$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS58339.roa File: AS58339.roa (raw, json) Hash identifier: HB3tr9skwKT2nN7wgr9Lj10AEL9AyOXvJNboNCezamk= Subject key identifier: 2B:16:B4:B3:05:4E:8B:FC:2E:1A:7E:14:97:BC:55:45:9D:C4:05:AF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0B8E236449FBBF690474AC8F0AA2EC90AF83C0BF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS58339.roa Signing time: Fri 04 Jul 2025 06:53:04 +0000 ROA not before: Fri 04 Jul 2025 06:48:04 +0000 ROA not after: Fri 03 Jul 2026 06:53:04 +0000 asID: 58339 IP address blocks: 2a05:dfc1:5f00::/40 maxlen: 48 2a05:dfc1:8e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:8e:23:64:49:fb:bf:69:04:74:ac:8f:0a:a2:ec:90:af:83:c0:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:04 2025 GMT Not After : Jul 3 06:53:04 2026 GMT Subject: CN=2B16B4B3054E8BFC2E1A7E1497BC55459DC405AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bb:be:95:57:1d:1c:8c:e8:67:63:3a:71:4e: 28:88:de:da:1e:e9:00:2f:24:86:1c:ca:74:89:39: f0:06:6c:5d:31:a4:1d:42:cf:09:cc:91:c0:e8:20: 6d:9d:1a:3d:c0:0b:41:9a:e4:93:ed:06:9d:70:8c: f6:b2:59:be:1c:35:30:05:ad:35:e5:18:67:dd:8a: ab:f1:97:85:5e:a4:51:66:9e:4a:da:9e:51:f6:46: 04:53:a7:2f:76:25:c4:65:d7:15:27:db:ec:92:11: 6a:bd:8f:00:d2:5a:20:30:8f:c2:eb:e1:44:42:4e: e8:68:c8:99:b5:8c:87:35:99:28:7a:cb:46:d3:2a: 92:8d:64:d6:6c:3b:3e:af:57:6a:ca:52:ba:f5:aa: 83:97:ba:a7:aa:c6:00:88:43:04:fd:bd:4a:00:45: e3:63:4a:c0:e9:35:fb:c2:e1:e0:dc:e5:6d:57:37: be:09:7c:cb:9e:bd:9e:bc:5d:57:1d:76:95:bf:58: 2f:43:ca:86:8f:b8:ec:8a:47:ab:42:80:49:1e:21: 83:38:95:80:2b:db:62:9b:c7:d4:d4:74:8f:20:f3: 7e:70:d6:37:09:9e:76:3f:a4:d4:67:1e:4d:1d:83: 65:7a:3b:d3:cc:0a:31:99:e3:21:af:7e:fd:ab:c6: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:16:B4:B3:05:4E:8B:FC:2E:1A:7E:14:97:BC:55:45:9D:C4:05:AF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS58339.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5f00::/40 2a05:dfc1:8e00::/40 Signature Algorithm: sha256WithRSAEncryption 9e:96:6b:91:4a:cb:19:63:d2:61:7d:ae:dd:bb:28:f8:20:d8: cd:b4:73:80:67:fb:a8:d5:0f:0a:96:b3:dc:b4:99:64:02:5e: 37:04:af:76:dd:9a:7e:70:93:47:13:8d:8d:c4:47:63:95:39: dd:71:38:1b:bb:af:96:b3:3c:6d:bc:1d:03:c4:dd:08:62:5b: e4:27:54:e0:0a:af:dc:45:9f:c7:9d:59:d0:d9:86:e9:3d:f8: a0:e7:02:e7:88:b3:7c:a3:bc:86:10:b6:07:48:3e:1a:ff:7e: 4f:9b:71:5e:4b:ff:87:49:90:56:e7:8d:23:f2:a7:82:06:60: 6b:a0:41:d9:c7:4f:41:35:59:00:7b:a6:d1:7c:66:ea:9f:f8: 01:f6:ff:8b:ab:0e:f5:bf:c0:86:37:c7:0a:ac:70:6c:92:13: fe:cf:f4:a0:0f:9d:63:fb:5a:3e:86:d3:bc:7b:a7:a2:49:f8: a4:97:90:75:32:3a:62:3d:a2:43:9e:71:e9:1c:ff:40:f2:1e: 30:a1:c7:6c:82:39:9c:d2:ca:1c:5a:6e:a8:2a:f0:73:40:e6: db:f1:07:72:70:69:fe:34:b4:eb:c3:48:c6:a8:93:60:a1:3e: 04:be:10:61:0c:4c:10:d3:1a:a8:88:13:21:0b:6f:68:68:1a: 82:24:9d:dc -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIUC44jZEn7v2kEdKyPCqLskK+DwL8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDRaFw0yNjA3MDMwNjUzMDRaMDMxMTAvBgNV BAMTKDJCMTZCNEIzMDU0RThCRkMyRTFBN0UxNDk3QkM1NTQ1OURDNDA1QUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDiu76VVx0cjOhnYzpxTiiI3toe 6QAvJIYcynSJOfAGbF0xpB1CzwnMkcDoIG2dGj3AC0Ga5JPtBp1wjPayWb4cNTAF rTXlGGfdiqvxl4VepFFmnkranlH2RgRTpy92JcRl1xUn2+ySEWq9jwDSWiAwj8Lr 4URCTuhoyJm1jIc1mSh6y0bTKpKNZNZsOz6vV2rKUrr1qoOXuqeqxgCIQwT9vUoA ReNjSsDpNfvC4eDc5W1XN74JfMuevZ68XVcddpW/WC9DyoaPuOyKR6tCgEkeIYM4 lYAr22Kbx9TUdI8g835w1jcJnnY/pNRnHk0dg2V6O9PMCjGZ4yGvfv2rxrITAgMB AAGjggH7MIIB9zAdBgNVHQ4EFgQUKxa0swVOi/wuGn4Ul7xVRZ3EBa8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNTgzMzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwKQYIKwYBBQUH AQcBAf8EGjAYMBYEAgACMBADBgAqBd/BXwMGACoF38GOMA0GCSqGSIb3DQEBCwUA A4IBAQCelmuRSssZY9Jhfa7duyj4INjNtHOAZ/uo1Q8KlrPctJlkAl43BK923Zp+ cJNHE42NxEdjlTndcTgbu6+WszxtvB0DxN0IYlvkJ1TgCq/cRZ/HnVnQ2YbpPfig 5wLniLN8o7yGELYHSD4a/35Pm3FeS/+HSZBW540j8qeCBmBroEHZx09BNVkAe6bR fGbqn/gB9v+Lqw71v8CGN8cKrHBskhP+z/SgD51j+1o+htO8e6eiSfikl5B1Mjpi PaJDnnHpHP9A8h4wocdsgjmc0socWm6oKvBzQObb8QdycGn+NLTrw0jGqJNgoT4E vhBhDEwQ0xqoiBMhC29oaBqCJJ3c -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:23 2025 by rpki-client