$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60391.roa File: AS60391.roa (raw, json) Hash identifier: fkcZpfVAIWgYpN4K5VA9FpUDb/mbbr2BXENdPeUJohs= Subject key identifier: 76:FD:A9:31:D7:DB:A7:4F:2F:6F:A0:AE:F7:0F:83:58:49:24:4A:1D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3AEB806044954E0C1072CFAA76BFB26BB5BA3914 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60391.roa Signing time: Fri 04 Jul 2025 06:52:59 +0000 ROA not before: Fri 04 Jul 2025 06:47:59 +0000 ROA not after: Fri 03 Jul 2026 06:52:59 +0000 asID: 60391 IP address blocks: 2a0a:6040:9e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:eb:80:60:44:95:4e:0c:10:72:cf:aa:76:bf:b2:6b:b5:ba:39:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:59 2025 GMT Not After : Jul 3 06:52:59 2026 GMT Subject: CN=76FDA931D7DBA74F2F6FA0AEF70F835849244A1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dc:ee:93:b2:e3:fe:1c:73:70:c3:81:4c:c4: ff:0c:17:66:d3:6e:97:65:80:af:21:53:57:d3:e2: ad:d5:f6:cd:e1:d3:de:12:37:91:55:fe:57:6d:ee: b1:36:ea:99:09:ba:79:0e:21:8d:8b:44:f2:3c:50: b5:7f:3b:ca:3e:b1:19:ce:86:4b:dc:a7:7f:4f:4a: e1:aa:24:ac:69:0d:01:c7:84:6e:3b:ab:b6:5d:93: e5:1f:f6:ed:1e:d6:fd:e2:83:5f:ab:81:50:55:4d: fe:e2:7e:1e:f4:85:4f:5a:7b:50:6c:25:bb:5f:52: 9f:92:ba:78:9a:b0:69:f4:2a:cc:0a:72:d1:06:3c: 8a:06:02:ff:3f:ae:f8:d0:c5:ff:49:9a:85:47:b0: 4d:9e:45:c9:4c:86:8b:d8:0f:46:3a:c7:6d:fa:fc: 69:a6:6c:b8:75:d1:75:15:23:96:f7:53:eb:2c:8f: 2d:be:93:ad:83:3f:dc:f8:b1:31:ff:f5:0a:06:41: 1c:d4:b2:55:2e:cd:7e:ae:9c:13:d6:38:c1:5c:92: bd:78:ad:ef:be:c6:5c:46:ec:ff:74:94:88:57:0b: 8d:38:23:f4:ce:9b:71:3a:c5:db:e9:da:67:7f:3e: 8c:22:d7:ab:97:0b:19:c9:dd:c3:d3:18:ab:06:8b: 61:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:FD:A9:31:D7:DB:A7:4F:2F:6F:A0:AE:F7:0F:83:58:49:24:4A:1D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60391.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9e00::/40 Signature Algorithm: sha256WithRSAEncryption b6:91:fe:a8:88:34:de:db:c3:45:bb:91:66:37:5e:5b:9a:05: 93:60:1d:b0:60:01:56:9c:09:c3:6f:20:fa:9b:14:ec:a3:2c: 9e:10:b4:5e:3d:ea:e0:34:77:22:1f:81:9f:50:8a:56:e1:02: db:ce:7c:dc:f2:9d:b3:c4:fb:5e:f0:3e:b1:ca:a4:52:9a:bb: b3:65:be:85:b4:52:79:f2:86:55:06:dc:40:2f:df:7a:4f:9c: 8e:dd:56:b6:85:3d:53:dd:85:29:25:9e:2e:a4:be:88:1a:ca: 67:76:b5:15:91:c5:07:f9:50:2f:92:8f:e4:d5:86:44:73:11: 94:f6:fe:b6:38:a6:73:df:9d:cb:2b:53:db:b4:4b:db:58:fc: 76:0d:ca:c4:dc:9a:20:f7:ce:83:83:1b:5f:09:8c:a6:56:db: 23:53:c9:6c:cb:39:c5:57:2a:bf:20:11:9e:20:3d:82:91:b0: 91:b5:33:0c:04:6c:89:d4:2c:43:b2:a3:1d:e5:64:e2:9c:52: c4:29:f6:62:bf:b1:18:de:7e:64:d4:73:43:b9:93:6e:24:2a: 0d:6c:53:0b:27:09:e6:aa:18:cf:51:3e:2c:f0:98:31:0d:3f: 3f:fa:d1:02:40:43:16:17:33:83:c8:57:ea:47:33:2a:22:38: b1:15:ba:91 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUOuuAYESVTgwQcs+qdr+ya7W6ORQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTlaFw0yNjA3MDMwNjUyNTlaMDMxMTAvBgNV BAMTKDc2RkRBOTMxRDdEQkE3NEYyRjZGQTBBRUY3MEY4MzU4NDkyNDRBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC3O6TsuP+HHNww4FMxP8MF2bT bpdlgK8hU1fT4q3V9s3h094SN5FV/ldt7rE26pkJunkOIY2LRPI8ULV/O8o+sRnO hkvcp39PSuGqJKxpDQHHhG47q7Zdk+Uf9u0e1v3ig1+rgVBVTf7ifh70hU9ae1Bs JbtfUp+SuniasGn0KswKctEGPIoGAv8/rvjQxf9JmoVHsE2eRclMhovYD0Y6x236 /GmmbLh10XUVI5b3U+ssjy2+k62DP9z4sTH/9QoGQRzUslUuzX6unBPWOMFckr14 re++xlxG7P90lIhXC404I/TOm3E6xdvp2md/Powi16uXCxnJ3cPTGKsGi2HHAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUdv2pMdfbp08vb6Cu9w+DWEkkSh0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNjAzOTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAnjANBgkqhkiG9w0BAQsFAAOCAQEAtpH+ qIg03tvDRbuRZjdeW5oFk2AdsGABVpwJw28g+psU7KMsnhC0Xj3q4DR3Ih+Bn1CK VuEC28583PKds8T7XvA+scqkUpq7s2W+hbRSefKGVQbcQC/fek+cjt1WtoU9U92F KSWeLqS+iBrKZ3a1FZHFB/lQL5KP5NWGRHMRlPb+tjimc9+dyytT27RL21j8dg3K xNyaIPfOg4MbXwmMplbbI1PJbMs5xVcqvyARniA9gpGwkbUzDARsidQsQ7KjHeVk 4pxSxCn2Yr+xGN5+ZNRzQ7mTbiQqDWxTCycJ5qoYz1E+LPCYMQ0/P/rRAkBDFhcz g8hX6kczKiI4sRW6kQ== -----END CERTIFICATE-----Generated at Sat Jul 5 04:12:34 2025 by rpki-client