$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60431.roa File: AS60431.roa (raw, json) Hash identifier: Z2qInuT1WPu4vNVfFGcnPySeSqe388/Cg+5aB99OBmM= Subject key identifier: D0:77:79:AA:4E:9F:0D:F7:2A:85:34:73:F4:90:29:36:9B:2A:F4:A8 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1B4BF697D7482BE6E1F3839DBBE1DD4D48E52629 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60431.roa Signing time: Fri 04 Jul 2025 06:52:54 +0000 ROA not before: Fri 04 Jul 2025 06:47:54 +0000 ROA not after: Fri 03 Jul 2026 06:52:54 +0000 asID: 60431 IP address blocks: 2a05:dfc1:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4b:f6:97:d7:48:2b:e6:e1:f3:83:9d:bb:e1:dd:4d:48:e5:26:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:54 2025 GMT Not After : Jul 3 06:52:54 2026 GMT Subject: CN=D07779AA4E9F0DF72A853473F49029369B2AF4A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:98:05:7b:d9:a2:e5:e1:25:0a:6a:1f:a8:a1: 6c:61:47:a9:b0:5e:a9:3c:91:c1:20:aa:a6:77:73: 2b:29:49:9d:8e:57:0f:1b:ac:81:f8:12:ff:70:3d: b1:a5:cf:96:46:37:fc:52:00:cf:0d:5a:e8:ce:81: bb:3b:c5:d8:22:76:b9:2f:c3:fa:c7:fa:1c:1a:b9: a0:d2:c3:d6:23:e0:27:25:f9:72:e0:b9:b6:04:d8: 14:3b:37:11:55:38:49:6a:4e:9f:c2:b6:57:3a:fb: d4:50:ab:c5:ef:8a:94:2d:c7:62:a3:2b:63:64:64: a7:c7:5f:c5:f0:ed:fe:d0:e0:1d:83:0e:4b:4f:16: 15:f7:ba:6d:3c:9d:08:0f:52:49:c3:44:08:26:30: 0c:68:f3:87:af:71:95:92:b2:1e:82:37:80:7e:5d: 43:00:ce:3d:e0:cb:f4:eb:cb:0a:ea:23:92:cd:30: a3:e4:a3:d9:79:cd:6c:6a:19:a3:3e:0d:91:cb:e1: f3:2a:87:fe:dc:7d:ca:1d:57:eb:b3:69:c6:6b:44: 55:bf:04:8f:0b:db:8a:55:40:c1:34:9a:37:1d:98: e7:b5:c5:e9:3f:5b:bc:24:0c:9d:8e:e9:0e:5d:f3: 90:51:60:19:fe:38:98:e0:4d:04:7e:03:da:52:9e: 70:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:77:79:AA:4E:9F:0D:F7:2A:85:34:73:F4:90:29:36:9B:2A:F4:A8 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4c00::/40 Signature Algorithm: sha256WithRSAEncryption b9:ce:65:fb:c6:9e:99:b3:dd:b1:29:0e:bd:66:1d:64:83:fb: d3:f8:da:dd:5e:65:ef:1b:18:46:8d:22:d6:39:10:13:f4:34: ac:f4:2a:16:4e:29:fe:52:41:4f:37:ce:d5:44:42:df:9e:82: 87:d1:4d:6d:b9:ab:5a:2e:29:47:46:9a:81:85:20:08:82:1d: 84:f8:93:2f:e9:ba:84:6f:b8:ee:10:8b:0b:f9:72:f9:c9:40: 19:15:31:09:e0:1b:7e:81:6a:55:20:f9:c3:da:df:38:f9:8f: 12:f4:08:8d:0c:04:0f:49:eb:1c:0c:6d:73:f7:f6:24:fe:6b: ff:42:3e:96:31:e7:0b:e9:4a:8e:08:b0:d5:56:ab:91:e4:74: 3b:ba:42:69:26:3a:a2:da:b3:9e:69:b3:1f:53:93:0d:a4:da: 66:90:50:29:ee:7e:15:ed:92:18:87:d2:7f:69:ef:34:53:56: f5:d1:0d:df:70:e0:26:55:19:76:fa:3a:db:45:4d:94:89:9c: 5b:36:bf:2e:ff:c8:84:3f:cf:9d:6f:56:dd:e8:07:43:4f:05: ae:9f:0c:48:68:ad:cf:22:06:c0:01:37:85:69:20:62:a9:59: 80:cd:00:2a:35:99:20:7e:58:fc:14:30:af:d9:0c:78:ad:6d: f1:dd:32:3f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUG0v2l9dIK+bh84Odu+HdTUjlJikwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTRaFw0yNjA3MDMwNjUyNTRaMDMxMTAvBgNV BAMTKEQwNzc3OUFBNEU5RjBERjcyQTg1MzQ3M0Y0OTAyOTM2OUIyQUY0QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSmAV72aLl4SUKah+ooWxhR6mw Xqk8kcEgqqZ3cyspSZ2OVw8brIH4Ev9wPbGlz5ZGN/xSAM8NWujOgbs7xdgidrkv w/rH+hwauaDSw9Yj4Ccl+XLgubYE2BQ7NxFVOElqTp/Ctlc6+9RQq8XvipQtx2Kj K2NkZKfHX8Xw7f7Q4B2DDktPFhX3um08nQgPUknDRAgmMAxo84evcZWSsh6CN4B+ XUMAzj3gy/TrywrqI5LNMKPko9l5zWxqGaM+DZHL4fMqh/7cfcodV+uzacZrRFW/ BI8L24pVQME0mjcdmOe1xek/W7wkDJ2O6Q5d85BRYBn+OJjgTQR+A9pSnnCxAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU0Hd5qk6fDfcqhTRz9JApNpsq9KgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNjA0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BTDANBgkqhkiG9w0BAQsFAAOCAQEAuc5l +8aembPdsSkOvWYdZIP70/ja3V5l7xsYRo0i1jkQE/Q0rPQqFk4p/lJBTzfO1URC 356Ch9FNbbmrWi4pR0aagYUgCIIdhPiTL+m6hG+47hCLC/ly+clAGRUxCeAbfoFq VSD5w9rfOPmPEvQIjQwED0nrHAxtc/f2JP5r/0I+ljHnC+lKjgiw1VarkeR0O7pC aSY6otqznmmzH1OTDaTaZpBQKe5+Fe2SGIfSf2nvNFNW9dEN33DgJlUZdvo620VN lImcWza/Lv/IhD/PnW9W3egHQ08Frp8MSGitzyIGwAE3hWkgYqlZgM0AKjWZIH5Y /BQwr9kMeK1t8d0yPw== -----END CERTIFICATE-----Generated at Sat Jul 5 03:54:47 2025 by rpki-client