$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS61228.roa File: AS61228.roa (raw, json) Hash identifier: mhdbhh4A7Ac/p0+5FNqUBtPNaMiRHT/WkZTQ2eyk/QI= Subject key identifier: 3D:BB:93:74:09:9A:E3:0D:41:0B:2B:C4:67:F9:65:C9:15:F1:FC:0E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 43B7D29686D7CDAAF1F35C95366E63678BC9486C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS61228.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 61228 IP address blocks: 2a0a:6040:cf00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:b7:d2:96:86:d7:cd:aa:f1:f3:5c:95:36:6e:63:67:8b:c9:48:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=3DBB9374099AE30D410B2BC467F965C915F1FC0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:db:31:0c:89:b8:7f:fb:60:42:7e:fc:9f:2d: 96:2d:b1:aa:d1:a4:25:27:7a:0d:30:41:bb:86:5d: b7:07:7f:2f:56:76:ee:50:75:85:ad:da:c0:38:41: 61:6c:02:42:c0:f1:8a:b1:46:a8:21:70:89:04:8c: a3:33:ea:f7:05:46:5c:c0:29:f8:19:61:55:70:49: e7:5f:72:b1:d4:4a:c7:e2:b3:21:c4:45:34:fa:3b: 46:05:ca:bf:3a:59:68:25:f2:63:04:d7:cd:46:3a: d6:14:b1:56:74:30:7b:43:fc:cd:a6:fd:c5:d1:5d: 1c:5d:9f:49:78:fd:11:b6:e7:07:f6:77:47:7d:8f: a2:26:9b:f6:f2:ff:a8:28:29:e3:60:48:ce:9b:72: a6:73:a5:a2:2d:d1:a9:e2:a7:84:cf:05:c3:0b:85: 21:0f:5d:13:40:f0:10:0e:53:47:42:2f:2c:e2:e2: d7:d3:0a:0b:df:70:58:48:9a:da:b8:4e:ce:2f:56: 7b:a8:69:b0:10:28:f3:2e:f1:7c:04:f4:0d:41:6e: 2a:5d:32:08:a7:3f:4d:46:3b:f2:8d:65:e6:07:d4: 45:ba:b3:dc:84:5e:e9:b6:88:fe:63:c5:c4:20:ad: 2b:19:5c:14:b9:4e:e6:7d:83:51:98:86:4e:81:d7: 38:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:BB:93:74:09:9A:E3:0D:41:0B:2B:C4:67:F9:65:C9:15:F1:FC:0E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS61228.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:cf00::/40 Signature Algorithm: sha256WithRSAEncryption 1f:47:e0:57:72:2a:66:d9:19:bd:e7:5a:fb:de:fa:54:5b:97: 7a:2c:4f:8e:ea:31:1a:0b:0d:ae:60:a2:d5:66:10:97:12:41: 83:b7:58:df:60:4a:04:c7:06:fc:ea:a3:9f:78:3a:a1:42:1a: f3:89:7a:ef:36:0d:95:ad:c1:26:38:c4:52:be:45:7b:31:d0: 73:48:8d:72:a9:65:ce:d1:87:15:e7:84:41:af:14:73:bc:b8: bc:33:39:2d:63:1e:b7:ea:c0:d6:5a:d6:82:27:4f:6b:7a:15: 3f:f6:b2:81:fa:ca:36:1a:e5:7d:50:d7:6e:16:ae:cd:47:2b: 1b:d7:69:9f:82:1d:e8:c3:b4:ce:3c:43:39:55:dd:fd:2d:31: 2a:f3:bd:b3:28:7e:70:0c:6e:ef:2a:77:e0:f2:af:84:a0:f3: b0:3e:5e:98:b3:d3:90:ee:ee:5f:91:7b:d6:2c:7e:29:b7:11: 65:6f:2b:e2:c3:52:7a:b6:cb:93:27:12:a6:2e:e9:c8:59:eb: f1:b9:f7:9e:e0:70:3f:5f:8a:23:2a:e4:27:d9:84:05:49:06: 76:82:99:98:26:e7:93:34:75:2b:11:af:d3:b5:67:da:fa:9f: 17:3f:5c:f9:c5:ea:53:96:a2:fb:7a:ae:62:71:bf:0c:d3:6e: 93:cd:5c:27 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUQ7fSlobXzarx81yVNm5jZ4vJSGwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKDNEQkI5Mzc0MDk5QUUzMEQ0MTBCMkJDNDY3Rjk2NUM5MTVGMUZDMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDj2zEMibh/+2BCfvyfLZYtsarR pCUneg0wQbuGXbcHfy9Wdu5QdYWt2sA4QWFsAkLA8YqxRqghcIkEjKMz6vcFRlzA KfgZYVVwSedfcrHUSsfisyHERTT6O0YFyr86WWgl8mME181GOtYUsVZ0MHtD/M2m /cXRXRxdn0l4/RG25wf2d0d9j6Imm/by/6goKeNgSM6bcqZzpaIt0anip4TPBcML hSEPXRNA8BAOU0dCLyzi4tfTCgvfcFhImtq4Ts4vVnuoabAQKPMu8XwE9A1Bbipd MginP01GO/KNZeYH1EW6s9yEXum2iP5jxcQgrSsZXBS5TuZ9g1GYhk6B1zjdAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUPbuTdAma4w1BCyvEZ/llyRXx/A4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNjEyMjgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqCmBAzzANBgkqhkiG9w0BAQsFAAOCAQEAH0fg V3IqZtkZveda+976VFuXeixPjuoxGgsNrmCi1WYQlxJBg7dY32BKBMcG/Oqjn3g6 oUIa84l67zYNla3BJjjEUr5FezHQc0iNcqllztGHFeeEQa8Uc7y4vDM5LWMet+rA 1lrWgidPa3oVP/aygfrKNhrlfVDXbhauzUcrG9dpn4Id6MO0zjxDOVXd/S0xKvO9 syh+cAxu7yp34PKvhKDzsD5emLPTkO7uX5F71ix+KbcRZW8r4sNSerbLkycSpi7p yFnr8bn3nuBwP1+KIyrkJ9mEBUkGdoKZmCbnkzR1KxGv07Vn2vqfFz9c+cXqU5ai +3quYnG/DNNuk81cJw== -----END CERTIFICATE-----Generated at Sat Jul 5 04:02:12 2025 by rpki-client