$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS62425.roa File: AS62425.roa (raw, json) Hash identifier: eTI1ir1AvWBmrkNjzw8KidwNqXrOtlYrtcmU0Bn1pd8= Subject key identifier: 50:E4:60:DB:FF:80:8D:1F:EC:22:10:F3:AC:23:C4:9C:A0:E0:F3:6A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2F889D0D9328381D9EDA43B4D715297D5539F33D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS62425.roa Signing time: Fri 05 Jun 2026 07:12:48 +0000 ROA not before: Fri 05 Jun 2026 07:07:48 +0000 ROA not after: Fri 04 Jun 2027 07:12:48 +0000 asID: 62425 IP address blocks: 2a05:dfc1:700::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 12:50:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:88:9d:0d:93:28:38:1d:9e:da:43:b4:d7:15:29:7d:55:39:f3:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:48 2026 GMT Not After : Jun 4 07:12:48 2027 GMT Subject: CN=50E460DBFF808D1FEC2210F3AC23C49CA0E0F36A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f5:99:df:c5:20:d4:2d:70:ca:d6:33:0f:46: 68:f3:b8:7e:06:69:71:4e:9b:76:62:30:b6:2d:9e: 40:7c:e0:31:09:23:e0:6d:85:01:08:f0:07:03:cd: d9:d4:6a:b0:7e:6f:ca:5f:53:0d:39:5b:65:fc:da: 80:eb:29:40:3c:e1:d3:c0:24:3e:ad:cc:fa:4c:a9: e1:76:3c:e3:df:89:88:ff:cc:9d:3b:3e:1f:8b:c3: 61:a6:bd:d9:1f:08:d2:b2:1d:eb:79:ea:63:f3:fe: 6c:63:7b:d7:9e:a7:9d:10:48:d7:fd:a6:6a:b6:50: e0:cf:0d:24:84:e6:13:13:d1:51:c8:ee:34:d0:db: 43:ff:a1:4e:25:76:02:54:30:e1:ac:b4:67:92:14: 56:4a:95:87:1a:65:9b:8d:ff:50:8e:3f:3b:20:f2: 8e:a4:1e:85:5a:2c:b2:a2:e3:06:3f:6c:ed:32:50: 73:bc:a5:03:de:47:94:08:0d:00:df:24:e9:06:08: 6b:e8:24:65:0a:8a:7c:14:8d:1f:ac:7e:19:40:03: c9:a0:31:c7:bf:bc:ad:3b:c9:27:5a:17:92:c0:ab: 7c:de:93:d2:5e:c8:b4:0a:75:c9:10:d9:ce:9c:6b: 68:9b:29:0e:7c:fc:0e:87:d5:eb:e0:e2:19:d0:c9: 4e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E4:60:DB:FF:80:8D:1F:EC:22:10:F3:AC:23:C4:9C:A0:E0:F3:6A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS62425.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:700::/40 Signature Algorithm: sha256WithRSAEncryption 70:2d:1b:dc:c5:53:c7:3f:96:10:d1:95:29:da:74:39:7b:bf: 78:28:2e:31:64:74:3e:d6:23:50:3c:2a:15:07:e7:67:5f:14: d3:87:9a:75:57:c2:a8:a8:f0:e4:2b:1f:2d:b1:bd:2e:f6:eb: 8f:19:11:06:47:f4:f8:75:ea:2f:06:f6:7d:d0:5b:f3:0c:e0: bc:cd:5c:b8:cb:75:17:8f:54:a4:bd:c8:79:0e:17:5a:21:5d: f6:bf:ff:63:4e:da:af:5a:44:e1:f8:27:78:23:22:a5:cc:e9: ed:58:a1:3a:89:05:99:08:20:ce:18:53:40:2d:70:c9:85:94: fb:50:b0:e2:f7:52:1f:b5:63:64:78:ec:65:5e:b2:b3:58:77: ee:02:a7:56:d8:be:62:35:f2:87:18:3a:99:41:04:ac:e9:b3: ca:31:99:e7:be:50:07:06:86:03:91:67:1d:c6:8b:86:f9:0d: 18:89:ef:f9:a0:5a:72:d7:0f:26:31:b4:40:d8:87:47:86:c4: a6:42:d0:3f:ad:e4:b9:46:1d:c4:4a:da:4a:b2:2c:d0:89:d4: 0a:49:69:40:28:f0:73:62:b1:99:b9:4d:f2:96:c4:a6:7d:a4: c6:27:d6:b9:17:ab:72:a9:f7:b8:c9:3a:5f:e5:19:5c:4e:37: de:d1:0d:b2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUL4idDZMoOB2e2kO01xUpfVU58z0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDhaFw0yNzA2MDQwNzEyNDhaMDMxMTAvBgNV BAMTKDUwRTQ2MERCRkY4MDhEMUZFQzIyMTBGM0FDMjNDNDlDQTBFMEYzNkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe9ZnfxSDULXDK1jMPRmjzuH4G aXFOm3ZiMLYtnkB84DEJI+BthQEI8AcDzdnUarB+b8pfUw05W2X82oDrKUA84dPA JD6tzPpMqeF2POPfiYj/zJ07Ph+Lw2GmvdkfCNKyHet56mPz/mxje9eep50QSNf9 pmq2UODPDSSE5hMT0VHI7jTQ20P/oU4ldgJUMOGstGeSFFZKlYcaZZuN/1COPzsg 8o6kHoVaLLKi4wY/bO0yUHO8pQPeR5QIDQDfJOkGCGvoJGUKinwUjR+sfhlAA8mg Mce/vK07ySdaF5LAq3zek9JeyLQKdckQ2c6ca2ibKQ58/A6H1evg4hnQyU5/AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUUORg2/+AjR/sIhDzrCPEnKDg82owHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNjI0MjUucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BBzANBgkqhkiG9w0BAQsFAAOCAQEAcC0b 3MVTxz+WENGVKdp0OXu/eCguMWR0PtYjUDwqFQfnZ18U04eadVfCqKjw5CsfLbG9 LvbrjxkRBkf0+HXqLwb2fdBb8wzgvM1cuMt1F49UpL3IeQ4XWiFd9r//Y07ar1pE 4fgneCMipczp7VihOokFmQggzhhTQC1wyYWU+1Cw4vdSH7VjZHjsZV6ys1h37gKn Vti+YjXyhxg6mUEErOmzyjGZ575QBwaGA5FnHcaLhvkNGInv+aBactcPJjG0QNiH R4bEpkLQP63kuUYdxEraSrIs0InUCklpQCjwc2KxmblN8pbEpn2kxifWuRercqn3 uMk6X+UZXE433tENsg== -----END CERTIFICATE-----Generated at Sat Jun 6 16:49:25 2026 by rpki-client