$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS924.roa File: AS924.roa (raw, json) Hash identifier: D7Gz6NGFfmJL5p/1iK5D9ihgaJeWkIcrK48IL2kIA8Q= Subject key identifier: FF:3C:EC:87:C8:CD:2E:6B:13:EE:EA:C3:55:BD:2F:8B:47:3B:C0:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1A0CB1EE2839AC6F77398A3042F5108B27EC15DD Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS924.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 924 IP address blocks: 2a0a:6040:ff00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:0c:b1:ee:28:39:ac:6f:77:39:8a:30:42:f5:10:8b:27:ec:15:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=FF3CEC87C8CD2E6B13EEEAC355BD2F8B473BC093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2f:f3:89:14:6f:e1:82:fd:6e:79:cb:8a:46: 32:0b:3f:ae:2c:1e:5e:ff:78:bf:6c:c1:2f:82:6b: c6:35:48:64:0b:1b:7c:32:b8:12:d6:9e:75:9f:9e: 80:0c:29:b3:6a:56:c0:24:30:ff:5a:b5:46:79:f0: c8:c7:d7:d7:32:d2:6a:81:08:58:a1:39:fa:d2:16: 7c:1f:39:84:9a:ff:4b:56:f0:9e:b8:38:fe:ef:36: 6a:b0:da:45:09:5b:06:17:5c:1c:8c:60:a4:ea:16: 91:d6:9f:f6:81:57:2f:f0:33:42:05:2c:36:24:13: 51:3e:54:fd:f8:2b:8b:90:c8:4d:09:6d:12:2f:67: ca:d4:9e:6c:e5:4a:92:9d:50:a8:32:37:4d:ad:8b: b0:14:1b:c2:3e:fa:e0:48:7c:50:cd:54:ed:67:54: 71:58:51:e2:56:6c:a7:2c:27:f5:51:33:91:b2:42: be:d4:62:91:54:7d:34:32:df:e9:20:0e:96:cf:fe: cc:cb:14:be:37:d5:30:d3:3f:a6:25:69:68:ae:55: c3:9c:c5:f0:ac:00:76:c4:94:e0:02:ef:ab:10:0f: c0:18:fe:5b:0b:20:6a:49:17:5a:fc:db:ea:fa:f2: d0:48:1d:55:ab:48:37:9e:2c:1a:38:db:af:63:59: 45:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3C:EC:87:C8:CD:2E:6B:13:EE:EA:C3:55:BD:2F:8B:47:3B:C0:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS924.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ff00::/40 Signature Algorithm: sha256WithRSAEncryption 98:02:78:0d:ee:d8:a6:69:f9:0d:87:1b:5e:c8:9e:e4:5c:03: 57:61:c3:52:75:1b:36:62:76:e9:cf:ac:aa:99:db:80:1a:c8: 94:2d:98:08:64:12:4e:52:3c:d4:62:74:08:8e:13:d1:41:14: bd:2a:af:e8:98:99:ec:13:95:86:fb:94:c4:cb:ea:f5:81:3c: 91:b0:40:a4:2f:c0:15:1b:04:72:27:ac:8e:d8:cb:21:d4:45: c8:3b:26:86:ac:a9:32:e0:5f:a2:93:1e:78:b9:61:7f:2a:8e: 8e:10:01:30:9e:4c:af:57:b9:27:4d:4e:cd:33:cd:45:e0:6d: 91:14:2a:ee:b1:2a:96:e6:0f:1c:57:9b:f0:74:2b:6f:38:66: 21:1f:a3:f3:ce:d0:da:2f:ab:51:de:bb:73:9f:c6:26:5a:71: 0c:90:e4:69:82:e2:e7:e3:e6:e4:38:27:e2:7e:3f:65:ca:d8: 48:db:6b:92:41:95:76:ef:ec:94:d9:d1:4a:fb:4f:d3:ca:fa: 09:6d:53:4e:ed:14:21:e5:86:4c:4c:b5:68:cd:3b:b2:32:72: 5e:de:58:4a:c6:38:1a:b8:8b:ba:e1:de:eb:10:d3:c8:a5:b4: 73:ba:f9:f4:c3:55:e0:7e:fb:20:e6:6f:06:c3:bf:46:a2:b7: d6:6b:3d:3d -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgIUGgyx7ig5rG93OYowQvUQiyfsFd0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKEZGM0NFQzg3QzhDRDJFNkIxM0VFRUFDMzU1QkQyRjhCNDczQkMwOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGL/OJFG/hgv1uecuKRjILP64s Hl7/eL9swS+Ca8Y1SGQLG3wyuBLWnnWfnoAMKbNqVsAkMP9atUZ58MjH19cy0mqB CFihOfrSFnwfOYSa/0tW8J64OP7vNmqw2kUJWwYXXByMYKTqFpHWn/aBVy/wM0IF LDYkE1E+VP34K4uQyE0JbRIvZ8rUnmzlSpKdUKgyN02ti7AUG8I++uBIfFDNVO1n VHFYUeJWbKcsJ/VRM5GyQr7UYpFUfTQy3+kgDpbP/szLFL431TDTP6YlaWiuVcOc xfCsAHbElOAC76sQD8AY/lsLIGpJF1r82+r68tBIHVWrSDeeLBo4269jWUWdAgMB AAGjggHxMIIB7TAdBgNVHQ4EFgQU/zzsh8jNLmsT7urDVb0vi0c7wJMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwVwYIKwYBBQUHAQsESzBJMEcGCCsGAQUFBzALhjty c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTOTI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEH AQH/BBIwEDAOBAIAAjAIAwYAKgpgQP8wDQYJKoZIhvcNAQELBQADggEBAJgCeA3u 2KZp+Q2HG17InuRcA1dhw1J1GzZidunPrKqZ24AayJQtmAhkEk5SPNRidAiOE9FB FL0qr+iYmewTlYb7lMTL6vWBPJGwQKQvwBUbBHInrI7YyyHURcg7JoasqTLgX6KT Hni5YX8qjo4QATCeTK9XuSdNTs0zzUXgbZEUKu6xKpbmDxxXm/B0K284ZiEfo/PO 0Novq1Heu3OfxiZacQyQ5GmC4ufj5uQ4J+J+P2XK2Ejba5JBlXbv7JTZ0Ur7T9PK +gltU07tFCHlhkxMtWjNO7Iycl7eWErGOBq4i7rh3usQ08iltHO6+fTDVeB++yDm bwbDv0ait9ZrPT0= -----END CERTIFICATE-----Generated at Sat Jul 5 03:44:52 2025 by rpki-client