$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa File: AS203470.roa (raw, json) Hash identifier: ja7+kWI2I9CpsL7rWTysxyA4UYo0j6QjYE2MKUBPVG0= Subject key identifier: 42:65:C4:57:C3:82:B0:5E:2C:56:40:E3:7A:D0:8C:1E:42:AF:B0:B4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 718F8A0E288CDD0365E03EF1F7B13AEB7C353B4F Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa Signing time: Thu 12 Jun 2025 23:46:35 +0000 ROA not before: Thu 12 Jun 2025 23:41:35 +0000 ROA not after: Thu 11 Jun 2026 23:46:35 +0000 asID: 203470 IP address blocks: 2a05:dfc1:8400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 16 Jun 2025 08:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:8f:8a:0e:28:8c:dd:03:65:e0:3e:f1:f7:b1:3a:eb:7c:35:3b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 12 23:41:35 2025 GMT Not After : Jun 11 23:46:35 2026 GMT Subject: CN=4265C457C382B05E2C5640E37AD08C1E42AFB0B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8f:c5:6d:8d:9b:37:b8:de:4c:fe:4e:75:17: ae:e0:b8:24:de:d7:50:dc:be:44:76:77:ca:d9:ba: a3:2d:64:68:36:fc:c9:40:92:46:9a:5e:11:89:f3: 80:cb:6e:1b:0a:46:b2:9a:75:0c:d5:7b:bc:d0:43: b8:53:11:05:57:0c:5f:42:b6:20:6d:84:a3:3e:1d: 2c:ef:06:f8:1e:f3:0b:83:42:8f:dd:cd:76:81:80: 41:fa:66:8e:0e:ac:14:dc:dd:c2:f5:21:a3:59:aa: 10:94:bc:c1:76:72:87:a1:6c:f5:1b:d0:60:9f:39: 5d:af:b5:23:6d:bd:89:ee:25:7d:ce:04:18:48:40: 3c:8d:21:d7:ca:01:b2:83:60:a0:99:f0:6d:21:de: 8f:af:99:b2:98:32:1d:d6:58:bb:bb:65:5c:6c:76: 04:1c:5c:da:cb:b4:27:33:fd:1d:36:73:7d:80:6f: 45:3e:d1:4f:62:23:6f:4b:e7:a5:79:5b:af:f8:b7: ea:5b:ce:94:75:91:ea:41:60:5d:4b:81:31:c5:44: 34:54:c4:33:aa:f2:da:9f:e2:d5:0d:76:ab:50:d8: db:99:ba:b6:e1:44:ca:80:f1:9f:28:ca:01:2d:e6: 35:38:fd:b3:e6:51:05:69:08:d6:d7:da:76:52:73: e6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:65:C4:57:C3:82:B0:5E:2C:56:40:E3:7A:D0:8C:1E:42:AF:B0:B4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8400::/40 Signature Algorithm: sha256WithRSAEncryption 08:c8:fb:e3:b5:60:6c:59:57:c7:4a:6a:8d:36:64:25:96:c2: 06:fb:2e:b3:dd:51:0f:58:e1:18:3d:9c:c4:ea:5c:c6:85:ad: 8a:29:27:5c:56:aa:28:c0:1b:e0:e0:61:93:07:97:db:53:bd: c5:65:e6:b2:ad:6c:42:a2:86:19:0d:a0:45:86:2d:74:33:43: 63:a4:9d:33:aa:27:18:40:1e:14:67:12:4e:17:28:75:ca:11: 15:ae:a5:c0:9e:d6:83:f8:e5:47:bb:d6:7d:ed:12:b8:20:96: 6d:39:7a:e1:4e:f9:2a:24:b9:fa:5b:49:f9:44:b2:01:c4:a6: 84:c0:45:6e:30:b2:f2:d8:fe:2e:dd:0b:b1:1d:07:b4:9e:ea: 71:ab:40:9c:06:13:1e:4a:67:c3:0e:93:3d:15:8d:bf:61:69: 94:7c:b5:8a:ee:f9:55:6c:06:b4:1e:9b:54:71:16:0b:bb:cd: d1:b9:f1:4d:d2:5f:ca:f4:79:5c:ec:02:01:ff:d3:2d:bb:6c: 64:75:75:70:64:b2:98:fe:01:f9:52:cc:1f:97:6c:b6:2c:32: d4:2c:ec:7a:2c:9f:86:12:75:cf:29:f5:80:db:22:d8:c4:b1: 3d:e1:05:96:27:0a:bb:06:e2:d4:8d:cc:81:29:61:78:4b:55: e2:db:7f:8e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcY+KDiiM3QNl4D7x97E663w1O08wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MTIyMzQxMzVaFw0yNjA2MTEyMzQ2MzVaMDMxMTAvBgNV BAMTKDQyNjVDNDU3QzM4MkIwNUUyQzU2NDBFMzdBRDA4QzFFNDJBRkIwQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1j8VtjZs3uN5M/k51F67guCTe 11DcvkR2d8rZuqMtZGg2/MlAkkaaXhGJ84DLbhsKRrKadQzVe7zQQ7hTEQVXDF9C tiBthKM+HSzvBvge8wuDQo/dzXaBgEH6Zo4OrBTc3cL1IaNZqhCUvMF2coehbPUb 0GCfOV2vtSNtvYnuJX3OBBhIQDyNIdfKAbKDYKCZ8G0h3o+vmbKYMh3WWLu7ZVxs dgQcXNrLtCcz/R02c32Ab0U+0U9iI29L56V5W6/4t+pbzpR1kepBYF1LgTHFRDRU xDOq8tqf4tUNdqtQ2NuZurbhRMqA8Z8oygEt5jU4/bPmUQVpCNbX2nZSc+Y/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQmXEV8OCsF4sVkDjetCMHkKvsLQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjAzNDcwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYQwDQYJKoZIhvcNAQELBQADggEBAAjI ++O1YGxZV8dKao02ZCWWwgb7LrPdUQ9Y4Rg9nMTqXMaFrYopJ1xWqijAG+DgYZMH l9tTvcVl5rKtbEKihhkNoEWGLXQzQ2OknTOqJxhAHhRnEk4XKHXKERWupcCe1oP4 5Ue71n3tErgglm05euFO+SokufpbSflEsgHEpoTARW4wsvLY/i7dC7EdB7Se6nGr QJwGEx5KZ8MOkz0Vjb9haZR8tYru+VVsBrQem1RxFgu7zdG58U3SX8r0eVzsAgH/ 0y27bGR1dXBkspj+AflSzB+XbLYsMtQs7Hosn4YSdc8p9YDbItjEsT3hBZYnCrsG 4tSNzIEpYXhLVeLbf44= -----END CERTIFICATE-----Generated at Sun Jun 15 23:53:14 2025 by rpki-client