$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208699.roa File: AS208699.roa (raw, json) Hash identifier: ICVdITUZIt8VcwIayV1up4zoNnUVA6ncXZg5Ns4LDvs= Subject key identifier: C8:E1:72:91:9B:23:A2:85:E5:D0:16:3E:C8:79:F3:B3:B3:95:A8:A9 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3D04131D7E9076A11A7B6ED091BCD982E88BAF53 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208699.roa Signing time: Sun 08 Jun 2025 08:46:34 +0000 ROA not before: Sun 08 Jun 2025 08:41:34 +0000 ROA not after: Sun 07 Jun 2026 08:46:34 +0000 asID: 208699 IP address blocks: 2a06:9f81:5500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 15 Jun 2025 20:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:04:13:1d:7e:90:76:a1:1a:7b:6e:d0:91:bc:d9:82:e8:8b:af:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 8 08:41:34 2025 GMT Not After : Jun 7 08:46:34 2026 GMT Subject: CN=C8E172919B23A285E5D0163EC879F3B3B395A8A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:df:38:55:9b:39:23:3c:d5:e9:dc:ff:20:88: 21:93:e8:bc:d5:ad:bf:6d:a5:68:c1:8e:e9:82:e8: 04:e3:3a:ae:d9:5c:8b:d4:e8:06:70:20:5b:bf:76: c2:41:95:80:46:ee:80:50:b4:bb:61:05:f7:2f:be: dc:7d:58:61:9c:4a:13:ea:1e:72:15:99:36:5e:7f: 7c:b6:35:00:1f:3f:0d:ca:e8:54:3b:66:5c:3c:66: 19:a6:e7:69:72:9e:07:8e:fb:31:28:5a:10:29:0f: 36:e2:45:18:11:4c:0c:8f:61:ef:eb:79:b9:ce:9f: b7:c1:c2:f8:19:94:60:64:5f:f3:ed:e9:e0:f7:34: d8:a8:7a:55:72:ce:bc:72:f3:2e:ba:dd:e9:04:a4: e4:b6:78:c3:ad:17:5e:33:76:03:cf:ed:cf:dd:24: b8:b5:cd:78:a1:a2:ff:1d:f8:d3:04:b6:6c:b5:b6: c8:62:79:14:b4:5f:27:a0:9a:5b:6b:60:ce:02:d0: 22:3f:c5:6f:d6:35:b1:93:e2:ba:02:df:19:6d:50: 4f:61:50:86:86:c8:dc:25:58:a9:43:26:80:f8:b5: 5c:eb:77:41:3b:52:50:56:b4:21:7c:ca:a1:23:0f: 03:91:19:2b:ea:c3:5f:55:f5:09:ee:55:6f:0f:a2: e1:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:E1:72:91:9B:23:A2:85:E5:D0:16:3E:C8:79:F3:B3:B3:95:A8:A9 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS208699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5500::/40 Signature Algorithm: sha256WithRSAEncryption 9c:b5:8a:e5:80:88:77:3f:ea:7b:94:4e:d6:58:a4:27:19:b2: 86:b2:41:1e:7f:69:04:24:ba:5b:3c:c4:8b:4d:86:26:59:35: b1:d0:87:2a:7e:58:af:09:12:85:46:f3:0d:14:63:6b:ea:3a: 21:16:cd:04:64:48:df:89:65:63:d7:52:42:60:d0:cf:c3:57: fb:cb:63:95:77:f6:79:64:62:63:55:d8:d5:12:e2:1a:b9:da: a0:75:76:84:9c:04:f6:a4:1c:49:c7:df:4e:9c:5a:b3:fc:73: 76:74:5b:06:d0:83:3c:c2:0e:d9:e6:08:69:a1:c2:d1:10:ea: c5:9b:51:e0:a4:83:88:4b:41:58:0b:2d:3e:6b:2a:e6:c3:ae: 25:1c:4f:31:7e:51:b1:47:c2:85:32:4c:f4:d7:77:f4:75:35: 35:8a:8b:be:eb:2b:b0:ec:b9:69:4e:c6:f9:0f:65:55:9e:e5: c0:de:68:71:8d:9d:b2:5a:41:94:36:12:23:91:35:bf:90:03: e2:96:e0:ac:62:2d:60:ec:b9:6b:86:19:f7:0b:34:f6:c4:d4: 71:79:59:53:aa:74:fb:1b:96:20:c1:6d:bd:94:5f:8a:41:bd: b8:07:da:6a:71:c8:10:12:d4:88:a2:77:4b:f9:7f:fe:29:80: e7:bd:ec:4e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPQQTHX6QdqEae27QkbzZguiLr1MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MDgwODQxMzRaFw0yNjA2MDcwODQ2MzRaMDMxMTAvBgNV BAMTKEM4RTE3MjkxOUIyM0EyODVFNUQwMTYzRUM4NzlGM0IzQjM5NUE4QTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq3zhVmzkjPNXp3P8giCGT6LzV rb9tpWjBjumC6ATjOq7ZXIvU6AZwIFu/dsJBlYBG7oBQtLthBfcvvtx9WGGcShPq HnIVmTZef3y2NQAfPw3K6FQ7Zlw8Zhmm52lyngeO+zEoWhApDzbiRRgRTAyPYe/r ebnOn7fBwvgZlGBkX/Pt6eD3NNioelVyzrxy8y663ekEpOS2eMOtF14zdgPP7c/d JLi1zXihov8d+NMEtmy1tshieRS0XyegmltrYM4C0CI/xW/WNbGT4roC3xltUE9h UIaGyNwlWKlDJoD4tVzrd0E7UlBWtCF8yqEjDwORGSvqw19V9QnuVW8PouFVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUyOFykZsjooXl0BY+yHnzs7OVqKkwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjA4Njk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVUwDQYJKoZIhvcNAQELBQADggEBAJy1 iuWAiHc/6nuUTtZYpCcZsoayQR5/aQQkuls8xItNhiZZNbHQhyp+WK8JEoVG8w0U Y2vqOiEWzQRkSN+JZWPXUkJg0M/DV/vLY5V39nlkYmNV2NUS4hq52qB1doScBPak HEnH306cWrP8c3Z0WwbQgzzCDtnmCGmhwtEQ6sWbUeCkg4hLQVgLLT5rKubDriUc TzF+UbFHwoUyTPTXd/R1NTWKi77rK7DsuWlOxvkPZVWe5cDeaHGNnbJaQZQ2EiOR Nb+QA+KW4KxiLWDsuWuGGfcLNPbE1HF5WVOqdPsbliDBbb2UX4pBvbgH2mpxyBAS 1Iiid0v5f/4pgOe97E4= -----END CERTIFICATE-----Generated at Sun Jun 15 11:50:37 2025 by rpki-client