$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134478.roa File: AS134478.roa (raw, json) Hash identifier: YOqST1LDfFU34prEKeUti6oCFUlZR952etkbn4nfLuA= Subject key identifier: 45:7C:5E:4F:42:7F:C1:9C:3D:21:0A:C3:E4:83:14:B1:D3:CF:5C:20 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5CB3B1DAF3C9DC7DB305B71EF7CC3C9A310C29CC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134478.roa Signing time: Fri 05 Jun 2026 07:12:32 +0000 ROA not before: Fri 05 Jun 2026 07:07:32 +0000 ROA not after: Fri 04 Jun 2027 07:12:32 +0000 asID: 134478 IP address blocks: 2a0a:6040:7e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b3:b1:da:f3:c9:dc:7d:b3:05:b7:1e:f7:cc:3c:9a:31:0c:29:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:32 2026 GMT Not After : Jun 4 07:12:32 2027 GMT Subject: CN=457C5E4F427FC19C3D210AC3E48314B1D3CF5C20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:74:45:ce:dc:9c:6c:2d:0f:64:1d:4b:2f:95: b1:60:c7:16:fd:65:b9:32:f3:2f:77:21:6c:95:0d: 07:4a:b6:ab:ae:b6:08:1b:6c:1c:db:bb:5a:3e:3f: 82:29:23:d8:04:eb:bc:fa:53:5d:12:fd:f1:dd:62: 66:59:3e:bc:6e:05:5e:1b:ab:20:6a:57:3a:b9:2a: e6:0d:f1:b6:09:53:66:2a:66:d2:a9:d0:da:13:9b: ba:dd:a5:16:7e:31:d3:35:24:0f:f5:a1:a6:b4:fd: f2:3f:93:c3:f7:35:02:86:c5:a1:5a:a2:a4:95:21: 43:a1:63:ac:fa:8f:eb:ab:a6:bd:fe:23:49:be:f4: 1c:bc:78:dd:d9:b8:d1:82:c7:25:e7:9e:c5:12:6b: 89:c9:05:42:3a:75:74:47:a1:51:a8:4b:07:6b:05: 6c:21:58:74:e0:5f:fb:c3:49:70:e8:80:f3:6b:ed: 1d:b0:35:f1:b2:f4:af:65:80:11:bf:94:63:28:1f: 1e:64:14:f3:9c:0a:14:e0:83:ed:a2:96:13:1f:0f: 3d:32:2d:3a:b8:94:42:35:fa:54:02:83:f7:c8:6f: 8b:14:26:c4:78:c4:f0:e8:bb:8d:63:55:2c:3c:3a: 90:8e:86:b9:ba:4c:0c:27:6f:a5:c6:39:83:22:07: 43:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:7C:5E:4F:42:7F:C1:9C:3D:21:0A:C3:E4:83:14:B1:D3:CF:5C:20 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS134478.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e00::/40 Signature Algorithm: sha256WithRSAEncryption 1d:43:94:c2:82:6c:a9:d3:53:26:53:36:8f:f5:95:86:4a:40: 22:e8:8e:15:28:b6:85:78:af:be:e0:9e:55:4a:8b:b4:5d:96: e2:26:38:4a:3c:03:72:19:0c:40:8b:7b:1e:70:1a:7d:ef:dd: c7:63:07:41:d8:0f:55:85:4c:79:ee:33:d6:74:8c:d0:5b:d3: aa:ed:c0:44:5c:cb:3f:7a:53:df:8b:53:22:be:22:1d:6d:30: d6:51:8a:df:9c:18:0f:4b:53:52:c8:55:5f:66:87:6b:f0:3c: d8:87:09:48:95:4d:a0:6b:36:36:1b:12:8a:bf:5c:31:dc:a7: 4d:3a:26:94:4f:ad:34:6e:1a:e1:e2:53:ad:58:72:e7:46:db: fb:78:f0:54:96:43:82:42:47:99:7c:0d:4a:27:5b:7c:01:b5: 35:71:59:17:b7:26:b3:59:9c:03:39:ef:89:a4:11:49:46:82: 10:dd:3c:db:63:4d:6a:d7:ab:a3:65:61:b6:04:4c:1a:7a:67: d7:8c:d0:2b:2c:66:19:86:3a:db:cf:cb:25:f2:7f:f4:3c:db: 90:b0:eb:e0:ad:ce:e4:5b:5a:ca:25:4b:be:63:41:bd:c0:c2: 5c:5a:3a:a5:ea:f9:4a:b9:fd:cf:36:39:d4:4e:71:3c:8c:ab: 97:d8:35:93 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXLOx2vPJ3H2zBbce98w8mjEMKcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzJaFw0yNzA2MDQwNzEyMzJaMDMxMTAvBgNV BAMTKDQ1N0M1RTRGNDI3RkMxOUMzRDIxMEFDM0U0ODMxNEIxRDNDRjVDMjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCodEXO3JxsLQ9kHUsvlbFgxxb9 Zbky8y93IWyVDQdKtquutggbbBzbu1o+P4IpI9gE67z6U10S/fHdYmZZPrxuBV4b qyBqVzq5KuYN8bYJU2YqZtKp0NoTm7rdpRZ+MdM1JA/1oaa0/fI/k8P3NQKGxaFa oqSVIUOhY6z6j+urpr3+I0m+9By8eN3ZuNGCxyXnnsUSa4nJBUI6dXRHoVGoSwdr BWwhWHTgX/vDSXDogPNr7R2wNfGy9K9lgBG/lGMoHx5kFPOcChTgg+2ilhMfDz0y LTq4lEI1+lQCg/fIb4sUJsR4xPDou41jVSw8OpCOhrm6TAwnb6XGOYMiB0OBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURXxeT0J/wZw9IQrD5IMUsdPPXCAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM0NDc4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQH4wDQYJKoZIhvcNAQELBQADggEBAB1D lMKCbKnTUyZTNo/1lYZKQCLojhUotoV4r77gnlVKi7RdluImOEo8A3IZDECLex5w Gn3v3cdjB0HYD1WFTHnuM9Z0jNBb06rtwERcyz96U9+LUyK+Ih1tMNZRit+cGA9L U1LIVV9mh2vwPNiHCUiVTaBrNjYbEoq/XDHcp006JpRPrTRuGuHiU61YcudG2/t4 8FSWQ4JCR5l8DUonW3wBtTVxWRe3JrNZnAM574mkEUlGghDdPNtjTWrXq6NlYbYE TBp6Z9eM0CssZhmGOtvPyyXyf/Q825Cw6+CtzuRbWsolS75jQb3AwlxaOqXq+Uq5 /c82OdROcTyMq5fYNZM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:07 2026 by rpki-client