$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS137409.roa File: AS137409.roa (raw, json) Hash identifier: NWlsDg0augOVRsgk5Ul6T/k+pbLf4osVgL+/RQT6Xc4= Subject key identifier: F2:19:46:31:9D:51:C0:C3:27:CE:E9:CE:5D:5A:80:A8:0A:E5:E9:0C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5BC6D5D5A0F9D939C209B45B1E08BD3592D4FC09 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS137409.roa Signing time: Fri 04 Jul 2025 06:53:14 +0000 ROA not before: Fri 04 Jul 2025 06:48:14 +0000 ROA not after: Fri 03 Jul 2026 06:53:14 +0000 asID: 137409 IP address blocks: 2a05:dfc1:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:c6:d5:d5:a0:f9:d9:39:c2:09:b4:5b:1e:08:bd:35:92:d4:fc:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:14 2025 GMT Not After : Jul 3 06:53:14 2026 GMT Subject: CN=F21946319D51C0C327CEE9CE5D5A80A80AE5E90C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ad:fb:b0:0d:1e:b7:fc:21:49:2f:08:63:26: 4a:6e:f7:7f:aa:17:27:c0:7e:3f:b9:b0:6b:aa:7d: 1b:a0:7b:fc:9b:c9:6b:09:5b:de:3d:5b:db:78:76: 27:41:85:03:2a:68:95:cb:d7:43:e1:64:b0:32:aa: 12:90:b4:66:4b:c9:1d:e0:15:70:cb:b8:2a:e8:9e: 83:2c:54:e8:82:0e:31:d5:9a:58:aa:14:46:f8:6a: a0:2d:b8:2d:ec:30:3c:bf:ee:29:1e:80:a9:39:0d: 1b:ec:b4:79:c2:09:c9:5b:32:ec:1e:e0:6d:d3:5c: ed:6b:ff:d9:44:84:da:e8:cd:8d:98:1a:23:e9:3a: ca:3f:af:c6:96:ae:00:38:3f:6e:f9:fb:bb:7e:06: a3:ef:c6:c2:3a:05:f8:78:47:83:a9:e8:d2:d2:e9: 9b:9d:6e:85:d3:94:ac:5c:ff:b5:fb:54:0a:52:be: e1:09:ce:1d:d6:64:ee:fb:c4:07:3f:64:fb:39:b3: be:5d:75:c5:18:eb:f6:c5:96:53:00:24:f0:cb:54: 1f:a3:4c:26:c4:66:f4:0e:b2:bf:cd:35:bd:06:f3: b6:ac:f4:40:a0:0d:21:d1:d8:7b:c2:76:8e:b1:80: 4a:f9:48:7b:a1:18:93:73:2f:69:31:d4:2b:41:2f: 5c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:19:46:31:9D:51:C0:C3:27:CE:E9:CE:5D:5A:80:A8:0A:E5:E9:0C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS137409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 2e:f4:3f:ba:c3:2e:11:57:3c:66:87:dd:c0:a3:db:f4:68:01: 85:ee:a5:70:7b:e6:f1:76:2d:87:39:34:27:05:d9:63:5d:72: 9f:2e:21:67:04:14:c1:94:80:13:b0:e9:6e:be:b1:be:28:8b: 0b:77:05:60:92:f3:e8:3f:8e:a2:36:df:87:59:63:4d:f6:a3: d2:93:15:db:c2:64:c0:91:ab:73:3d:05:03:5a:14:c0:f5:ef: cb:ad:e7:16:16:34:43:94:a1:98:cb:69:a4:50:cf:40:8d:f3: 9a:2d:f2:69:47:e6:c4:55:34:93:0d:87:1b:90:31:02:2d:1d: 2e:2c:28:da:a1:b0:86:27:14:8a:df:4a:72:4a:11:a9:96:95: a7:af:fa:e5:6c:ee:01:36:c5:91:00:01:10:19:f0:e6:84:28: 51:02:49:4c:02:6f:45:cf:23:43:e4:f4:a8:fc:be:4f:4a:e4: 72:1c:cf:6d:31:bc:5f:a4:b2:c3:e7:58:0f:9e:08:c8:1d:00: 3f:6e:78:c2:07:64:5e:15:37:18:5c:1a:9e:7b:68:74:6e:02: af:00:02:43:84:99:36:14:ad:2b:3f:37:04:99:c7:4c:aa:2e: a0:1c:58:01:50:54:ea:81:c5:35:35:1c:4b:e1:14:1a:b5:05: 3b:56:31:7d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUW8bV1aD52TnCCbRbHgi9NZLU/AkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTRaFw0yNjA3MDMwNjUzMTRaMDMxMTAvBgNV BAMTKEYyMTk0NjMxOUQ1MUMwQzMyN0NFRTlDRTVENUE4MEE4MEFFNUU5MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDirfuwDR63/CFJLwhjJkpu93+q FyfAfj+5sGuqfRuge/ybyWsJW949W9t4didBhQMqaJXL10PhZLAyqhKQtGZLyR3g FXDLuCronoMsVOiCDjHVmliqFEb4aqAtuC3sMDy/7ikegKk5DRvstHnCCclbMuwe 4G3TXO1r/9lEhNrozY2YGiPpOso/r8aWrgA4P275+7t+BqPvxsI6Bfh4R4Op6NLS 6ZudboXTlKxc/7X7VApSvuEJzh3WZO77xAc/ZPs5s75ddcUY6/bFllMAJPDLVB+j TCbEZvQOsr/NNb0G87as9ECgDSHR2HvCdo6xgEr5SHuhGJNzL2kx1CtBL1wjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8hlGMZ1RwMMnzunOXVqAqArl6QwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM3NDA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZowDQYJKoZIhvcNAQELBQADggEBAC70 P7rDLhFXPGaH3cCj2/RoAYXupXB75vF2LYc5NCcF2WNdcp8uIWcEFMGUgBOw6W6+ sb4oiwt3BWCS8+g/jqI234dZY032o9KTFdvCZMCRq3M9BQNaFMD178ut5xYWNEOU oZjLaaRQz0CN85ot8mlH5sRVNJMNhxuQMQItHS4sKNqhsIYnFIrfSnJKEamWlaev +uVs7gE2xZEAARAZ8OaEKFECSUwCb0XPI0Pk9Kj8vk9K5HIcz20xvF+kssPnWA+e CMgdAD9ueMIHZF4VNxhcGp57aHRuAq8AAkOEmTYUrSs/NwSZx0yqLqAcWAFQVOqB xTU1HEvhFBq1BTtWMX0= -----END CERTIFICATE-----Generated at Wed Nov 5 20:32:36 2025 by rpki-client