$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS137409.roa File: AS137409.roa (raw, json) Hash identifier: tUq6usWUU1T52+Y12P/a5O3QIJNd014bx4tBGgj6TPI= Subject key identifier: 93:A9:E8:0A:4E:CE:5B:09:E1:0A:0D:D4:D4:55:CF:67:EC:D9:5A:AC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 20A9D3262A5E5E3EF21FB90BF190B3B01B43A92A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS137409.roa Signing time: Fri 05 Jun 2026 07:12:21 +0000 ROA not before: Fri 05 Jun 2026 07:07:21 +0000 ROA not after: Fri 04 Jun 2027 07:12:21 +0000 asID: 137409 IP address blocks: 2a05:dfc1:9a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:a9:d3:26:2a:5e:5e:3e:f2:1f:b9:0b:f1:90:b3:b0:1b:43:a9:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:21 2026 GMT Not After : Jun 4 07:12:21 2027 GMT Subject: CN=93A9E80A4ECE5B09E10A0DD4D455CF67ECD95AAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e9:03:7d:e3:40:53:78:39:c0:0b:97:36:bd: df:c4:da:2a:30:40:39:a0:dc:a7:51:e6:ee:5f:60: c3:70:35:25:9e:36:26:98:43:ad:bb:06:7c:fb:73: 33:6d:15:f6:37:14:e3:6c:18:07:27:9c:14:bf:77: 67:6e:bc:8f:b1:4a:70:27:6f:93:2e:6b:86:49:d6: aa:04:a5:38:ff:f7:49:13:36:e3:fc:b7:e3:cc:2b: b9:ed:09:57:93:46:ec:dd:88:0b:a7:37:89:12:05: c6:5e:39:c4:64:58:6e:92:5e:a3:c4:bb:85:bf:b6: ef:57:90:15:a2:de:42:85:13:cb:29:25:c8:94:e2: ac:9b:a2:81:5b:a4:fd:1d:15:91:0c:c0:a4:c6:df: 97:01:98:29:50:c4:20:0d:d1:81:12:ee:8c:71:68: 77:12:85:ad:54:47:f8:80:88:55:eb:f0:36:1a:40: 87:05:54:75:8b:aa:98:9d:78:b9:fc:d9:b0:88:b1: 28:fc:d2:30:0c:bf:4d:48:19:9d:14:18:46:8a:f2: 2c:af:aa:ed:fb:e1:15:64:28:35:26:70:b1:e6:75: df:1c:73:6e:29:48:ca:ff:39:98:05:2c:ff:2e:e0: b9:52:b0:84:b4:bc:6b:a6:1f:60:5a:33:3a:20:1e: e5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A9:E8:0A:4E:CE:5B:09:E1:0A:0D:D4:D4:55:CF:67:EC:D9:5A:AC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS137409.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:9a00::/40 Signature Algorithm: sha256WithRSAEncryption 3c:44:70:82:3b:c4:d0:6c:19:66:49:32:df:be:26:d1:e1:2f: 79:d1:69:b0:9b:6c:80:e1:e6:2d:68:48:12:53:e8:0f:12:5b: 96:89:33:eb:7c:4c:05:ce:cc:f9:1e:c8:87:45:5e:01:b6:32: 31:15:06:e3:81:37:bf:71:ce:04:4d:0d:b2:b2:6b:9b:9c:e3: a4:5e:bd:a1:85:4f:d7:fe:64:8b:e7:f0:10:11:79:ba:8a:1b: 20:68:21:89:39:4e:14:a7:e4:a4:47:bb:42:be:9a:ba:bc:fa: 36:cc:8b:9b:f8:42:86:87:71:90:90:48:cf:4f:f2:2b:33:5e: 93:b5:dc:a1:a2:54:4a:ee:03:b0:8d:98:46:cf:fb:ae:e5:91: ee:bb:bb:64:ab:4d:fb:ad:34:56:c5:f9:ff:79:ec:57:0f:dc: 6c:c3:82:de:04:21:28:c8:8c:cf:17:b0:91:4a:0f:dd:c3:c0: a4:fc:c5:04:25:74:55:5a:5a:b7:f6:1e:98:45:fe:6b:d3:ba: 84:42:ef:e7:e7:ef:56:80:36:74:88:94:06:72:b4:77:b3:36: 48:5f:1c:16:d8:e8:32:5a:5d:2d:d0:dc:08:eb:44:47:83:04: 5c:d1:1c:b8:55:8d:4e:ab:a7:65:e3:1f:91:fa:26:26:be:e0: 99:91:ac:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIKnTJipeXj7yH7kL8ZCzsBtDqSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjFaFw0yNzA2MDQwNzEyMjFaMDMxMTAvBgNV BAMTKDkzQTlFODBBNEVDRTVCMDlFMTBBMERENEQ0NTVDRjY3RUNEOTVBQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr6QN940BTeDnAC5c2vd/E2iow QDmg3KdR5u5fYMNwNSWeNiaYQ627Bnz7czNtFfY3FONsGAcnnBS/d2duvI+xSnAn b5Mua4ZJ1qoEpTj/90kTNuP8t+PMK7ntCVeTRuzdiAunN4kSBcZeOcRkWG6SXqPE u4W/tu9XkBWi3kKFE8spJciU4qybooFbpP0dFZEMwKTG35cBmClQxCAN0YES7oxx aHcSha1UR/iAiFXr8DYaQIcFVHWLqpideLn82bCIsSj80jAMv01IGZ0UGEaK8iyv qu374RVkKDUmcLHmdd8cc24pSMr/OZgFLP8u4LlSsIS0vGumH2BaMzogHuUlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUk6noCk7OWwnhCg3U1FXPZ+zZWqwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM3NDA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwZowDQYJKoZIhvcNAQELBQADggEBADxE cII7xNBsGWZJMt++JtHhL3nRabCbbIDh5i1oSBJT6A8SW5aJM+t8TAXOzPkeyIdF XgG2MjEVBuOBN79xzgRNDbKya5uc46RevaGFT9f+ZIvn8BARebqKGyBoIYk5ThSn 5KRHu0K+mrq8+jbMi5v4QoaHcZCQSM9P8iszXpO13KGiVEruA7CNmEbP+67lke67 u2SrTfutNFbF+f957FcP3GzDgt4EISjIjM8XsJFKD93DwKT8xQQldFVaWrf2HphF /mvTuoRC7+fn71aANnSIlAZytHezNkhfHBbY6DJaXS3Q3AjrREeDBFzRHLhVjU6r p2XjH5H6Jia+4JmRrK0= -----END CERTIFICATE-----Generated at Sat Jun 13 05:38:53 2026 by rpki-client