$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139311.roa File: AS139311.roa (raw, json) Hash identifier: 5b6AMTDzQkANrhgWTj067AlGfGqdprWZNKG8UFJRqro= Subject key identifier: F2:F6:6F:05:F3:CD:77:0C:D8:76:9B:91:1E:94:9F:22:3B:BA:79:AD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7F972453970E885DE5D0C81B2B14F0E750B6B886 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139311.roa Signing time: Fri 05 Jun 2026 07:12:33 +0000 ROA not before: Fri 05 Jun 2026 07:07:33 +0000 ROA not after: Fri 04 Jun 2027 07:12:33 +0000 asID: 139311 IP address blocks: 2a06:9f81:5200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:97:24:53:97:0e:88:5d:e5:d0:c8:1b:2b:14:f0:e7:50:b6:b8:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:33 2026 GMT Not After : Jun 4 07:12:33 2027 GMT Subject: CN=F2F66F05F3CD770CD8769B911E949F223BBA79AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c9:bb:a8:30:2e:4b:59:78:24:22:70:93:bb: f9:7a:b1:64:3b:83:e1:cf:46:40:62:c2:e4:51:39: 1f:e6:be:f2:4e:75:76:7f:3e:de:32:74:7a:0d:fd: b5:ab:e6:86:42:c7:a1:e2:8a:3f:78:54:91:66:32: 07:6b:c9:64:af:0f:bd:8a:8d:a9:82:d3:7e:72:86: f3:ec:0f:48:bf:04:e7:33:c6:6b:73:fd:70:d3:e0: f9:7f:d3:62:55:68:f8:e4:4c:89:6b:c3:5a:09:e2: 9b:4a:96:d4:67:e7:61:db:29:50:a3:c5:15:ef:69: 12:e2:25:b5:8d:77:87:94:c2:6e:c5:41:23:da:5a: c5:93:a0:f6:c8:8f:61:9e:8c:5c:84:a2:d9:85:6b: 29:86:24:d3:60:76:7b:58:9d:08:60:62:8a:dd:f9: 51:a1:2b:4d:6d:ad:35:e8:fa:51:f1:88:d5:12:e6: c5:d0:22:49:5d:2f:6f:e2:c6:d3:eb:6f:44:e1:79: ad:9e:7f:aa:51:36:4f:70:ac:96:b4:49:c5:1a:75: 2e:2a:c9:cf:54:26:e5:b1:cc:92:91:f8:08:80:4c: 7b:45:2e:b6:cb:df:67:33:58:35:35:61:89:18:19: 0c:8c:eb:c2:d5:97:c1:72:60:5a:58:18:e8:26:22: 9b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F6:6F:05:F3:CD:77:0C:D8:76:9B:91:1E:94:9F:22:3B:BA:79:AD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139311.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5200::/40 Signature Algorithm: sha256WithRSAEncryption b3:e6:59:2b:4c:48:09:0f:d5:ec:d0:91:e8:df:ef:b7:83:90: 61:df:6c:e1:a3:0e:64:92:31:5a:02:3e:10:1d:0b:83:39:66: 00:a2:a3:06:a4:68:35:69:04:3b:67:d5:88:15:41:7c:b7:1d: ec:de:25:94:18:97:5c:d4:5c:ca:e7:5d:c3:34:73:84:02:2a: 07:de:c6:88:24:21:30:76:7b:f9:74:a4:e8:d7:04:c9:31:ee: 8a:ff:ff:bf:ba:ca:1a:de:cf:af:47:31:66:65:34:bb:7e:9e: 76:1a:4c:9f:39:f2:94:cc:08:73:0e:e5:80:1e:3e:57:e9:14: ec:22:d7:01:12:5b:08:2c:9e:53:3a:80:60:4f:b4:85:cf:f5: cd:86:f4:67:4f:8f:d3:df:4d:6a:4d:a4:be:ac:98:69:12:4c: 2f:46:41:4c:9d:2d:c5:d1:06:96:28:86:6e:8b:d9:83:dd:bb: 80:c6:a7:b4:a4:65:16:67:fe:23:c2:b2:48:66:d5:fc:99:8d: 92:65:7b:b0:fd:65:cc:8d:f7:4b:58:72:d8:c2:12:61:53:47: 53:f0:bc:09:79:a9:1c:e1:15:8d:79:5c:e6:3e:d8:24:40:39: 84:98:dc:39:90:de:f2:f7:cb:f9:3f:37:99:6a:9e:31:51:e9: 59:1c:34:93 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUf5ckU5cOiF3l0MgbKxTw51C2uIYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzNaFw0yNzA2MDQwNzEyMzNaMDMxMTAvBgNV BAMTKEYyRjY2RjA1RjNDRDc3MENEODc2OUI5MTFFOTQ5RjIyM0JCQTc5QUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxybuoMC5LWXgkInCTu/l6sWQ7 g+HPRkBiwuRROR/mvvJOdXZ/Pt4ydHoN/bWr5oZCx6Hiij94VJFmMgdryWSvD72K jamC035yhvPsD0i/BOczxmtz/XDT4Pl/02JVaPjkTIlrw1oJ4ptKltRn52HbKVCj xRXvaRLiJbWNd4eUwm7FQSPaWsWToPbIj2GejFyEotmFaymGJNNgdntYnQhgYord +VGhK01trTXo+lHxiNUS5sXQIkldL2/ixtPrb0Thea2ef6pRNk9wrJa0ScUadS4q yc9UJuWxzJKR+AiATHtFLrbL32czWDU1YYkYGQyM68LVl8FyYFpYGOgmIpv9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8vZvBfPNdwzYdpuRHpSfIju6ea0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM5MzExLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVIwDQYJKoZIhvcNAQELBQADggEBALPm WStMSAkP1ezQkejf77eDkGHfbOGjDmSSMVoCPhAdC4M5ZgCiowakaDVpBDtn1YgV QXy3HezeJZQYl1zUXMrnXcM0c4QCKgfexogkITB2e/l0pOjXBMkx7or//7+6yhre z69HMWZlNLt+nnYaTJ858pTMCHMO5YAePlfpFOwi1wESWwgsnlM6gGBPtIXP9c2G 9GdPj9PfTWpNpL6smGkSTC9GQUydLcXRBpYohm6L2YPdu4DGp7SkZRZn/iPCskhm 1fyZjZJle7D9ZcyN90tYctjCEmFTR1PwvAl5qRzhFY15XOY+2CRAOYSY3DmQ3vL3 y/k/N5lqnjFR6VkcNJM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:01 2026 by rpki-client