$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139328.roa File: AS139328.roa (raw, json) Hash identifier: saflpQ/W3fEHleL/XP97rnol3mdLEW6P+xlLuWKfbho= Subject key identifier: B3:41:D9:6C:A5:D3:E5:1C:2C:2D:40:A7:FE:28:C9:A7:AD:BE:88:EA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 47376779F6AE3853753787A6C93F5B81D64A56FB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139328.roa Signing time: Fri 05 Jun 2026 07:12:20 +0000 ROA not before: Fri 05 Jun 2026 07:07:20 +0000 ROA not after: Fri 04 Jun 2027 07:12:20 +0000 asID: 139328 IP address blocks: 2a0a:6040:7e40::/44 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:37:67:79:f6:ae:38:53:75:37:87:a6:c9:3f:5b:81:d6:4a:56:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:20 2026 GMT Not After : Jun 4 07:12:20 2027 GMT Subject: CN=B341D96CA5D3E51C2C2D40A7FE28C9A7ADBE88EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:47:77:50:eb:7a:8c:60:85:56:31:ff:d5:8a: 55:7a:8f:44:3c:6f:ff:72:16:1b:40:7e:c1:3b:dd: 96:95:c1:35:d6:69:43:ad:a4:e3:af:ad:9e:15:45: 62:1f:e8:ef:49:38:99:78:d4:79:85:d7:5b:56:af: 35:b0:18:97:2a:d5:59:ae:97:e6:d6:58:96:91:c1: ae:d3:50:7a:74:43:b5:24:10:bc:f0:91:b6:cf:02: fe:6d:c0:2d:99:0f:ff:45:60:33:4d:22:81:6f:c6: 45:10:85:a9:e2:a4:d5:1b:4d:d3:33:96:7e:ba:66: 4d:37:04:34:63:29:2d:8e:b7:ac:b8:2c:67:f6:3d: 43:50:6d:a4:06:4c:04:91:29:69:96:06:a5:70:e7: 31:b6:72:b1:18:02:fc:63:7e:66:17:30:0f:f8:a4: 6f:fd:67:f4:d6:59:d5:93:c4:e9:5d:e8:04:50:95: e8:68:d1:bc:02:02:56:ca:c2:41:48:26:51:98:51: 85:fd:2b:f9:d6:1e:03:f9:d6:e7:3f:57:4f:93:3c: 30:c2:48:24:b8:f8:3b:2e:2f:be:00:31:c8:bb:de: 43:14:e9:5a:84:4e:44:2c:f8:82:13:21:e7:e6:ba: 93:04:a1:8a:0f:cf:f8:35:f9:4e:dd:7b:b5:36:84: 4e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:41:D9:6C:A5:D3:E5:1C:2C:2D:40:A7:FE:28:C9:A7:AD:BE:88:EA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS139328.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e40::/44 Signature Algorithm: sha256WithRSAEncryption 05:dc:f5:5f:3a:d4:d2:36:a2:6a:6a:75:35:f2:78:66:cf:6e: 62:ac:7c:f6:cd:47:02:03:03:fa:39:1a:f8:f8:20:d0:47:2f: 30:e2:e2:80:c7:ad:53:40:56:56:98:b6:ce:97:3d:4c:6e:96: a4:c2:1e:81:38:2b:08:a5:14:bd:b9:ec:2b:00:be:b1:38:9a: 5d:26:7c:e8:6b:16:7f:0c:0a:a7:cb:c5:63:03:be:3a:26:6a: 4d:85:79:84:e7:9a:13:42:59:1e:fc:8d:18:a7:68:68:a9:61: 6c:e1:15:29:9b:53:fd:65:1b:8e:f3:ab:13:7c:33:8b:2a:f9: f7:4e:1d:46:19:5e:ad:14:16:fd:7f:6b:00:f8:0a:39:39:a9: 3e:e1:fd:29:86:9d:ff:0d:59:29:32:d6:b9:10:a5:a1:87:30: fb:96:b3:78:12:89:ad:3a:87:1d:58:dc:09:ad:2a:96:4d:ad: 5e:23:9d:68:e3:1c:fb:48:1e:60:42:75:31:76:8c:d1:3f:30: 0f:5e:93:9f:f2:f2:0f:7d:14:4d:c0:b4:62:3b:10:8b:e4:fc: 78:cc:e5:37:ab:39:fd:f7:5d:e0:5e:3c:e6:10:23:64:1d:c0: 8b:2f:35:ff:f2:0f:e1:ba:18:78:62:7f:f5:22:95:2f:ce:b0: 98:4b:68:7b -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgIURzdnefauOFN1N4emyT9bgdZKVvswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjBaFw0yNzA2MDQwNzEyMjBaMDMxMTAvBgNV BAMTKEIzNDFEOTZDQTVEM0U1MUMyQzJENDBBN0ZFMjhDOUE3QURCRTg4RUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3R3dQ63qMYIVWMf/VilV6j0Q8 b/9yFhtAfsE73ZaVwTXWaUOtpOOvrZ4VRWIf6O9JOJl41HmF11tWrzWwGJcq1Vmu l+bWWJaRwa7TUHp0Q7UkELzwkbbPAv5twC2ZD/9FYDNNIoFvxkUQhanipNUbTdMz ln66Zk03BDRjKS2Ot6y4LGf2PUNQbaQGTASRKWmWBqVw5zG2crEYAvxjfmYXMA/4 pG/9Z/TWWdWTxOld6ARQleho0bwCAlbKwkFIJlGYUYX9K/nWHgP51uc/V0+TPDDC SCS4+DsuL74AMci73kMU6VqETkQs+IITIefmupMEoYoPz/g1+U7de7U2hE5tAgMB AAGjggH1MIIB8TAdBgNVHQ4EFgQUs0HZbKXT5RwsLUCn/ijJp62+iOowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTM5MzI4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcEKgpgQH5AMA0GCSqGSIb3DQEBCwUAA4IBAQAF 3PVfOtTSNqJqanU18nhmz25irHz2zUcCAwP6ORr4+CDQRy8w4uKAx61TQFZWmLbO lz1Mbpakwh6BOCsIpRS9uewrAL6xOJpdJnzoaxZ/DAqny8VjA746JmpNhXmE55oT Qlke/I0Yp2hoqWFs4RUpm1P9ZRuO86sTfDOLKvn3Th1GGV6tFBb9f2sA+Ao5Oak+ 4f0php3/DVkpMta5EKWhhzD7lrN4EomtOocdWNwJrSqWTa1eI51o4xz7SB5gQnUx dozRPzAPXpOf8vIPfRRNwLRiOxCL5Px4zOU3qzn9913gXjzmECNkHcCLLzX/8g/h uhh4Yn/1IpUvzrCYS2h7 -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:03 2026 by rpki-client