$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS150787.roa File: AS150787.roa (raw, json) Hash identifier: yHHnYZ+D+isAcID6C4L+tXGGadFUMUVfMnkpVOU4Mjo= Subject key identifier: E4:CF:C4:3E:25:63:67:21:B0:B7:38:2F:03:46:B4:34:13:B1:34:95 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0974D374862EF7A57809990D52FFE0A8877B9B08 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS150787.roa Signing time: Fri 05 Jun 2026 07:12:17 +0000 ROA not before: Fri 05 Jun 2026 07:07:17 +0000 ROA not after: Fri 04 Jun 2027 07:12:17 +0000 asID: 150787 IP address blocks: 2a06:9f81:5300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:74:d3:74:86:2e:f7:a5:78:09:99:0d:52:ff:e0:a8:87:7b:9b:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:17 2026 GMT Not After : Jun 4 07:12:17 2027 GMT Subject: CN=E4CFC43E25636721B0B7382F0346B43413B13495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:12:5b:48:1b:59:6e:a2:ed:a5:82:9f:de:a5: 82:d6:b3:0e:c1:3f:1c:03:d5:71:7a:43:a9:60:ff: d0:48:a9:bd:13:21:9d:67:52:eb:fe:16:1f:7a:3e: 0e:c0:08:36:af:f3:e8:79:8d:a5:e5:22:9c:e1:58: 26:01:e8:2c:b0:a8:61:01:27:e5:d5:77:38:98:08: d4:eb:e3:1d:1e:66:6f:40:c5:16:be:8e:e7:f4:1b: fa:37:a1:73:8f:8b:0f:81:b4:5d:41:d5:ed:f1:a8: dc:d5:ec:d5:ce:dd:3a:32:99:21:70:a9:25:c9:77: 6b:fc:81:b2:54:11:e2:06:50:db:0e:cd:59:e7:2a: 5e:a1:c2:7e:b6:46:6f:aa:2b:65:2c:e9:7b:ce:bb: 1a:f3:5e:63:11:9c:67:b7:9c:ca:72:71:93:61:e0: 4f:04:c1:34:38:f0:18:f2:2d:e6:4f:66:1e:03:32: ae:1e:dd:0e:0d:04:33:ef:20:5b:15:03:89:35:59: 53:88:6b:72:f3:04:4c:a9:54:5c:1d:48:45:5a:3d: a1:e6:23:87:34:7b:24:e7:6f:f2:b7:63:01:81:f6: 39:02:06:63:db:f3:95:03:26:7a:b9:19:ef:f1:17: 45:83:07:06:af:eb:11:ae:c0:68:be:a5:7c:35:8f: 7d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:CF:C4:3E:25:63:67:21:B0:B7:38:2F:03:46:B4:34:13:B1:34:95 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS150787.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5300::/40 Signature Algorithm: sha256WithRSAEncryption 35:e4:5d:de:c1:52:cf:61:fd:41:e6:37:de:c1:7a:d4:8a:da: 71:46:79:50:b1:a9:93:3a:57:11:8a:5a:f7:40:34:1d:d5:1b: 12:69:3b:20:02:44:b5:cf:91:b8:23:4c:35:1f:88:84:75:15: 78:16:1d:ff:ae:be:f4:37:9d:50:35:fa:ac:bf:c7:7d:f6:d6: f7:9f:67:79:25:11:50:3c:b4:5d:f1:f7:7a:31:c3:59:5a:18: 6b:7e:a2:46:ff:79:57:6a:d1:ac:d9:8c:8b:3c:2b:5c:08:a1: 37:a2:e5:dd:35:4b:fd:52:bf:ac:b7:bc:0f:f9:f1:ff:14:c7: f3:20:41:ce:0e:e2:d8:41:b3:22:9e:c2:ef:09:97:a2:72:14: 81:bc:27:87:3f:55:e3:33:58:e3:d6:ed:c7:c1:83:c5:a2:fc: 34:73:5e:ae:f2:19:74:68:b0:95:89:a8:b5:3e:62:46:97:8f: 90:cf:58:46:28:ba:6b:6b:07:c5:21:7c:39:86:7e:f8:0b:33: 9a:9f:51:03:8d:88:a8:fd:6b:93:82:e0:cc:c9:3f:db:57:86: 8a:69:09:fe:4e:7a:79:9c:05:d8:cf:a5:ab:4c:3e:6e:ff:e7: c9:cc:c6:e1:a8:87:41:4b:cf:73:81:0c:2f:c2:20:0f:1c:12: 08:37:91:26 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCXTTdIYu96V4CZkNUv/gqId7mwgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTdaFw0yNzA2MDQwNzEyMTdaMDMxMTAvBgNV BAMTKEU0Q0ZDNDNFMjU2MzY3MjFCMEI3MzgyRjAzNDZCNDM0MTNCMTM0OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQEltIG1luou2lgp/epYLWsw7B PxwD1XF6Q6lg/9BIqb0TIZ1nUuv+Fh96Pg7ACDav8+h5jaXlIpzhWCYB6CywqGEB J+XVdziYCNTr4x0eZm9AxRa+juf0G/o3oXOPiw+BtF1B1e3xqNzV7NXO3ToymSFw qSXJd2v8gbJUEeIGUNsOzVnnKl6hwn62Rm+qK2Us6XvOuxrzXmMRnGe3nMpycZNh 4E8EwTQ48BjyLeZPZh4DMq4e3Q4NBDPvIFsVA4k1WVOIa3LzBEypVFwdSEVaPaHm I4c0eyTnb/K3YwGB9jkCBmPb85UDJnq5Ge/xF0WDBwav6xGuwGi+pXw1j30XAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5M/EPiVjZyGwtzgvA0a0NBOxNJUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTUwNzg3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVMwDQYJKoZIhvcNAQELBQADggEBADXk Xd7BUs9h/UHmN97BetSK2nFGeVCxqZM6VxGKWvdANB3VGxJpOyACRLXPkbgjTDUf iIR1FXgWHf+uvvQ3nVA1+qy/x3321vefZ3klEVA8tF3x93oxw1laGGt+okb/eVdq 0azZjIs8K1wIoTei5d01S/1Sv6y3vA/58f8Ux/MgQc4O4thBsyKewu8Jl6JyFIG8 J4c/VeMzWOPW7cfBg8Wi/DRzXq7yGXRosJWJqLU+YkaXj5DPWEYoumtrB8UhfDmG fvgLM5qfUQONiKj9a5OC4MzJP9tXhoppCf5OenmcBdjPpatMPm7/58nMxuGoh0FL z3OBDC/CIA8cEgg3kSY= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:12 2026 by rpki-client