$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS16509.roa File: AS16509.roa (raw, json) Hash identifier: IEK3RSq6ZPD7MgeyRGsQozN0Y6+Ynaat2Y8yDyPqja4= Subject key identifier: BF:54:56:9B:0A:60:1A:0A:6D:4A:99:93:C3:FA:0A:81:69:FE:E2:10 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 46EA3010A1551AB1CBB5AAA2DB9F0AF328450B09 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS16509.roa Signing time: Fri 05 Jun 2026 07:12:12 +0000 ROA not before: Fri 05 Jun 2026 07:07:12 +0000 ROA not after: Fri 04 Jun 2027 07:12:12 +0000 asID: 16509 IP address blocks: 2a05:dfc1:a400::/44 maxlen: 44 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:ea:30:10:a1:55:1a:b1:cb:b5:aa:a2:db:9f:0a:f3:28:45:0b:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:12 2026 GMT Not After : Jun 4 07:12:12 2027 GMT Subject: CN=BF54569B0A601A0A6D4A9993C3FA0A8169FEE210 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ec:de:a7:77:23:7a:1c:31:a3:4f:87:57:b6: b6:fd:b0:da:5e:8a:a5:ec:30:02:79:c0:71:e5:dd: b8:6b:41:98:0e:d8:5f:8f:ee:4c:fb:ce:a8:8a:35: 5e:19:f8:72:28:e0:e2:d1:0f:f2:4f:8d:26:42:a7: 40:dc:6f:01:14:89:a4:cc:5a:d6:1c:5b:53:d6:ef: 97:98:8a:58:b6:1e:55:ad:72:39:b1:70:78:27:c5: aa:e3:16:d6:68:29:e9:bf:a1:44:16:91:d4:76:cf: 89:6e:61:ac:b3:45:e9:88:55:1d:95:e6:23:fe:ef: 89:24:94:85:3b:e2:a8:be:1d:7c:93:0f:e0:6c:6c: 67:3a:14:ea:7b:66:69:f0:79:3b:ef:6c:06:37:50: b3:97:e6:b1:d7:3a:6b:80:86:44:24:51:72:19:b5: d0:e7:77:fd:a7:b5:0c:77:05:e0:a2:1d:09:b3:3b: 9d:1e:47:3b:32:e3:40:72:b2:82:7a:cf:9c:09:42: 90:a7:dc:e3:2b:07:02:3d:7e:8a:dd:33:4b:fd:c7: c7:cf:d3:a7:83:1e:8c:c7:24:b8:64:5c:42:4e:3c: 4e:69:00:b3:7d:2a:d7:fb:b9:1a:c4:13:1e:51:32: 84:f8:c9:be:12:0f:19:7a:9a:02:aa:ea:73:a2:0e: 12:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:54:56:9B:0A:60:1A:0A:6D:4A:99:93:C3:FA:0A:81:69:FE:E2:10 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS16509.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a400::/44 Signature Algorithm: sha256WithRSAEncryption 72:17:fa:c2:d1:eb:9b:79:1c:4f:88:cf:10:4d:9f:13:c4:18: ba:38:7d:44:a3:35:05:56:9f:95:b4:08:85:d3:47:7b:f2:7f: c1:16:d6:07:2d:c4:3d:8c:0d:80:ed:24:0e:0b:b6:d1:8d:63: dd:6d:df:34:2e:29:a1:e4:7a:f5:84:37:7d:0f:fe:0d:40:fd: 32:ed:71:17:d9:ab:f5:62:46:3a:d8:2e:11:9d:52:28:ef:27: 84:0d:01:f1:5b:ab:2f:8c:b1:98:0c:1e:aa:75:8c:fb:4d:21: c2:50:a8:e7:f4:15:f9:f3:70:0f:ab:29:e7:ee:a1:32:cb:f5: 51:23:84:8c:21:00:c0:bf:63:64:a9:36:19:ad:d8:a9:93:de: 7d:26:9d:a7:8a:d0:ae:96:41:1e:b9:91:99:09:0a:a5:af:58: 05:67:12:3b:f6:7d:ef:12:a5:72:74:67:d6:36:72:ee:5f:32: 92:cf:df:7f:8f:0e:db:d3:ba:69:77:b6:d7:29:b9:af:fa:da: 33:7f:0d:2d:58:c2:a3:a3:ec:5f:6c:d7:92:5b:d0:be:4b:5d: 84:9e:af:bb:6b:c4:0a:a4:d2:c2:a5:37:6b:49:39:a3:98:93: e8:7d:46:97:66:92:ce:8c:37:33:dd:26:a3:35:d6:5b:b7:01: 88:e4:2d:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURuowEKFVGrHLtaqi258K8yhFCwkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTJaFw0yNzA2MDQwNzEyMTJaMDMxMTAvBgNV BAMTKEJGNTQ1NjlCMEE2MDFBMEE2RDRBOTk5M0MzRkEwQTgxNjlGRUUyMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC7N6ndyN6HDGjT4dXtrb9sNpe iqXsMAJ5wHHl3bhrQZgO2F+P7kz7zqiKNV4Z+HIo4OLRD/JPjSZCp0DcbwEUiaTM WtYcW1PW75eYili2HlWtcjmxcHgnxarjFtZoKem/oUQWkdR2z4luYayzRemIVR2V 5iP+74kklIU74qi+HXyTD+BsbGc6FOp7ZmnweTvvbAY3ULOX5rHXOmuAhkQkUXIZ tdDnd/2ntQx3BeCiHQmzO50eRzsy40BysoJ6z5wJQpCn3OMrBwI9fordM0v9x8fP 06eDHozHJLhkXEJOPE5pALN9Ktf7uRrEEx5RMoT4yb4SDxl6mgKq6nOiDhI9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUv1RWmwpgGgptSpmTw/oKgWn+4hAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTY1MDkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUH AQcBAf8EEzARMA8EAgACMAkDBwQqBd/BpAAwDQYJKoZIhvcNAQELBQADggEBAHIX +sLR65t5HE+IzxBNnxPEGLo4fUSjNQVWn5W0CIXTR3vyf8EW1gctxD2MDYDtJA4L ttGNY91t3zQuKaHkevWEN30P/g1A/TLtcRfZq/ViRjrYLhGdUijvJ4QNAfFbqy+M sZgMHqp1jPtNIcJQqOf0FfnzcA+rKefuoTLL9VEjhIwhAMC/Y2SpNhmt2KmT3n0m naeK0K6WQR65kZkJCqWvWAVnEjv2fe8SpXJ0Z9Y2cu5fMpLP33+PDtvTuml3ttcp ua/62jN/DS1YwqOj7F9s15Jb0L5LXYSer7trxAqk0sKlN2tJOaOYk+h9Rpdmks6M NzPdJqM11lu3AYjkLa0= -----END CERTIFICATE-----Generated at Sat Jun 13 05:39:25 2026 by rpki-client