$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201097.roa File: AS201097.roa (raw, json) Hash identifier: 9kFPPTRHAS+6kjshN3wzX3Hs7ObPX3ZHvwksbOfoVDM= Subject key identifier: 9D:AA:C9:3B:DA:AB:66:35:0A:6B:3E:D6:58:AA:C7:8F:81:E1:AB:0D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 451758EEDDEF2113FFF606D6A903D4B8CC8E8CAA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201097.roa Signing time: Fri 05 Jun 2026 07:12:40 +0000 ROA not before: Fri 05 Jun 2026 07:07:40 +0000 ROA not after: Fri 04 Jun 2027 07:12:40 +0000 asID: 201097 IP address blocks: 2a0a:6040:2a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:17:58:ee:dd:ef:21:13:ff:f6:06:d6:a9:03:d4:b8:cc:8e:8c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:40 2026 GMT Not After : Jun 4 07:12:40 2027 GMT Subject: CN=9DAAC93BDAAB66350A6B3ED658AAC78F81E1AB0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:36:fc:75:24:e9:02:74:fb:1d:6e:d1:92:d9: fe:21:2a:da:69:2b:2e:68:f5:ea:90:64:e8:96:91: a6:e4:05:a6:2a:7b:d3:e6:44:fa:8f:6c:5c:7a:5d: 1e:87:9d:0a:4b:b1:68:78:43:fb:f0:9f:28:5e:68: 58:7e:24:7b:4d:7e:00:e6:82:32:ab:b0:25:55:12: f1:2c:6b:da:98:0b:28:bc:4b:68:31:54:e0:32:e7: f6:54:33:2a:1f:7a:b0:1e:6f:d1:49:5e:5c:d6:39: b7:94:ad:27:fb:f3:ad:56:0a:78:40:bf:69:ec:bd: ee:6d:80:66:9b:0b:d9:3b:b9:42:34:2c:b7:f1:95: a0:85:50:63:4b:77:46:dc:89:f8:28:f2:7d:46:fb: 67:c0:1c:72:b9:df:ab:df:28:39:e7:3c:0c:59:69: 25:00:15:32:74:bc:9a:5d:91:b8:0f:08:a4:c4:80: ce:31:b0:fe:84:91:0a:f4:75:ad:99:82:6b:dd:5d: 19:65:16:c9:57:a0:33:1a:30:72:5f:22:ff:52:3a: 72:cf:1a:0d:47:6e:b9:36:9e:d6:ae:2f:84:8f:f5: ba:d6:8a:a4:29:83:cc:03:5f:2f:b7:07:b6:cc:19: 69:45:35:c1:cb:df:76:e9:bf:0d:21:21:73:b8:b0: 13:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:AA:C9:3B:DA:AB:66:35:0A:6B:3E:D6:58:AA:C7:8F:81:E1:AB:0D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201097.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2a00::/40 Signature Algorithm: sha256WithRSAEncryption 5f:9d:4a:9a:33:c1:b1:b8:c6:46:78:cb:88:11:34:07:f4:2b: a5:fe:f9:64:e6:b1:86:00:c7:e1:fa:56:82:db:41:ed:8c:d8: c8:5d:af:39:b0:f7:cd:a7:74:07:4f:d8:1b:e7:0a:a5:6c:89: 5c:3a:5a:00:66:97:97:bd:6f:2c:4d:e1:60:2a:c9:99:cc:c1: 7a:df:65:39:38:7e:be:d4:4c:31:34:78:50:49:9b:7b:49:d9: ec:b2:74:1f:ed:6f:0a:1c:a2:95:de:b3:e7:9f:d2:41:9d:e9: 9f:de:94:11:fb:0a:e4:2e:71:36:db:5e:96:94:e3:48:7c:b9: 5a:1b:ba:67:65:a4:03:69:7b:23:7e:ad:12:99:64:d0:82:90: 40:f1:da:58:d4:0a:bb:66:67:67:e5:0c:43:28:68:05:67:f0: c8:ee:7f:09:84:c6:b1:c5:fb:f8:3e:38:98:62:cd:c6:28:58: 3b:7b:37:29:a7:93:88:93:78:97:85:3e:b5:b7:ae:4e:cd:ba: 55:80:8b:a0:f8:a2:1e:73:29:fb:7c:49:07:1f:3e:99:6f:87: 5f:0d:ca:00:e9:08:e9:f8:97:16:73:84:90:7a:7e:6f:e5:ee: 7f:22:8d:cf:35:18:81:5c:78:34:b8:30:02:28:a6:a7:73:12: 45:1c:d6:d7 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURRdY7t3vIRP/9gbWqQPUuMyOjKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDBaFw0yNzA2MDQwNzEyNDBaMDMxMTAvBgNV BAMTKDlEQUFDOTNCREFBQjY2MzUwQTZCM0VENjU4QUFDNzhGODFFMUFCMEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmNvx1JOkCdPsdbtGS2f4hKtpp Ky5o9eqQZOiWkabkBaYqe9PmRPqPbFx6XR6HnQpLsWh4Q/vwnyheaFh+JHtNfgDm gjKrsCVVEvEsa9qYCyi8S2gxVOAy5/ZUMyoferAeb9FJXlzWObeUrSf7861WCnhA v2nsve5tgGabC9k7uUI0LLfxlaCFUGNLd0bcifgo8n1G+2fAHHK536vfKDnnPAxZ aSUAFTJ0vJpdkbgPCKTEgM4xsP6EkQr0da2ZgmvdXRllFslXoDMaMHJfIv9SOnLP Gg1Hbrk2ntauL4SP9brWiqQpg8wDXy+3B7bMGWlFNcHL33bpvw0hIXO4sBOVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUnarJO9qrZjUKaz7WWKrHj4Hhqw0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxMDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCowDQYJKoZIhvcNAQELBQADggEBAF+d SpozwbG4xkZ4y4gRNAf0K6X++WTmsYYAx+H6VoLbQe2M2Mhdrzmw982ndAdP2Bvn CqVsiVw6WgBml5e9byxN4WAqyZnMwXrfZTk4fr7UTDE0eFBJm3tJ2eyydB/tbwoc opXes+ef0kGd6Z/elBH7CuQucTbbXpaU40h8uVobumdlpANpeyN+rRKZZNCCkEDx 2ljUCrtmZ2flDEMoaAVn8MjufwmExrHF+/g+OJhizcYoWDt7Nymnk4iTeJeFPrW3 rk7NulWAi6D4oh5zKft8SQcfPplvh18NygDpCOn4lxZzhJB6fm/l7n8ijc81GIFc eDS4MAIopqdzEkUc1tc= -----END CERTIFICATE-----Generated at Sat Jun 13 06:43:27 2026 by rpki-client