$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201501.roa File: AS201501.roa (raw, json) Hash identifier: 4Hb977d0lSsLqVB3k4caD3tx12s3cw+6KzX6Zrr8rOQ= Subject key identifier: B3:2A:77:51:E2:D6:81:7D:36:46:9E:8D:68:7D:45:41:C9:FF:ED:8F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2A7F070E62C49918D9A2FEA5E89CD688FF9EF2BA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201501.roa Signing time: Fri 05 Jun 2026 07:12:09 +0000 ROA not before: Fri 05 Jun 2026 07:07:09 +0000 ROA not after: Fri 04 Jun 2027 07:12:09 +0000 asID: 201501 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:7f:07:0e:62:c4:99:18:d9:a2:fe:a5:e8:9c:d6:88:ff:9e:f2:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:09 2026 GMT Not After : Jun 4 07:12:09 2027 GMT Subject: CN=B32A7751E2D6817D36469E8D687D4541C9FFED8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bc:05:07:26:d8:8a:84:55:20:3d:d9:5f:c7: 91:a0:5b:4e:59:10:1c:f9:4e:03:ba:17:b4:fb:de: 57:4e:e2:d5:41:e3:a1:42:36:9d:c7:b0:ca:22:8d: 53:c0:18:94:9d:22:cf:62:d4:14:88:3b:08:e7:ef: 64:1a:13:11:57:6b:39:94:90:56:7b:60:75:44:91: 9e:92:54:60:25:a7:6b:61:46:8c:1d:97:d1:b7:5d: 6a:87:a7:65:94:1a:27:dc:34:e4:88:a3:74:12:37: 35:b8:40:21:d4:5b:e9:db:c5:9e:79:6f:81:17:49: cb:2d:ce:f1:17:6b:8a:42:38:b5:9a:80:fc:bf:e4: 72:bc:6f:9e:15:01:ec:86:6b:a4:8f:99:5c:b6:85: 89:9a:92:5b:ea:8e:6d:ec:d1:f6:b3:d0:a4:bf:ee: 31:bc:78:02:d2:7c:07:40:0d:f3:a3:8e:d1:5e:2f: 48:d1:95:89:00:e6:15:48:75:6e:b0:76:c0:c4:0b: 7e:3b:5d:e3:5c:0b:8b:2c:9f:68:88:2d:a6:c0:85: c0:4b:8b:3f:33:6b:73:37:29:f7:8a:75:17:65:d5: 3d:bf:cf:86:a8:04:10:a9:f2:67:a8:15:f7:18:38: 48:23:bd:56:e3:84:02:3e:e3:36:a3:79:3c:b3:35: 0c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2A:77:51:E2:D6:81:7D:36:46:9E:8D:68:7D:45:41:C9:FF:ED:8F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201501.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption 34:97:79:3a:a6:a3:9e:a2:96:9a:a5:52:32:f1:b9:d6:0c:26: 9a:6d:ad:ae:d9:4c:db:00:0a:04:26:d6:16:2f:c1:1c:75:b7: 76:58:ba:06:56:70:a1:52:30:5c:ac:2c:0a:31:13:40:9b:1a: d5:4c:ff:6c:a2:d9:46:d6:3a:74:ad:31:8a:f1:7d:5a:07:db: 0a:92:9a:ac:b8:ce:31:0b:cf:e0:0c:8b:f8:14:2a:a4:33:e9: 22:3c:61:72:0a:f7:16:eb:44:b2:2b:9d:9b:0f:49:6d:92:85: 20:ac:53:21:a9:ee:b7:d7:be:34:d3:26:e8:c1:33:3f:3f:f0: 6a:a8:dc:0a:2d:f2:ad:8f:e3:d6:71:ae:59:81:fc:09:64:e8: ac:85:07:5f:f6:fe:9e:97:ac:0b:99:57:58:63:f1:90:c9:d1: 9b:50:39:dd:44:22:b7:29:c9:5d:a9:71:93:c8:ad:c6:80:18: 3e:b2:17:a4:71:c3:08:7c:bc:4a:27:cc:8d:c3:ff:f2:2b:d3: f3:73:2c:66:54:33:a5:5a:d9:d2:4d:48:8c:64:e8:b6:89:bb: 32:8d:4d:39:8c:78:a9:ff:c8:27:e6:a1:09:cd:8b:59:57:ac: 4d:c3:0e:eb:7c:0c:33:46:32:08:48:d7:e7:ce:e1:b8:e5:b1: 2e:b3:6b:c9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKn8HDmLEmRjZov6l6JzWiP+e8rowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDlaFw0yNzA2MDQwNzEyMDlaMDMxMTAvBgNV BAMTKEIzMkE3NzUxRTJENjgxN0QzNjQ2OUU4RDY4N0Q0NTQxQzlGRkVEOEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCovAUHJtiKhFUgPdlfx5GgW05Z EBz5TgO6F7T73ldO4tVB46FCNp3HsMoijVPAGJSdIs9i1BSIOwjn72QaExFXazmU kFZ7YHVEkZ6SVGAlp2thRowdl9G3XWqHp2WUGifcNOSIo3QSNzW4QCHUW+nbxZ55 b4EXScstzvEXa4pCOLWagPy/5HK8b54VAeyGa6SPmVy2hYmaklvqjm3s0faz0KS/ 7jG8eALSfAdADfOjjtFeL0jRlYkA5hVIdW6wdsDEC347XeNcC4ssn2iILabAhcBL iz8za3M3KfeKdRdl1T2/z4aoBBCp8meoFfcYOEgjvVbjhAI+4zajeTyzNQyXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsyp3UeLWgX02Rp6NaH1FQcn/7Y8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNTAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPowDQYJKoZIhvcNAQELBQADggEBADSX eTqmo56ilpqlUjLxudYMJpptra7ZTNsACgQm1hYvwRx1t3ZYugZWcKFSMFysLAox E0CbGtVM/2yi2UbWOnStMYrxfVoH2wqSmqy4zjELz+AMi/gUKqQz6SI8YXIK9xbr RLIrnZsPSW2ShSCsUyGp7rfXvjTTJujBMz8/8Gqo3Aot8q2P49ZxrlmB/Alk6KyF B1/2/p6XrAuZV1hj8ZDJ0ZtQOd1EIrcpyV2pcZPIrcaAGD6yF6Rxwwh8vEonzI3D //Ir0/NzLGZUM6Va2dJNSIxk6LaJuzKNTTmMeKn/yCfmoQnNi1lXrE3DDut8DDNG MghI1+fO4bjlsS6za8k= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:17 2026 by rpki-client