$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201504.roa File: AS201504.roa (raw, json) Hash identifier: 2MZbLmBS0vJUHPvjZRbSV71rqg6OCMgj7ljOiagn8iU= Subject key identifier: AC:01:A1:3A:52:6B:4E:2B:B6:70:AE:E8:E7:7C:C1:80:2E:09:B8:93 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 02FC955249514094D6454E5843F8C389B044DAE3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201504.roa Signing time: Fri 05 Jun 2026 07:12:49 +0000 ROA not before: Fri 05 Jun 2026 07:07:49 +0000 ROA not after: Fri 04 Jun 2027 07:12:49 +0000 asID: 201504 IP address blocks: 2a0a:6040:da00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fc:95:52:49:51:40:94:d6:45:4e:58:43:f8:c3:89:b0:44:da:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:49 2026 GMT Not After : Jun 4 07:12:49 2027 GMT Subject: CN=AC01A13A526B4E2BB670AEE8E77CC1802E09B893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7c:98:9d:f0:64:5c:13:87:85:0d:96:ff:8e: 3a:59:9d:1d:7c:79:60:5c:85:44:f5:f5:78:ee:b2: cc:38:8f:4f:fa:6c:f9:ee:86:6a:da:9e:e8:14:12: 90:aa:dd:05:ed:41:5e:dd:35:eb:cb:cb:a8:b2:de: 13:ba:c2:68:33:af:fd:12:19:0c:ea:4f:5f:ef:da: 0a:db:81:6b:6e:a0:e3:f0:9a:92:36:49:56:d6:53: 32:b0:22:2a:6d:26:7f:05:57:66:82:5e:c7:9b:28: cb:33:60:0b:ef:84:e3:3c:77:1c:7c:10:b3:0d:4f: 89:b1:b8:50:8c:cb:68:66:9e:b0:eb:15:bf:36:e5: 16:27:af:14:cf:33:95:16:cc:83:77:3e:84:f1:5f: f0:77:8a:6e:c4:7a:7c:20:91:ef:bc:b7:ad:43:10: 8c:a4:e5:44:0b:81:35:ea:b5:2d:bb:87:4d:76:7b: 2a:17:38:83:4f:07:02:cd:bc:1a:2b:31:e8:ce:20: 7e:87:49:f8:ef:c4:78:7d:8d:6a:55:3e:4b:fb:25: df:f5:39:18:17:e6:32:3e:ad:1c:44:8f:72:57:88: 29:27:16:27:b4:89:6d:f4:6b:bf:cf:35:5f:db:dc: 98:2c:2b:00:0f:47:b4:94:3d:a1:f3:13:4a:5e:db: 94:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:01:A1:3A:52:6B:4E:2B:B6:70:AE:E8:E7:7C:C1:80:2E:09:B8:93 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:da00::/40 Signature Algorithm: sha256WithRSAEncryption 4e:d6:9b:94:6c:d1:dd:bf:81:a8:12:b7:42:d9:47:1b:82:5f: e4:2e:8d:23:6f:04:4e:e3:a4:b8:eb:67:dc:02:c5:67:61:fc: c5:99:49:02:69:10:6b:39:98:bf:73:bb:fc:01:32:e6:16:25: cb:1b:aa:94:16:a2:26:1a:dd:75:ec:a1:12:de:5b:b4:23:b9: af:94:17:b5:fd:c2:be:d1:54:24:37:b8:89:ff:28:49:3e:67: bf:34:02:52:ff:73:b0:8d:68:da:8d:16:e5:4b:bf:8c:3b:54: 66:0c:f6:6f:ce:c6:0c:16:00:31:21:0e:8a:fa:80:67:82:5a: e9:86:df:89:2a:3d:d6:af:6b:61:ba:3c:2d:87:25:94:8b:f7: 9e:41:e6:05:e0:05:cb:5c:bc:56:de:25:00:d2:c6:5d:22:24: 97:19:9d:2a:5c:85:90:50:08:c3:7e:0b:13:f5:ef:9d:67:c4: 90:03:79:c4:5f:c1:cf:c5:15:c2:09:1d:6e:da:3a:8e:e5:94: be:fe:33:2e:4a:56:b0:41:7e:d2:c7:9e:ed:2a:40:eb:da:1a: 19:2b:60:4a:3a:42:55:07:10:06:89:83:19:17:e0:23:33:eb: 61:23:10:fe:78:32:51:c1:c7:e2:20:57:44:e6:60:25:f0:27: 0a:d4:8e:ae -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAvyVUklRQJTWRU5YQ/jDibBE2uMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDlaFw0yNzA2MDQwNzEyNDlaMDMxMTAvBgNV BAMTKEFDMDFBMTNBNTI2QjRFMkJCNjcwQUVFOEU3N0NDMTgwMkUwOUI4OTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxfJid8GRcE4eFDZb/jjpZnR18 eWBchUT19Xjussw4j0/6bPnuhmranugUEpCq3QXtQV7dNevLy6iy3hO6wmgzr/0S GQzqT1/v2grbgWtuoOPwmpI2SVbWUzKwIiptJn8FV2aCXsebKMszYAvvhOM8dxx8 ELMNT4mxuFCMy2hmnrDrFb825RYnrxTPM5UWzIN3PoTxX/B3im7Eenwgke+8t61D EIyk5UQLgTXqtS27h012eyoXOINPBwLNvBorMejOIH6HSfjvxHh9jWpVPkv7Jd/1 ORgX5jI+rRxEj3JXiCknFie0iW30a7/PNV/b3JgsKwAPR7SUPaHzE0pe25TXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrAGhOlJrTiu2cK7o53zBgC4JuJMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNowDQYJKoZIhvcNAQELBQADggEBAE7W m5Rs0d2/gagSt0LZRxuCX+QujSNvBE7jpLjrZ9wCxWdh/MWZSQJpEGs5mL9zu/wB MuYWJcsbqpQWoiYa3XXsoRLeW7Qjua+UF7X9wr7RVCQ3uIn/KEk+Z780AlL/c7CN aNqNFuVLv4w7VGYM9m/OxgwWADEhDor6gGeCWumG34kqPdava2G6PC2HJZSL955B 5gXgBctcvFbeJQDSxl0iJJcZnSpchZBQCMN+CxP1751nxJADecRfwc/FFcIJHW7a Oo7llL7+My5KVrBBftLHnu0qQOvaGhkrYEo6QlUHEAaJgxkX4CMz62EjEP54MlHB x+IgV0TmYCXwJwrUjq4= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:27 2026 by rpki-client