$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201517.roa File: AS201517.roa (raw, json) Hash identifier: Ta2ndVjZfcO+PFPipPumhaWnqxQyl8dQBW0yklC7meE= Subject key identifier: 00:19:FB:FF:85:E7:D4:E0:B7:F6:F0:45:5F:3A:4C:45:4E:F1:45:57 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2B5C3E814B2889B984F27C3AF0210753D312E914 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201517.roa Signing time: Fri 05 Jun 2026 07:12:48 +0000 ROA not before: Fri 05 Jun 2026 07:07:48 +0000 ROA not after: Fri 04 Jun 2027 07:12:48 +0000 asID: 201517 IP address blocks: 2a0a:6040:fd00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:5c:3e:81:4b:28:89:b9:84:f2:7c:3a:f0:21:07:53:d3:12:e9:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:48 2026 GMT Not After : Jun 4 07:12:48 2027 GMT Subject: CN=0019FBFF85E7D4E0B7F6F0455F3A4C454EF14557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ea:38:3e:69:5c:0c:b3:d3:ca:d3:9b:5e:69: 94:84:3b:be:60:07:50:92:ca:ce:0c:da:40:df:9f: 85:cc:d4:dd:8b:aa:1d:a2:5c:22:23:e5:60:13:41: 60:73:ce:15:30:6d:52:2a:3e:fd:93:9d:86:b0:c2: 60:87:c4:68:02:86:46:d0:5e:83:0e:93:7d:d3:1b: ce:27:17:7c:04:92:71:7e:96:14:f8:6f:0a:54:d3: ae:41:fa:db:09:f6:3c:9b:b4:d3:1a:2d:30:e2:63: 14:0e:f1:0c:b7:89:ad:ed:3e:5a:f1:01:f3:59:d5: 12:c1:50:28:36:10:9c:ca:80:c3:8d:a3:6c:ce:73: cc:f8:cd:cc:4b:31:3b:54:ae:9e:ac:19:8b:a8:58: 60:1c:d2:94:ea:38:7d:80:ca:bd:c0:b5:ac:df:6e: ff:83:1f:c7:17:bb:7c:fb:31:33:00:e5:d9:96:6a: f0:d5:7d:40:fd:59:2a:a3:b8:67:c8:0f:e8:a0:f5: 97:e8:46:b3:90:24:a6:ad:e6:0e:47:cc:7d:6f:29: 8b:96:44:b3:74:e1:14:3e:b9:66:07:2b:3f:34:05: 30:e6:3f:a7:ed:6a:6d:c2:e5:6f:a8:8b:74:d6:78: 30:ce:43:a8:6d:8c:a1:9b:9e:19:87:8c:69:d2:58: f7:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:19:FB:FF:85:E7:D4:E0:B7:F6:F0:45:5F:3A:4C:45:4E:F1:45:57 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS201517.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fd00::/40 Signature Algorithm: sha256WithRSAEncryption 35:df:9b:9c:86:b9:04:15:50:24:a2:7e:25:dc:a3:c1:c3:4c: 51:47:95:a9:d9:7a:89:82:ec:22:24:f5:d4:47:5f:b2:c5:78: c1:80:c2:36:ba:87:e9:74:8e:fb:4c:76:fa:c7:dc:a6:ec:4b: c2:e9:a3:30:ba:fe:93:2f:01:03:6d:6b:93:0d:98:92:32:1d: 9b:8e:f9:2b:a3:2c:71:2d:b1:2f:77:96:f9:5f:87:cd:f2:ae: 1d:29:7f:0b:65:5d:05:7d:3f:b9:bc:bd:b9:ec:94:00:7a:6e: 24:f7:8a:32:b8:de:bf:1b:ac:13:fb:03:60:a1:b6:d2:0b:3c: 0a:75:a8:fd:eb:17:f2:28:9d:f0:4e:1a:68:2f:75:fb:7c:a9: 3f:85:d3:5e:a3:f2:5b:57:9b:02:59:3d:24:24:f6:8b:b4:d3: 42:2b:86:73:bc:aa:c5:e8:4a:03:8c:9c:a9:a4:9a:34:7e:5a: d2:60:5d:37:5a:e7:05:ae:bb:6f:70:29:2c:77:c4:32:6b:b4: f8:86:c9:1c:1d:27:20:18:c8:9a:40:31:1f:76:05:95:14:65: a3:22:12:54:51:6f:74:96:14:c4:43:31:8f:1c:36:e9:ca:18: 03:c7:4c:75:76:4d:11:8b:67:3a:57:da:17:60:57:7b:02:9f: 1f:6b:1c:36 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUK1w+gUsoibmE8nw68CEHU9MS6RQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDhaFw0yNzA2MDQwNzEyNDhaMDMxMTAvBgNV BAMTKDAwMTlGQkZGODVFN0Q0RTBCN0Y2RjA0NTVGM0E0QzQ1NEVGMTQ1NTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR6jg+aVwMs9PK05teaZSEO75g B1CSys4M2kDfn4XM1N2Lqh2iXCIj5WATQWBzzhUwbVIqPv2TnYawwmCHxGgChkbQ XoMOk33TG84nF3wEknF+lhT4bwpU065B+tsJ9jybtNMaLTDiYxQO8Qy3ia3tPlrx AfNZ1RLBUCg2EJzKgMONo2zOc8z4zcxLMTtUrp6sGYuoWGAc0pTqOH2Ayr3Atazf bv+DH8cXu3z7MTMA5dmWavDVfUD9WSqjuGfID+ig9ZfoRrOQJKat5g5HzH1vKYuW RLN04RQ+uWYHKz80BTDmP6ftam3C5W+oi3TWeDDOQ6htjKGbnhmHjGnSWPepAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUABn7/4Xn1OC39vBFXzpMRU7xRVcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAxNTE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQP0wDQYJKoZIhvcNAQELBQADggEBADXf m5yGuQQVUCSifiXco8HDTFFHlanZeomC7CIk9dRHX7LFeMGAwja6h+l0jvtMdvrH 3KbsS8LpozC6/pMvAQNta5MNmJIyHZuO+SujLHEtsS93lvlfh83yrh0pfwtlXQV9 P7m8vbnslAB6biT3ijK43r8brBP7A2ChttILPAp1qP3rF/IonfBOGmgvdft8qT+F 016j8ltXmwJZPSQk9ou000IrhnO8qsXoSgOMnKmkmjR+WtJgXTda5wWuu29wKSx3 xDJrtPiGyRwdJyAYyJpAMR92BZUUZaMiElRRb3SWFMRDMY8cNunKGAPHTHV2TRGL ZzpX2hdgV3sCnx9rHDY= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:27 2026 by rpki-client