$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202201.roa File: AS202201.roa (raw, json) Hash identifier: de2ZTGgd3Vk9UK5RRV5VVo5WmwA7O6aV3JXfnLjq7g4= Subject key identifier: 81:B1:5D:58:92:F2:A0:01:4C:59:01:0B:79:44:85:46:42:E0:D5:DA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 554A22DA33211E752C40797F23C5226638E5A861 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202201.roa Signing time: Fri 05 Jun 2026 07:12:36 +0000 ROA not before: Fri 05 Jun 2026 07:07:36 +0000 ROA not after: Fri 04 Jun 2027 07:12:36 +0000 asID: 202201 IP address blocks: 2a0a:6040:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:4a:22:da:33:21:1e:75:2c:40:79:7f:23:c5:22:66:38:e5:a8:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:36 2026 GMT Not After : Jun 4 07:12:36 2027 GMT Subject: CN=81B15D5892F2A0014C59010B7944854642E0D5DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:27:89:1f:7c:5a:e1:0a:c0:ea:83:54:71:ee: f9:c9:d6:14:5e:b8:48:06:60:b2:e5:fe:fe:0d:66: ab:3b:1d:16:d9:f5:db:43:4b:76:f1:b2:91:49:e2: e2:42:db:70:17:d0:b4:6d:cd:e2:45:1b:f8:49:b2: 41:c5:47:21:08:03:4b:41:1e:04:4d:9e:54:c8:34: 3a:c1:65:d5:16:2f:ec:e3:51:df:3a:bf:26:ad:d7: e8:aa:5c:1a:c2:4c:b6:d9:5e:b6:a3:18:a6:b1:be: 17:3e:01:ad:a4:1f:76:26:ce:47:eb:2e:3a:17:44: 19:ee:e4:6b:0d:62:ff:87:9f:1e:a6:92:9f:ed:60: e2:06:f2:a0:ef:4a:48:d6:5a:fd:a5:f0:81:78:9e: 22:59:98:3f:56:f0:1c:6d:14:00:c8:a1:ad:fa:8e: 44:61:ec:cb:c1:d9:2e:df:41:73:12:10:2c:df:0c: eb:04:cd:ec:93:42:49:05:d5:16:fe:cd:22:ae:1f: b3:57:ec:eb:76:74:55:e9:0f:50:d0:93:70:39:31: 8e:6d:4f:60:b8:63:10:42:f5:56:e8:e5:3e:94:4d: d7:03:c0:65:15:ba:90:cc:34:b9:4b:54:da:42:de: 63:36:0d:0f:77:a8:5b:d4:44:ed:43:dc:33:6b:2e: 48:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B1:5D:58:92:F2:A0:01:4C:59:01:0B:79:44:85:46:42:E0:D5:DA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202201.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5400::/40 Signature Algorithm: sha256WithRSAEncryption 12:c4:61:d6:23:cc:03:cb:15:ea:39:19:0d:e1:cd:be:f1:11: 47:d7:82:c7:a5:8b:84:26:a6:75:82:3d:ef:df:96:bc:cb:47: c6:88:53:ac:e0:d6:6d:e2:5f:86:7b:67:61:b8:a4:d1:2e:0b: 7d:3d:f5:db:09:07:2f:12:c2:a9:d6:e4:98:ca:c3:ee:43:ec: 01:4d:83:20:33:cd:4f:37:a2:1c:4c:ab:4d:27:61:38:95:a4: 00:8c:dc:80:a0:8b:5c:40:10:4e:6c:7d:98:9a:1b:e1:11:fd: f1:c9:53:84:5e:f3:fa:85:4d:60:a4:52:62:00:67:a8:41:32: 52:aa:b7:ba:b1:89:24:bb:92:7e:6e:8b:3e:6d:1d:0b:fd:d9: bc:ca:df:17:33:63:b9:1d:24:a1:43:1b:e1:dd:9a:51:1b:f9: 70:71:df:69:2a:73:ca:72:ab:2b:da:70:99:22:46:32:5f:b6: 63:f1:98:68:a6:04:fb:d6:69:89:e7:3f:5b:2b:e3:d4:35:e4: 89:88:7e:3d:74:10:77:77:79:34:6e:f5:7f:26:b1:2f:0c:ed: 4b:7d:97:60:98:1d:50:7a:b5:54:ad:cb:03:6b:3c:e2:ee:52: f4:bc:ae:ea:44:b8:0e:48:6f:b3:9e:72:1e:c6:94:b3:26:4e: 9c:b2:1e:45 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVUoi2jMhHnUsQHl/I8UiZjjlqGEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzZaFw0yNzA2MDQwNzEyMzZaMDMxMTAvBgNV BAMTKDgxQjE1RDU4OTJGMkEwMDE0QzU5MDEwQjc5NDQ4NTQ2NDJFMEQ1REEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWJ4kffFrhCsDqg1Rx7vnJ1hRe uEgGYLLl/v4NZqs7HRbZ9dtDS3bxspFJ4uJC23AX0LRtzeJFG/hJskHFRyEIA0tB HgRNnlTINDrBZdUWL+zjUd86vyat1+iqXBrCTLbZXrajGKaxvhc+Aa2kH3Ymzkfr LjoXRBnu5GsNYv+Hnx6mkp/tYOIG8qDvSkjWWv2l8IF4niJZmD9W8BxtFADIoa36 jkRh7MvB2S7fQXMSECzfDOsEzeyTQkkF1Rb+zSKuH7NX7Ot2dFXpD1DQk3A5MY5t T2C4YxBC9Vbo5T6UTdcDwGUVupDMNLlLVNpC3mM2DQ93qFvURO1D3DNrLkhJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgbFdWJLyoAFMWQELeUSFRkLg1dowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAyMjAxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFQwDQYJKoZIhvcNAQELBQADggEBABLE YdYjzAPLFeo5GQ3hzb7xEUfXgseli4QmpnWCPe/flrzLR8aIU6zg1m3iX4Z7Z2G4 pNEuC3099dsJBy8SwqnW5JjKw+5D7AFNgyAzzU83ohxMq00nYTiVpACM3ICgi1xA EE5sfZiaG+ER/fHJU4Re8/qFTWCkUmIAZ6hBMlKqt7qxiSS7kn5uiz5tHQv92bzK 3xczY7kdJKFDG+HdmlEb+XBx32kqc8pyqyvacJkiRjJftmPxmGimBPvWaYnnP1sr 49Q15ImIfj10EHd3eTRu9X8msS8M7Ut9l2CYHVB6tVStywNrPOLuUvS8rupEuA5I b7Oech7GlLMmTpyyHkU= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:27 2026 by rpki-client