$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202338.roa File: AS202338.roa (raw, json) Hash identifier: gJylBdRhbyMVDsLaAEh4Ip5wChKiMS5yZMBVa/1lmUI= Subject key identifier: 21:69:11:81:6C:52:CD:8E:38:BB:73:5F:0E:CC:D7:E9:A0:08:CE:9E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 54AA6ACF3DC58DCC14B0F7A56BCC59F9B0F7172E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202338.roa Signing time: Fri 05 Jun 2026 07:12:47 +0000 ROA not before: Fri 05 Jun 2026 07:07:47 +0000 ROA not after: Fri 04 Jun 2027 07:12:47 +0000 asID: 202338 IP address blocks: 2a05:dfc1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:aa:6a:cf:3d:c5:8d:cc:14:b0:f7:a5:6b:cc:59:f9:b0:f7:17:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:47 2026 GMT Not After : Jun 4 07:12:47 2027 GMT Subject: CN=216911816C52CD8E38BB735F0ECCD7E9A008CE9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:63:33:69:61:21:7b:59:63:41:b0:69:53:13: 16:c6:7d:bc:63:41:e2:f6:a9:f4:9f:fb:41:5f:d5: e8:e3:92:3f:1d:f7:29:dc:81:33:29:72:ee:c3:c1: 4d:22:7c:31:66:8e:8b:ef:74:c5:85:aa:ea:ab:72: d9:9b:82:1e:f9:9b:a7:bd:24:99:21:c6:0e:a5:e9: ae:29:ae:ca:e6:fe:e8:84:ca:f6:89:ac:78:d9:19: aa:4c:07:f5:a5:46:ff:51:de:1b:8d:99:74:23:e5: 42:29:30:9a:96:e8:37:59:e0:b2:d0:16:60:12:60: 89:33:29:28:36:54:4e:0b:c0:d5:b0:ed:4e:bd:74: ab:c7:62:b9:f0:89:6a:b9:a7:38:0c:18:31:a7:4c: 48:d1:e0:db:2e:e5:5f:b5:4c:6c:72:a9:9e:b2:2f: d5:f0:a4:9e:5b:dd:9f:b3:ad:43:c3:fc:06:5b:8c: 79:a6:1d:c0:e6:47:75:e0:99:64:1c:51:c3:f8:32: 55:04:46:03:ce:ff:db:8a:3a:c6:57:ee:a0:81:af: 19:33:8c:44:ba:32:09:83:13:c5:d3:1e:b2:3d:a6: 05:28:15:3d:74:31:72:c0:a7:5b:f3:26:2e:dc:e1: db:92:5d:a7:be:43:d1:92:df:a3:a9:74:4c:be:c5: f3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:69:11:81:6C:52:CD:8E:38:BB:73:5F:0E:CC:D7:E9:A0:08:CE:9E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS202338.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8800::/40 Signature Algorithm: sha256WithRSAEncryption cf:08:ac:a7:e4:51:dd:16:85:f6:2d:cb:52:ae:f4:21:7e:ee: 6d:33:da:20:b1:77:ba:0e:36:73:e5:cb:7b:db:5c:74:7f:c1: 49:a5:69:b3:b5:dd:e9:bf:38:cc:2c:af:ad:7d:9d:f6:f3:8b: 11:27:a5:69:f4:e0:42:f1:4d:4e:bd:23:ba:e3:ab:52:30:f2: 14:11:3b:99:67:43:42:31:4b:3b:de:3a:91:30:59:77:57:b2: e0:60:22:8f:a0:37:c6:a4:14:08:44:b8:f9:61:7f:2b:93:37: 0b:06:5b:3d:9c:42:1b:10:46:08:ac:67:9b:56:f7:47:ed:e1: fa:ab:d4:32:0f:17:fa:19:7b:2f:67:9b:55:21:f8:14:18:c1: 91:0c:89:5e:c6:17:4f:af:71:4b:1b:80:74:f3:d8:ad:19:5b: 5a:ed:d0:8f:54:9e:0d:cf:0d:f2:a0:a4:9f:be:99:9a:50:bc: a3:f6:13:00:99:5e:bb:00:3f:71:11:c6:5b:c6:2e:b9:6d:b9: bb:03:a5:59:8c:4c:e7:c2:59:09:22:8b:84:b2:e7:aa:f0:68: aa:90:3b:7f:4a:49:00:b6:8b:bc:f7:b7:11:49:cf:21:85:b8: d3:d4:8a:33:f5:05:3b:01:7b:7f:72:2c:3b:0d:16:af:d4:c0: a1:f7:1d:18 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVKpqzz3FjcwUsPela8xZ+bD3Fy4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDdaFw0yNzA2MDQwNzEyNDdaMDMxMTAvBgNV BAMTKDIxNjkxMTgxNkM1MkNEOEUzOEJCNzM1RjBFQ0NEN0U5QTAwOENFOUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVYzNpYSF7WWNBsGlTExbGfbxj QeL2qfSf+0Ff1ejjkj8d9yncgTMpcu7DwU0ifDFmjovvdMWFquqrctmbgh75m6e9 JJkhxg6l6a4prsrm/uiEyvaJrHjZGapMB/WlRv9R3huNmXQj5UIpMJqW6DdZ4LLQ FmASYIkzKSg2VE4LwNWw7U69dKvHYrnwiWq5pzgMGDGnTEjR4Nsu5V+1TGxyqZ6y L9XwpJ5b3Z+zrUPD/AZbjHmmHcDmR3XgmWQcUcP4MlUERgPO/9uKOsZX7qCBrxkz jES6MgmDE8XTHrI9pgUoFT10MXLAp1vzJi7c4duSXae+Q9GS36OpdEy+xfNtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIWkRgWxSzY44u3NfDszX6aAIzp4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAyMzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYgwDQYJKoZIhvcNAQELBQADggEBAM8I rKfkUd0WhfYty1Ku9CF+7m0z2iCxd7oONnPly3vbXHR/wUmlabO13em/OMwsr619 nfbzixEnpWn04ELxTU69I7rjq1Iw8hQRO5lnQ0IxSzveOpEwWXdXsuBgIo+gN8ak FAhEuPlhfyuTNwsGWz2cQhsQRgisZ5tW90ft4fqr1DIPF/oZey9nm1Uh+BQYwZEM iV7GF0+vcUsbgHTz2K0ZW1rt0I9Ung3PDfKgpJ++mZpQvKP2EwCZXrsAP3ERxlvG LrltubsDpVmMTOfCWQkii4Sy56rwaKqQO39KSQC2i7z3txFJzyGFuNPUijP1BTsB e39yLDsNFq/UwKH3HRg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:57 2026 by rpki-client