$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203156.roa File: AS203156.roa (raw, json) Hash identifier: ZMVEkjnQvKAOoR0kQOgX8TNzaG76Hls05LJ+LX23PSA= Subject key identifier: 40:EC:CF:26:75:A7:96:B6:AC:03:57:17:04:68:7C:A5:6E:0D:EB:9D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 64D055205FFED5F9303AA0218BE23D55EE91D4E5 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203156.roa Signing time: Fri 05 Jun 2026 07:12:41 +0000 ROA not before: Fri 05 Jun 2026 07:07:41 +0000 ROA not after: Fri 04 Jun 2027 07:12:41 +0000 asID: 203156 IP address blocks: 2a05:dfc1:2d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:d0:55:20:5f:fe:d5:f9:30:3a:a0:21:8b:e2:3d:55:ee:91:d4:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:41 2026 GMT Not After : Jun 4 07:12:41 2027 GMT Subject: CN=40ECCF2675A796B6AC03571704687CA56E0DEB9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:eb:ea:ec:77:bb:2a:69:7f:34:8c:5a:a1:4d: 3d:14:ec:a7:3f:88:27:9a:02:3b:6e:6e:ab:b8:65: 23:29:34:4b:73:a1:97:45:98:47:50:61:cc:01:7c: a1:ac:69:fd:37:9b:3e:aa:d1:71:70:f5:7e:15:46: c1:e8:df:43:6e:76:42:ef:d9:c5:59:73:86:72:3e: a6:ee:d3:f3:11:47:80:75:cf:db:48:1f:53:3e:73: 57:86:77:21:30:aa:ca:4b:ad:aa:f8:ec:78:1e:80: 75:8b:c2:88:8d:5a:e5:88:8d:cf:c8:c9:6c:6a:ea: b3:01:c0:77:68:6f:fb:6a:a6:82:69:36:f9:53:b9: 5a:19:6a:1d:d5:7b:ea:6b:ad:2d:cd:54:77:e2:7b: 3a:23:4b:e3:67:8a:89:e9:ca:23:c3:09:35:47:4e: 36:8f:ef:7e:e8:70:49:cf:91:3a:be:5f:03:96:82: 55:ce:ae:c4:20:47:05:a3:89:dc:ec:20:fd:07:94: 30:db:f3:41:15:31:ed:26:e2:08:97:5a:99:15:a3: 9a:e3:fb:4d:06:20:0b:8b:a7:48:fc:cf:66:5a:ef: e9:83:b1:1c:d7:94:be:e3:dc:59:ba:17:2f:0c:38: 3a:af:80:e0:de:9c:5a:cd:ac:05:e1:1a:b0:05:3f: 3f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:EC:CF:26:75:A7:96:B6:AC:03:57:17:04:68:7C:A5:6E:0D:EB:9D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203156.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2d00::/40 Signature Algorithm: sha256WithRSAEncryption 70:fe:2d:10:99:6c:fb:5a:96:df:2f:ce:6c:cd:94:fc:3e:16: 33:6d:18:c5:d0:41:a3:f1:10:82:bf:5d:9f:b6:4c:3f:fa:13: 8b:bd:55:61:26:15:8e:d5:16:ea:63:46:27:b2:38:88:f5:b1: ff:a1:c0:65:40:27:a3:aa:e4:db:ed:06:68:4a:b4:a2:c5:ae: 8b:0f:f6:e7:58:f2:37:10:ef:f3:1a:2a:c8:67:2f:0a:84:97: 41:33:81:c6:b9:97:c8:b0:fd:a8:8a:ef:a2:b5:18:09:b7:4b: 54:d6:3a:67:42:22:dc:b4:5f:ab:e2:61:f4:40:1c:ec:b0:60: a2:c5:33:14:95:de:e3:2c:0f:5b:b4:df:a9:b8:8a:11:02:d0: 1e:8f:b3:c9:8b:05:60:df:c9:6a:c0:bf:17:a3:95:3a:cd:3d: 52:b7:35:56:d0:74:5a:a9:ae:ca:3b:7e:2a:12:0e:4a:76:b7: b4:69:8a:c9:11:33:72:59:30:ea:54:4f:69:a3:96:e8:bd:1a: 90:82:7f:4d:51:09:32:43:f6:49:da:2e:24:41:7f:9f:cf:1e: 9a:d5:54:f6:6e:41:f2:1a:70:cb:49:74:08:d7:0a:64:cc:0f: 64:6c:ee:9b:5c:4e:e1:d7:99:2d:6b:db:02:72:5f:02:70:97: 6d:c1:76:bc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZNBVIF/+1fkwOqAhi+I9Ve6R1OUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDFaFw0yNzA2MDQwNzEyNDFaMDMxMTAvBgNV BAMTKDQwRUNDRjI2NzVBNzk2QjZBQzAzNTcxNzA0Njg3Q0E1NkUwREVCOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs6+rsd7sqaX80jFqhTT0U7Kc/ iCeaAjtubqu4ZSMpNEtzoZdFmEdQYcwBfKGsaf03mz6q0XFw9X4VRsHo30NudkLv 2cVZc4ZyPqbu0/MRR4B1z9tIH1M+c1eGdyEwqspLrar47HgegHWLwoiNWuWIjc/I yWxq6rMBwHdob/tqpoJpNvlTuVoZah3Ve+prrS3NVHfiezojS+NnionpyiPDCTVH TjaP737ocEnPkTq+XwOWglXOrsQgRwWjidzsIP0HlDDb80EVMe0m4giXWpkVo5rj +00GIAuLp0j8z2Za7+mDsRzXlL7j3Fm6Fy8MODqvgODenFrNrAXhGrAFPz+1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQOzPJnWnlrasA1cXBGh8pW4N650wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzMTU2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwS0wDQYJKoZIhvcNAQELBQADggEBAHD+ LRCZbPtalt8vzmzNlPw+FjNtGMXQQaPxEIK/XZ+2TD/6E4u9VWEmFY7VFupjRiey OIj1sf+hwGVAJ6Oq5NvtBmhKtKLFrosP9udY8jcQ7/MaKshnLwqEl0Ezgca5l8iw /aiK76K1GAm3S1TWOmdCIty0X6viYfRAHOywYKLFMxSV3uMsD1u036m4ihEC0B6P s8mLBWDfyWrAvxejlTrNPVK3NVbQdFqprso7fioSDkp2t7RpiskRM3JZMOpUT2mj lui9GpCCf01RCTJD9knaLiRBf5/PHprVVPZuQfIacMtJdAjXCmTMD2Rs7ptcTuHX mS1r2wJyXwJwl23Bdrw= -----END CERTIFICATE-----Generated at Sat Jun 13 08:13:04 2026 by rpki-client