$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203333.roa File: AS203333.roa (raw, json) Hash identifier: HQxfI6tAZ6ib5t/fz38s2mV4527oXSZfUNbeFBFIX3o= Subject key identifier: E7:63:D6:02:92:94:97:77:5A:A5:66:DD:5F:C8:65:28:46:5E:2C:8E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3D37309DE540D1A7866E06E757A02674EAC88A4E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203333.roa Signing time: Fri 05 Jun 2026 07:12:39 +0000 ROA not before: Fri 05 Jun 2026 07:07:39 +0000 ROA not after: Fri 04 Jun 2027 07:12:39 +0000 asID: 203333 IP address blocks: 2a0a:6040:af00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:37:30:9d:e5:40:d1:a7:86:6e:06:e7:57:a0:26:74:ea:c8:8a:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:39 2026 GMT Not After : Jun 4 07:12:39 2027 GMT Subject: CN=E763D602929497775AA566DD5FC86528465E2C8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:65:dd:2c:df:73:37:98:b0:99:f5:c2:5b:22: ae:c7:b9:39:f3:21:db:8d:c4:0e:d2:c9:bd:90:7c: 98:39:67:38:1f:a1:80:43:8a:5a:74:aa:6c:ef:ed: e1:7d:11:24:b6:8b:16:07:cf:fa:06:76:e3:a9:a5: 81:4b:3e:65:94:ad:e6:b1:81:6d:49:16:15:e2:c4: a8:21:14:22:85:09:81:c9:52:80:e4:f8:33:28:86: 21:ec:a7:32:16:f9:2f:18:99:27:a4:b3:61:d1:fa: a3:0f:20:fd:1f:b3:eb:6f:64:89:1b:15:f9:8d:58: b8:d3:12:97:4c:31:8b:61:d2:fb:0e:31:6a:b4:0d: 61:7b:80:bb:a9:a3:d6:c8:78:6a:46:6b:11:bf:ed: 00:87:de:a5:30:b8:2d:12:c1:33:9e:a8:2e:c4:91: 9f:55:ef:3a:a0:16:75:e9:3e:07:0b:12:35:50:01: 3a:9d:b1:aa:17:f3:80:a0:e1:1c:e7:64:d1:fb:d4: 14:00:33:3b:db:63:d8:d8:92:8e:0d:3a:60:40:64: b4:b0:35:dd:55:d6:4d:61:4e:c8:41:06:8b:86:78: 50:bc:df:9b:e4:35:d1:0a:70:35:b9:d4:a6:5d:c3: ff:9a:a2:04:b7:51:76:2d:05:9b:11:ef:6d:d7:73: 60:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:63:D6:02:92:94:97:77:5A:A5:66:DD:5F:C8:65:28:46:5E:2C:8E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203333.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:af00::/40 Signature Algorithm: sha256WithRSAEncryption a5:bb:06:5b:40:ec:73:bc:2b:d9:3c:e0:32:6b:ec:dc:e7:51: bf:4f:76:03:a2:7d:8a:81:67:cb:2a:6a:67:66:5a:06:7c:44: 5c:e2:3a:ef:6c:38:b3:ee:d4:0e:07:49:e9:85:ad:dd:06:1e: 08:69:93:27:ab:06:ed:37:11:45:11:3e:c7:e4:bf:bf:84:00: 46:99:ad:87:5a:08:b2:1a:ec:7d:9d:5c:31:f4:26:20:e1:55: 4e:e0:40:bf:2b:78:25:2b:56:13:68:b1:69:22:f8:c8:92:80: 6a:42:b1:7e:f3:dc:76:a3:48:d2:53:a2:f7:54:c1:09:60:2a: 3e:5d:6a:db:e3:f7:88:45:4e:e3:ec:b0:b1:b5:34:e1:ec:8f: 7b:95:a4:1e:a1:52:3e:12:fa:04:aa:33:f2:59:6a:b0:59:05: 4c:ad:2b:70:c1:bf:5c:50:09:0c:37:12:94:ec:3c:80:c8:b2: a4:be:6f:99:d5:7a:23:82:bd:57:2b:da:88:20:f1:96:6f:57: 98:95:d5:bb:55:d2:b2:ea:0d:18:12:d0:32:f0:d9:5c:a2:0f: 75:51:72:d6:6c:48:b9:bc:e7:24:7f:0d:04:93:97:01:e3:52: 06:8a:82:5c:3a:36:0d:75:62:54:e8:a0:c6:66:a1:34:19:4e: f6:91:fd:75 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPTcwneVA0aeGbgbnV6AmdOrIik4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzlaFw0yNzA2MDQwNzEyMzlaMDMxMTAvBgNV BAMTKEU3NjNENjAyOTI5NDk3Nzc1QUE1NjZERDVGQzg2NTI4NDY1RTJDOEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgZd0s33M3mLCZ9cJbIq7HuTnz IduNxA7Syb2QfJg5ZzgfoYBDilp0qmzv7eF9ESS2ixYHz/oGduOppYFLPmWUreax gW1JFhXixKghFCKFCYHJUoDk+DMohiHspzIW+S8YmSeks2HR+qMPIP0fs+tvZIkb FfmNWLjTEpdMMYth0vsOMWq0DWF7gLupo9bIeGpGaxG/7QCH3qUwuC0SwTOeqC7E kZ9V7zqgFnXpPgcLEjVQATqdsaoX84Cg4RznZNH71BQAMzvbY9jYko4NOmBAZLSw Nd1V1k1hTshBBouGeFC835vkNdEKcDW51KZdw/+aogS3UXYtBZsR723Xc2BpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU52PWApKUl3dapWbdX8hlKEZeLI4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzMzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK8wDQYJKoZIhvcNAQELBQADggEBAKW7 BltA7HO8K9k84DJr7NznUb9PdgOifYqBZ8sqamdmWgZ8RFziOu9sOLPu1A4HSemF rd0GHghpkyerBu03EUURPsfkv7+EAEaZrYdaCLIa7H2dXDH0JiDhVU7gQL8reCUr VhNosWki+MiSgGpCsX7z3HajSNJTovdUwQlgKj5datvj94hFTuPssLG1NOHsj3uV pB6hUj4S+gSqM/JZarBZBUytK3DBv1xQCQw3EpTsPIDIsqS+b5nVeiOCvVcr2ogg 8ZZvV5iV1btV0rLqDRgS0DLw2VyiD3VRctZsSLm85yR/DQSTlwHjUgaKglw6Ng11 YlTooMZmoTQZTvaR/XU= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:18 2026 by rpki-client