$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203539.roa File: AS203539.roa (raw, json) Hash identifier: VmECFhwehHy9h5mPYRNHHk9z+3hOg+s/IaRrLv0iSqY= Subject key identifier: 85:7C:54:7B:8C:E5:8A:9E:23:D6:10:F7:93:06:29:2B:37:DE:43:AD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5B1E6E4705E84B000FD190BC3FC078093CE5438D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203539.roa Signing time: Fri 05 Jun 2026 07:12:22 +0000 ROA not before: Fri 05 Jun 2026 07:07:22 +0000 ROA not after: Fri 04 Jun 2027 07:12:22 +0000 asID: 203539 IP address blocks: 2a05:dfc1:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:1e:6e:47:05:e8:4b:00:0f:d1:90:bc:3f:c0:78:09:3c:e5:43:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:22 2026 GMT Not After : Jun 4 07:12:22 2027 GMT Subject: CN=857C547B8CE58A9E23D610F79306292B37DE43AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c6:09:55:23:05:57:b1:39:66:8b:27:54:26: 9c:af:c8:3a:86:be:08:eb:ce:d4:72:91:a0:51:1e: 19:cd:be:fa:f7:4c:73:f7:94:04:24:80:23:61:95: 55:30:e8:e4:46:eb:d1:1c:73:d0:52:63:87:f3:e8: 85:64:8f:ea:92:14:6a:ea:2e:29:82:36:38:ef:14: a3:e3:96:78:15:e3:92:54:ab:9c:dc:e2:e9:a7:f6: 52:41:32:b3:67:f8:02:39:5c:7e:c0:a2:5f:af:d7: d3:53:e6:5f:c5:25:f6:ee:b2:7c:bb:ff:9b:9a:2d: 92:12:f3:5d:13:47:29:41:e6:60:1b:35:30:88:88: f6:05:bf:5a:0b:3c:d2:e3:02:35:2b:1f:83:01:ad: 4d:14:39:19:b9:a5:c3:87:4a:be:69:9f:80:62:be: 84:60:0e:e4:8e:b4:c3:54:cb:e1:61:0c:c1:3a:61: e5:d4:d5:e1:fd:7a:6d:bd:47:84:f6:05:4c:6d:b5: fe:9d:a5:85:40:85:dc:6d:1e:18:07:e0:f8:2d:b0: d3:ec:c7:b9:1c:f4:d3:30:10:6f:12:67:bb:cb:30: 1f:c7:d9:a5:15:6d:c2:1f:92:25:90:d9:e7:36:f1: 84:f6:7f:8b:36:54:a7:d8:73:b3:b2:34:6b:6f:21: ca:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7C:54:7B:8C:E5:8A:9E:23:D6:10:F7:93:06:29:2B:37:DE:43:AD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203539.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6500::/40 Signature Algorithm: sha256WithRSAEncryption 7f:0c:d4:09:48:bd:a8:5d:80:d9:3d:62:28:9b:79:db:7e:a8: 3c:8a:22:f9:ee:06:0c:1b:18:d9:c2:96:83:78:0a:6f:56:5d: 1b:25:cb:ed:20:1d:46:23:3b:3c:57:d4:7d:f7:e1:68:17:44: 6c:1d:93:9a:1b:e7:6a:7b:13:b9:68:1f:5e:c3:a7:f5:5f:48: 42:0e:60:20:b2:ce:0b:18:1f:7d:42:e9:5a:37:00:14:43:01: 31:32:cf:37:af:58:b6:69:14:43:96:66:b3:e5:65:f2:56:39: 60:a3:95:f1:00:d9:39:1d:1f:4f:57:97:fe:71:ec:cd:b6:20: ef:2c:64:42:dd:d5:ef:0d:46:4f:5c:a8:de:fa:23:9b:64:f1: 29:bc:0f:c7:08:ea:74:d5:2e:6b:a3:8b:41:06:ab:b7:59:ce: e1:ce:3e:79:b5:ed:6e:14:04:0a:77:ad:4d:dd:3c:2f:f1:8c: 5f:50:67:b4:88:5d:7e:2e:00:5b:45:33:a9:57:69:48:cc:60: 58:2f:3b:7c:99:56:35:af:15:a6:17:a4:10:70:78:b3:a9:e1: b2:f0:cd:25:22:2e:7b:aa:d9:c1:14:f4:55:e3:43:83:0d:aa: 39:7e:6a:5d:24:39:0f:81:2e:a3:4d:aa:32:69:fb:9c:18:39: f3:96:66:26 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWx5uRwXoSwAP0ZC8P8B4CTzlQ40wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjJaFw0yNzA2MDQwNzEyMjJaMDMxMTAvBgNV BAMTKDg1N0M1NDdCOENFNThBOUUyM0Q2MTBGNzkzMDYyOTJCMzdERTQzQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUxglVIwVXsTlmiydUJpyvyDqG vgjrztRykaBRHhnNvvr3THP3lAQkgCNhlVUw6ORG69Ecc9BSY4fz6IVkj+qSFGrq LimCNjjvFKPjlngV45JUq5zc4umn9lJBMrNn+AI5XH7Aol+v19NT5l/FJfbusny7 /5uaLZIS810TRylB5mAbNTCIiPYFv1oLPNLjAjUrH4MBrU0UORm5pcOHSr5pn4Bi voRgDuSOtMNUy+FhDME6YeXU1eH9em29R4T2BUxttf6dpYVAhdxtHhgH4PgtsNPs x7kc9NMwEG8SZ7vLMB/H2aUVbcIfkiWQ2ec28YT2f4s2VKfYc7OyNGtvIcpRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhXxUe4zlip4j1hD3kwYpKzfeQ60wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzNTM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWUwDQYJKoZIhvcNAQELBQADggEBAH8M 1AlIvahdgNk9Yiibedt+qDyKIvnuBgwbGNnCloN4Cm9WXRsly+0gHUYjOzxX1H33 4WgXRGwdk5ob52p7E7loH17Dp/VfSEIOYCCyzgsYH31C6Vo3ABRDATEyzzevWLZp FEOWZrPlZfJWOWCjlfEA2TkdH09Xl/5x7M22IO8sZELd1e8NRk9cqN76I5tk8Sm8 D8cI6nTVLmuji0EGq7dZzuHOPnm17W4UBAp3rU3dPC/xjF9QZ7SIXX4uAFtFM6lX aUjMYFgvO3yZVjWvFaYXpBBweLOp4bLwzSUiLnuq2cEU9FXjQ4MNqjl+al0kOQ+B LqNNqjJp+5wYOfOWZiY= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:44 2026 by rpki-client