$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203873.roa File: AS203873.roa (raw, json) Hash identifier: 9PCAudriFFzeXpQEC7NGc2c6qgkMQ8/zcVUUiX7Djdw= Subject key identifier: A5:4F:DA:3E:15:C2:FB:C1:BA:45:AC:59:C8:2A:AA:79:B8:F4:BE:CF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5F659D3CBD0F7FCE33C95998071D16FB86E445C0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203873.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 203873 IP address blocks: 2a0a:6040:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:65:9d:3c:bd:0f:7f:ce:33:c9:59:98:07:1d:16:fb:86:e4:45:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=A54FDA3E15C2FBC1BA45AC59C82AAA79B8F4BECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4d:38:fe:f3:dd:ee:b8:39:4c:c5:c0:a1:63: 92:52:96:ef:9a:36:de:f9:75:ac:32:74:26:62:6a: 19:a8:4b:a1:6e:b3:8a:3d:59:f2:ad:65:44:0d:b3: e4:55:5c:1a:b2:1a:fe:2e:7b:84:e4:23:1e:38:22: 93:86:b4:2c:be:9f:49:88:c3:b9:55:d1:04:79:54: e7:0b:e5:d0:71:7d:9c:bd:bd:0a:6d:66:6c:98:59: 8a:8c:ff:b3:25:14:1e:ae:96:21:e7:9f:0f:32:b1: a3:5f:4e:6a:ae:82:9e:d3:e4:e4:1d:9b:ab:a6:bc: 66:7a:1b:41:7d:72:b9:f0:1a:d8:7e:c9:75:8a:1d: 6b:2a:cf:a1:e4:64:fb:d3:47:8e:d8:18:ee:1c:a5: 83:42:ce:28:97:cb:82:4a:e2:6a:0d:53:07:ed:be: 03:01:d2:65:c0:13:7a:be:31:7b:10:8e:e8:c4:32: db:95:03:ab:0c:eb:21:ec:3c:b0:15:f6:ff:c4:ad: f5:a5:3b:a1:ce:41:ff:4d:ea:c9:ca:49:d5:c4:8a: 4f:c4:77:f7:c4:6b:53:ed:dd:01:b7:99:85:59:ae: dd:39:c0:4c:45:ed:9a:b1:9e:fc:ad:eb:35:2f:09: 8c:aa:2a:6d:b3:15:43:1c:ff:36:b3:e5:4b:e3:31: be:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:4F:DA:3E:15:C2:FB:C1:BA:45:AC:59:C8:2A:AA:79:B8:F4:BE:CF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fc00::/40 Signature Algorithm: sha256WithRSAEncryption 6e:a3:f0:e5:20:6a:c6:7b:69:7b:00:6c:b4:9d:76:a0:15:28: a8:93:0c:b1:88:7d:cf:f0:98:33:8b:96:c4:69:4c:69:4d:50: b0:51:ca:d0:fb:d1:7b:d0:39:21:ac:4a:92:28:60:0f:ec:27: 68:3f:f9:14:63:3d:ec:8b:f4:5e:5c:5e:0d:e9:61:5d:94:9b: 76:bc:8c:2a:5b:c1:6b:e6:47:f5:a3:53:ab:d0:86:3a:3e:68: 0d:90:5e:6f:d3:e4:9e:03:1b:bf:b3:f3:59:1a:0e:27:5b:26: fa:99:59:71:21:9f:f2:6e:18:1d:92:59:1f:5e:57:f6:81:4b: a7:ac:4a:c6:04:04:5d:3b:2a:c1:e4:ff:23:10:cc:d4:40:fd: 17:20:a4:d6:8d:a8:89:1f:0d:7a:52:5e:b3:c2:0b:56:38:3c: 8f:f1:36:92:18:c2:e8:79:eb:2b:fb:f0:b8:29:7b:e3:9c:07: dc:9b:c0:eb:e2:bf:ae:92:53:7c:7e:fc:ec:ee:2a:da:99:3c: d2:be:1b:47:ee:a0:ff:91:1c:e0:1f:11:c3:e1:ae:eb:66:ee: 40:1f:11:03:df:09:ed:08:b7:9f:62:30:c4:aa:cb:5c:7a:7f: a7:1a:26:8a:cb:02:72:51:63:db:3d:e5:1d:e8:23:c9:36:13: 3b:64:cc:4a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX2WdPL0Pf84zyVmYBx0W+4bkRcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKEE1NEZEQTNFMTVDMkZCQzFCQTQ1QUM1OUM4MkFBQTc5QjhGNEJFQ0YwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaTTj+893uuDlMxcChY5JSlu+a Nt75dawydCZiahmoS6Fus4o9WfKtZUQNs+RVXBqyGv4ue4TkIx44IpOGtCy+n0mI w7lV0QR5VOcL5dBxfZy9vQptZmyYWYqM/7MlFB6uliHnnw8ysaNfTmqugp7T5OQd m6umvGZ6G0F9crnwGth+yXWKHWsqz6HkZPvTR47YGO4cpYNCziiXy4JK4moNUwft vgMB0mXAE3q+MXsQjujEMtuVA6sM6yHsPLAV9v/ErfWlO6HOQf9N6snKSdXEik/E d/fEa1Pt3QG3mYVZrt05wExF7Zqxnvyt6zUvCYyqKm2zFUMc/zaz5UvjMb5hAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUpU/aPhXC+8G6RaxZyCqqebj0vs8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzODczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPwwDQYJKoZIhvcNAQELBQADggEBAG6j 8OUgasZ7aXsAbLSddqAVKKiTDLGIfc/wmDOLlsRpTGlNULBRytD70XvQOSGsSpIo YA/sJ2g/+RRjPeyL9F5cXg3pYV2Um3a8jCpbwWvmR/WjU6vQhjo+aA2QXm/T5J4D G7+z81kaDidbJvqZWXEhn/JuGB2SWR9eV/aBS6esSsYEBF07KsHk/yMQzNRA/Rcg pNaNqIkfDXpSXrPCC1Y4PI/xNpIYwuh56yv78Lgpe+OcB9ybwOviv66SU3x+/Ozu KtqZPNK+G0fuoP+RHOAfEcPhrutm7kAfEQPfCe0It59iMMSqy1x6f6caJorLAnJR Y9s95R3oI8k2EztkzEo= -----END CERTIFICATE-----Generated at Wed Nov 5 03:49:04 2025 by rpki-client