$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203873.roa File: AS203873.roa (raw, json) Hash identifier: HL5lMY3fKIBRcLHwHGzwcZORU7j9nYxQTo+vWs8zro8= Subject key identifier: 8A:8D:6B:DB:74:E1:27:8B:F5:4C:C6:3A:13:72:AD:F4:6E:FC:AB:BD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 697FD0B6FA07F1FED7A1C1537A8B4B8AE9BA3CDF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203873.roa Signing time: Fri 05 Jun 2026 07:12:39 +0000 ROA not before: Fri 05 Jun 2026 07:07:39 +0000 ROA not after: Fri 04 Jun 2027 07:12:39 +0000 asID: 203873 IP address blocks: 2a0a:6040:fc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:7f:d0:b6:fa:07:f1:fe:d7:a1:c1:53:7a:8b:4b:8a:e9:ba:3c:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:39 2026 GMT Not After : Jun 4 07:12:39 2027 GMT Subject: CN=8A8D6BDB74E1278BF54CC63A1372ADF46EFCABBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:be:e9:d0:4b:98:87:d4:a6:48:6c:d0:5c:3a: e5:73:22:a2:ab:9b:1c:dd:d3:f2:3a:7e:bc:a1:93: 10:1a:de:e1:24:2d:ea:f7:e5:c6:53:70:82:63:eb: 46:87:c5:45:ed:43:65:fd:04:15:0f:d0:fe:68:dd: 7f:cc:3f:a1:98:f0:0d:f7:cd:c3:eb:e4:ac:ad:d7: 72:fc:34:e0:bd:3d:bc:4e:63:e9:64:ff:f3:63:ad: cd:67:47:4b:33:1b:8d:98:f0:98:54:60:ac:24:5f: 42:45:87:7f:ff:47:d6:71:d8:2f:c6:dd:11:33:0b: e5:03:ea:bd:e9:da:d7:6d:cf:1b:56:e5:e4:70:b6: 63:db:a0:4a:2a:2f:16:bc:9c:f2:66:69:e6:eb:92: 5c:5c:46:c6:9d:57:ee:ef:a7:e7:ed:76:47:2a:df: da:26:42:aa:b1:48:ed:b4:db:61:97:e8:14:3a:4e: 2c:69:2e:69:9d:c7:f3:2d:bb:ee:61:e3:fc:56:7e: 33:86:a9:d4:f8:55:58:40:60:5c:4e:bc:a1:66:43: b9:db:28:8a:a8:7d:54:9c:27:fb:28:b5:7b:a8:b7: b0:4c:0f:61:7b:49:d9:c1:62:c9:a1:99:bd:f2:46: 6f:c7:9c:bd:79:cb:0d:1a:4f:9c:3a:8a:5e:d6:9e: 33:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:8D:6B:DB:74:E1:27:8B:F5:4C:C6:3A:13:72:AD:F4:6E:FC:AB:BD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS203873.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fc00::/40 Signature Algorithm: sha256WithRSAEncryption a4:7a:4b:23:a2:5c:5a:74:49:23:c5:00:f3:6f:98:d3:d7:3a: 6c:97:61:a9:31:d3:a1:e5:b7:b8:a2:13:68:9b:81:7e:2e:85: 08:48:54:9b:bc:f7:1d:1e:be:f5:ca:8a:73:5d:2c:01:34:b8: 79:1d:ce:f5:69:bf:ce:a2:50:49:82:73:8c:7f:71:21:36:3b: 1f:8b:e1:19:b2:8f:34:3c:cc:81:b1:df:da:a6:db:82:2a:05: 9d:2b:dc:26:a5:47:50:81:7d:a4:82:f1:70:d3:b2:15:dc:d0: e7:da:3a:a7:f4:fc:fd:0d:76:5e:88:9f:45:87:d0:5f:ab:29: b2:84:e9:d8:13:f2:6b:21:cf:0e:43:97:b7:88:b9:b3:91:45: 03:54:68:9b:c9:2b:e3:cc:52:88:94:91:66:73:60:5f:a4:05: c1:41:86:df:06:37:2f:5c:9b:41:b2:db:50:0c:88:ec:36:f5: 66:84:78:dd:09:9e:3e:7a:ec:0a:e7:aa:9d:6e:d5:87:51:96: 1e:16:44:d4:2a:f0:e1:17:2c:0b:9c:9a:01:78:03:b7:8c:8d: 32:78:cc:13:1a:07:ab:43:aa:0e:e3:a7:f9:72:34:3e:e9:44: 8e:c3:b2:50:b1:50:e2:08:c3:0e:bd:ee:22:c7:c9:a3:a7:8f: 88:e9:9b:98 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaX/QtvoH8f7XocFTeotLium6PN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzlaFw0yNzA2MDQwNzEyMzlaMDMxMTAvBgNV BAMTKDhBOEQ2QkRCNzRFMTI3OEJGNTRDQzYzQTEzNzJBREY0NkVGQ0FCQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvvunQS5iH1KZIbNBcOuVzIqKr mxzd0/I6fryhkxAa3uEkLer35cZTcIJj60aHxUXtQ2X9BBUP0P5o3X/MP6GY8A33 zcPr5Kyt13L8NOC9PbxOY+lk//Njrc1nR0szG42Y8JhUYKwkX0JFh3//R9Zx2C/G 3REzC+UD6r3p2tdtzxtW5eRwtmPboEoqLxa8nPJmaebrklxcRsadV+7vp+ftdkcq 39omQqqxSO2022GX6BQ6TixpLmmdx/Mtu+5h4/xWfjOGqdT4VVhAYFxOvKFmQ7nb KIqofVScJ/sotXuot7BMD2F7SdnBYsmhmb3yRm/HnL15yw0aT5w6il7WnjNpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUio1r23ThJ4v1TMY6E3Kt9G78q70wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjAzODczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPwwDQYJKoZIhvcNAQELBQADggEBAKR6 SyOiXFp0SSPFAPNvmNPXOmyXYakx06Hlt7iiE2ibgX4uhQhIVJu89x0evvXKinNd LAE0uHkdzvVpv86iUEmCc4x/cSE2Ox+L4RmyjzQ8zIGx39qm24IqBZ0r3CalR1CB faSC8XDTshXc0OfaOqf0/P0Ndl6In0WH0F+rKbKE6dgT8mshzw5Dl7eIubORRQNU aJvJK+PMUoiUkWZzYF+kBcFBht8GNy9cm0Gy21AMiOw29WaEeN0Jnj567Arnqp1u 1YdRlh4WRNQq8OEXLAucmgF4A7eMjTJ4zBMaB6tDqg7jp/lyND7pRI7DslCxUOII ww697iLHyaOnj4jpm5g= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:00 2026 by rpki-client