$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS206439.roa File: AS206439.roa (raw, json) Hash identifier: IVTqh1DeMSj0of4Db+R1AVIJbr5FIghTcV09GveOjiI= Subject key identifier: 52:A8:C9:71:80:CE:C7:F7:70:D3:77:0A:49:CD:85:F2:F3:39:B5:AB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 02652A8A2A96EE7EED2D6EC633A32745FFD0E5F4 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS206439.roa Signing time: Fri 05 Jun 2026 07:12:28 +0000 ROA not before: Fri 05 Jun 2026 07:07:28 +0000 ROA not after: Fri 04 Jun 2027 07:12:28 +0000 asID: 206439 IP address blocks: 2a0a:6040:3900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:65:2a:8a:2a:96:ee:7e:ed:2d:6e:c6:33:a3:27:45:ff:d0:e5:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:28 2026 GMT Not After : Jun 4 07:12:28 2027 GMT Subject: CN=52A8C97180CEC7F770D3770A49CD85F2F339B5AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:71:13:4c:02:a1:59:b3:32:61:21:f4:8c:2a: f5:e4:29:5f:19:5d:5b:2d:09:ba:d4:da:bc:14:55: 5a:82:bb:00:69:ba:e8:2b:16:d2:83:d6:5e:c9:e3: b1:03:b4:8f:c9:82:5a:59:57:e0:26:70:93:98:ef: 11:80:74:30:65:33:44:69:26:09:15:02:56:cf:ee: 4a:0a:31:de:f9:59:73:4e:0d:89:df:d8:e4:60:01: 13:98:ba:5f:07:d3:78:08:95:56:79:48:ca:0e:7c: f0:46:0a:9d:f8:fb:52:37:ff:36:d8:84:4a:05:09: fc:a4:41:22:fd:39:7c:70:3a:22:c6:75:1f:ff:3a: 4b:4f:f9:96:a1:96:90:4a:12:8a:18:65:f7:0e:9d: 25:b8:eb:95:e4:1e:be:9f:78:16:31:98:ef:b0:8f: 6e:47:bd:1d:dd:39:59:ce:d4:84:fb:f9:a5:20:c5: 3b:74:1f:af:ff:96:f1:2e:71:2a:21:96:55:c5:43: b2:72:25:71:3d:7f:90:c2:78:e4:50:83:c8:3c:29: aa:99:fb:df:91:d1:28:db:27:77:2c:75:31:02:a7: c1:91:09:a2:81:ef:e3:2c:01:b8:02:d7:af:b6:f0: 28:31:55:85:f9:78:b6:dd:39:c7:0d:b9:82:a8:66: c9:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A8:C9:71:80:CE:C7:F7:70:D3:77:0A:49:CD:85:F2:F3:39:B5:AB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS206439.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3900::/40 Signature Algorithm: sha256WithRSAEncryption 65:be:ff:df:1b:74:d5:d1:74:23:89:1b:33:4c:a0:ec:c8:c4: ea:cf:6b:ab:5c:82:4b:46:d4:9a:74:2a:06:94:4f:b8:96:cf: 75:ad:21:2a:3a:24:82:ec:69:17:8b:71:75:ce:a6:c8:0b:cb: 56:46:67:b6:a2:f0:2b:7d:11:c2:ed:15:df:05:77:80:c8:f3: e9:1a:13:f0:7c:35:a0:a7:cb:52:73:1a:4a:ca:bf:df:3d:3f: 9f:36:8f:5a:05:9c:bf:5c:65:4e:40:d7:77:de:cb:3e:ad:6a: 1a:4a:f8:89:13:71:9e:45:72:2c:44:97:f1:ce:95:7d:44:d9: 42:1b:96:e1:6e:59:e6:72:48:f0:40:1f:bb:18:86:b2:88:71: e4:85:a2:90:1d:d2:2e:ca:83:19:f7:3c:a6:15:9d:13:9c:8e: c4:4f:20:7c:ee:fb:64:18:05:f8:a3:27:15:32:81:d0:76:22: 13:9e:84:8a:77:65:ec:4f:9b:ef:22:82:86:ef:da:c4:4b:db: b4:ff:ea:ed:61:ec:ed:70:b7:45:14:ad:aa:22:35:17:b7:a9: 71:6a:79:52:e4:fb:3c:1a:04:0a:38:e0:23:e3:43:9d:49:b0: 96:a3:a1:62:e6:7f:47:89:ca:05:63:7a:86:65:f8:1f:ec:8d: 7d:91:66:43 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAmUqiiqW7n7tLW7GM6MnRf/Q5fQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjhaFw0yNzA2MDQwNzEyMjhaMDMxMTAvBgNV BAMTKDUyQThDOTcxODBDRUM3Rjc3MEQzNzcwQTQ5Q0Q4NUYyRjMzOUI1QUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbcRNMAqFZszJhIfSMKvXkKV8Z XVstCbrU2rwUVVqCuwBpuugrFtKD1l7J47EDtI/JglpZV+AmcJOY7xGAdDBlM0Rp JgkVAlbP7koKMd75WXNODYnf2ORgAROYul8H03gIlVZ5SMoOfPBGCp34+1I3/zbY hEoFCfykQSL9OXxwOiLGdR//OktP+ZahlpBKEooYZfcOnSW465XkHr6feBYxmO+w j25HvR3dOVnO1IT7+aUgxTt0H6//lvEucSohllXFQ7JyJXE9f5DCeORQg8g8KaqZ +9+R0SjbJ3csdTECp8GRCaKB7+MsAbgC16+28CgxVYX5eLbdOccNuYKoZsmzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUqjJcYDOx/dw03cKSc2F8vM5taswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA2NDM5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDkwDQYJKoZIhvcNAQELBQADggEBAGW+ /98bdNXRdCOJGzNMoOzIxOrPa6tcgktG1Jp0KgaUT7iWz3WtISo6JILsaReLcXXO psgLy1ZGZ7ai8Ct9EcLtFd8Fd4DI8+kaE/B8NaCny1JzGkrKv989P582j1oFnL9c ZU5A13feyz6tahpK+IkTcZ5FcixEl/HOlX1E2UIbluFuWeZySPBAH7sYhrKIceSF opAd0i7Kgxn3PKYVnROcjsRPIHzu+2QYBfijJxUygdB2IhOehIp3ZexPm+8igobv 2sRL27T/6u1h7O1wt0UUraoiNRe3qXFqeVLk+zwaBAo44CPjQ51JsJajoWLmf0eJ ygVjeoZl+B/sjX2RZkM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:45 2026 by rpki-client