$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207079.roa File: AS207079.roa (raw, json) Hash identifier: PLNvHJ+obsGoCeSnUcPMJWdVPtv/6ag/FHHd67+1QVo= Subject key identifier: 64:24:8C:78:D3:D2:6B:AC:83:BF:D2:30:90:5F:9A:7B:60:0D:F3:D4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3F936DDDA7B8623DB5C1337C572F30B05B5418DF Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207079.roa Signing time: Fri 05 Jun 2026 07:12:33 +0000 ROA not before: Fri 05 Jun 2026 07:07:33 +0000 ROA not after: Fri 04 Jun 2027 07:12:33 +0000 asID: 207079 IP address blocks: 2a0a:6040:2800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:93:6d:dd:a7:b8:62:3d:b5:c1:33:7c:57:2f:30:b0:5b:54:18:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:33 2026 GMT Not After : Jun 4 07:12:33 2027 GMT Subject: CN=64248C78D3D26BAC83BFD230905F9A7B600DF3D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:eb:bc:6e:06:c6:dd:b6:87:b3:41:b2:5c:20: 90:b8:61:f9:d6:f3:8b:d4:4b:76:41:3b:61:fb:f3: 8b:b9:df:75:1f:c1:02:13:b2:08:e2:4a:71:e7:21: a3:76:3f:04:e6:99:3b:e8:a6:42:ec:c3:cc:2c:81: d3:67:22:c3:69:8b:c0:66:f0:e1:73:3e:d2:41:fc: 31:14:62:17:d5:73:62:b0:f9:31:0f:b3:40:18:c3: 3f:f8:2b:92:a0:24:a0:ef:97:cc:d0:fe:bb:4f:ea: 53:17:9d:48:56:e8:cf:6a:43:45:c2:7a:de:9a:4f: 81:33:1b:ed:da:ae:e1:c0:ca:ca:19:ee:9a:4d:2c: b6:2f:71:06:b8:70:a1:ff:7d:9d:ec:0a:1c:49:dd: 59:59:59:b7:24:80:63:a1:0b:2b:ef:bb:02:24:2d: 4c:2c:86:70:64:07:5e:2f:a4:e4:5b:32:ad:15:1f: 84:a1:cd:d2:51:7d:f2:2c:18:76:a7:5e:e1:e8:2f: bb:16:2a:91:03:13:59:b1:cd:22:73:74:eb:f4:5f: c0:ab:5e:af:9c:de:07:46:63:80:e5:90:46:a1:e6: 18:82:5b:70:32:97:29:a0:6f:0b:b3:c5:de:09:50: b1:b0:c1:0e:1d:8b:a2:c4:4d:d8:fd:b0:db:db:6c: ee:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:24:8C:78:D3:D2:6B:AC:83:BF:D2:30:90:5F:9A:7B:60:0D:F3:D4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:2800::/40 Signature Algorithm: sha256WithRSAEncryption 44:02:72:1b:db:1b:cb:66:34:11:c0:10:89:e7:a5:09:c4:be: 8f:56:00:b6:60:de:ba:d0:d2:d9:3a:eb:17:eb:16:74:a2:ea: a3:4e:f5:dd:6d:cc:d5:42:7a:98:d5:6d:63:21:29:e7:45:7f: a3:50:bb:f8:58:51:92:8d:d4:7b:20:b6:52:c3:7b:d9:1e:48: 1b:52:da:8c:b2:de:d1:5c:15:93:68:4f:39:62:0e:92:30:f1: 2f:28:c8:7d:5c:97:36:b5:53:ed:62:f6:95:0b:35:60:e1:96: 86:85:40:b6:78:40:59:96:dd:64:6e:58:cf:01:7a:2c:ed:dd: be:1d:00:16:d2:22:57:ee:be:51:06:80:a5:1b:91:28:d0:0f: 2d:16:a4:17:ee:5c:21:d0:53:37:4c:32:9c:7d:92:e8:bc:87: 05:15:56:2c:73:55:61:54:f5:7f:02:68:a9:15:f2:78:ae:74: 8b:21:71:ea:2a:ac:f0:4a:75:47:d8:10:33:d3:8e:72:a6:67: 8e:73:e0:be:6f:02:72:5b:7d:22:ba:a1:98:5d:89:a6:50:48: 6b:65:0d:3d:fd:5d:f3:d6:2c:52:72:7c:dc:54:37:53:31:d0: 1e:d9:e8:6e:15:77:64:fb:0d:a6:28:4c:bb:20:22:76:6b:be: cd:84:86:d2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUP5Nt3ae4Yj21wTN8Vy8wsFtUGN8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzNaFw0yNzA2MDQwNzEyMzNaMDMxMTAvBgNV BAMTKDY0MjQ4Qzc4RDNEMjZCQUM4M0JGRDIzMDkwNUY5QTdCNjAwREYzRDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC067xuBsbdtoezQbJcIJC4YfnW 84vUS3ZBO2H784u533UfwQITsgjiSnHnIaN2PwTmmTvopkLsw8wsgdNnIsNpi8Bm 8OFzPtJB/DEUYhfVc2Kw+TEPs0AYwz/4K5KgJKDvl8zQ/rtP6lMXnUhW6M9qQ0XC et6aT4EzG+3aruHAysoZ7ppNLLYvcQa4cKH/fZ3sChxJ3VlZWbckgGOhCyvvuwIk LUwshnBkB14vpORbMq0VH4ShzdJRffIsGHanXuHoL7sWKpEDE1mxzSJzdOv0X8Cr Xq+c3gdGY4DlkEah5hiCW3Aylymgbwuzxd4JULGwwQ4di6LETdj9sNvbbO67AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUZCSMeNPSa6yDv9IwkF+ae2AN89QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3MDc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQCgwDQYJKoZIhvcNAQELBQADggEBAEQC chvbG8tmNBHAEInnpQnEvo9WALZg3rrQ0tk66xfrFnSi6qNO9d1tzNVCepjVbWMh KedFf6NQu/hYUZKN1HsgtlLDe9keSBtS2oyy3tFcFZNoTzliDpIw8S8oyH1clza1 U+1i9pULNWDhloaFQLZ4QFmW3WRuWM8Beizt3b4dABbSIlfuvlEGgKUbkSjQDy0W pBfuXCHQUzdMMpx9kui8hwUVVixzVWFU9X8CaKkV8niudIshceoqrPBKdUfYEDPT jnKmZ45z4L5vAnJbfSK6oZhdiaZQSGtlDT39XfPWLFJyfNxUN1Mx0B7Z6G4Vd2T7 DaYoTLsgInZrvs2EhtI= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:07 2026 by rpki-client