$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207778.roa File: AS207778.roa (raw, json) Hash identifier: 7tSlSetUytPzpCqoSRkZ+xDx+PpIfrHE/YYxwLzBhgQ= Subject key identifier: 0A:0F:D2:B1:42:61:D7:25:2A:21:5A:5A:45:FC:64:8D:73:71:85:D0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0985013E199A885989B314C662D83AE51E973220 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207778.roa Signing time: Fri 05 Jun 2026 07:12:40 +0000 ROA not before: Fri 05 Jun 2026 07:07:40 +0000 ROA not after: Fri 04 Jun 2027 07:12:40 +0000 asID: 207778 IP address blocks: 2a0a:6040:d500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:85:01:3e:19:9a:88:59:89:b3:14:c6:62:d8:3a:e5:1e:97:32:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:40 2026 GMT Not After : Jun 4 07:12:40 2027 GMT Subject: CN=0A0FD2B14261D7252A215A5A45FC648D737185D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:35:28:25:eb:07:d3:ee:6e:da:de:ab:83:bf: 08:6f:d1:9d:a2:f8:0d:c5:66:f9:55:db:69:d0:39: e0:65:04:73:8e:43:a4:7b:bb:4a:7a:3d:57:4b:6d: 97:fe:ca:d8:83:cf:e1:77:ac:39:37:ee:ff:61:6a: cf:6b:d8:b3:6d:e4:96:87:34:04:f7:da:a7:bc:03: 23:3d:1c:d9:ea:54:e9:27:02:f3:8e:e3:dc:27:fe: 39:3e:01:ae:f6:b0:91:bd:76:8e:01:52:f1:f2:21: 85:d4:dd:a2:28:be:55:15:3c:46:0a:6c:df:a0:ef: fe:ac:94:88:7b:ab:f5:17:c0:a5:a8:56:46:56:48: ae:21:2d:f1:f9:8b:82:61:78:50:27:c9:dd:25:32: 56:11:41:2f:6a:1c:28:fb:2a:78:1a:b6:85:32:0a: 0e:50:98:f8:3b:89:06:56:2d:e6:24:0f:8f:88:eb: 10:97:14:ce:4c:6e:69:38:3d:fa:52:04:98:9f:ab: ff:8d:43:c8:f4:25:0a:ae:da:8c:53:64:c9:be:a5: c5:53:b6:2d:f2:cc:68:13:04:41:f7:b3:bc:55:ba: 9d:b2:aa:78:70:1c:72:b0:d7:8b:d8:04:8d:88:50: dc:36:46:38:28:0d:97:5b:db:e4:9c:dc:6c:ba:2f: d6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0F:D2:B1:42:61:D7:25:2A:21:5A:5A:45:FC:64:8D:73:71:85:D0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS207778.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:d500::/40 Signature Algorithm: sha256WithRSAEncryption 29:41:46:3a:c4:7f:9b:fe:e2:ef:be:75:3d:b1:3c:3f:ce:2c: f4:8f:0c:0a:b8:6b:69:b0:27:5c:79:49:9b:1a:25:f3:cf:2b: f8:d9:91:46:47:9e:d3:e7:1a:92:a9:cd:08:a7:17:f6:3a:d1: 5d:48:0e:3d:58:60:e6:a6:50:e7:eb:37:e5:11:29:54:7d:96: 5f:bc:8e:26:93:f7:a4:f3:97:3a:b5:d3:33:25:ec:ae:4d:f3: fe:65:a0:cc:ca:1f:e0:5d:f0:b5:e7:ee:fe:0c:6b:17:0d:28: 05:20:93:13:58:1f:1d:ab:8b:6a:be:4e:b7:62:1a:7e:52:14: fa:4b:6e:8e:ec:95:76:46:27:da:bd:b6:75:6a:7a:b5:b0:76: 9d:e9:c5:06:23:27:84:68:06:82:2a:94:00:25:27:2d:7f:c3: b5:eb:9a:3e:6e:6b:43:0e:f1:3e:56:cd:af:b5:ec:b8:bd:cb: 2d:d0:ba:67:1a:9a:c1:83:41:1e:7c:9e:bd:cf:75:35:70:b2: be:b4:eb:c3:a7:47:9f:cf:0d:23:f6:eb:ad:4c:15:d0:7f:80: fe:cf:e9:88:9e:95:bd:30:3c:9b:94:09:78:f8:28:94:14:04: e7:95:61:d2:f2:41:55:96:b2:c7:61:0c:5f:46:f1:b9:72:d8: 75:a6:93:e9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCYUBPhmaiFmJsxTGYtg65R6XMiAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDBaFw0yNzA2MDQwNzEyNDBaMDMxMTAvBgNV BAMTKDBBMEZEMkIxNDI2MUQ3MjUyQTIxNUE1QTQ1RkM2NDhENzM3MTg1RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoNSgl6wfT7m7a3quDvwhv0Z2i +A3FZvlV22nQOeBlBHOOQ6R7u0p6PVdLbZf+ytiDz+F3rDk37v9has9r2LNt5JaH NAT32qe8AyM9HNnqVOknAvOO49wn/jk+Aa72sJG9do4BUvHyIYXU3aIovlUVPEYK bN+g7/6slIh7q/UXwKWoVkZWSK4hLfH5i4JheFAnyd0lMlYRQS9qHCj7KngatoUy Cg5QmPg7iQZWLeYkD4+I6xCXFM5Mbmk4PfpSBJifq/+NQ8j0JQqu2oxTZMm+pcVT ti3yzGgTBEH3s7xVup2yqnhwHHKw14vYBI2IUNw2RjgoDZdb2+Sc3Gy6L9YJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCg/SsUJh1yUqIVpaRfxkjXNxhdAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA3Nzc4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQNUwDQYJKoZIhvcNAQELBQADggEBAClB RjrEf5v+4u++dT2xPD/OLPSPDAq4a2mwJ1x5SZsaJfPPK/jZkUZHntPnGpKpzQin F/Y60V1IDj1YYOamUOfrN+URKVR9ll+8jiaT96Tzlzq10zMl7K5N8/5loMzKH+Bd 8LXn7v4MaxcNKAUgkxNYHx2ri2q+TrdiGn5SFPpLbo7slXZGJ9q9tnVqerWwdp3p xQYjJ4RoBoIqlAAlJy1/w7Xrmj5ua0MO8T5Wza+17Li9yy3QumcamsGDQR58nr3P dTVwsr6068OnR5/PDSP2661MFdB/gP7P6Yielb0wPJuUCXj4KJQUBOeVYdLyQVWW ssdhDF9G8bly2HWmk+k= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:54 2026 by rpki-client