$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208699.roa File: AS208699.roa (raw, json) Hash identifier: CDI4kYwoclXhDgQq37ld12gKeNUgEds6iGOzv8eTB6Q= Subject key identifier: 27:5B:1E:9B:77:C7:68:4D:9B:CD:E8:1D:B0:B3:B5:FC:C4:95:75:92 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 49FA748887CEFF6C206FA0B917AC3DCC70ECC70D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208699.roa Signing time: Fri 05 Jun 2026 07:12:24 +0000 ROA not before: Fri 05 Jun 2026 07:07:24 +0000 ROA not after: Fri 04 Jun 2027 07:12:24 +0000 asID: 208699 IP address blocks: 2a06:9f81:5500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:fa:74:88:87:ce:ff:6c:20:6f:a0:b9:17:ac:3d:cc:70:ec:c7:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:24 2026 GMT Not After : Jun 4 07:12:24 2027 GMT Subject: CN=275B1E9B77C7684D9BCDE81DB0B3B5FCC4957592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:7c:6e:0d:fc:a4:9f:62:0e:30:00:69:96: d0:bb:b7:57:4f:2a:ce:ea:91:26:83:31:05:b7:72: 4c:da:fd:d5:83:39:fc:94:a6:d2:4e:15:51:1d:1a: 00:a6:87:aa:81:ba:92:8c:e0:30:72:45:33:37:3f: b9:2e:e7:aa:53:b5:8c:d3:60:09:8c:f9:ff:d5:5c: aa:bd:e2:a6:f6:4d:82:4c:dc:67:b0:37:eb:8e:f4: a3:8d:af:a6:a1:ba:4c:7a:88:d2:4c:c2:0f:df:e4: 78:f9:9a:b1:b3:c8:c2:1a:ee:49:63:a3:6d:54:87: 87:3e:fa:51:85:51:19:54:33:cf:c7:b3:87:18:e9: 00:09:e1:53:01:45:47:b4:8e:b8:d5:a3:b0:26:1e: 5a:ee:4c:b9:40:aa:92:27:b0:c0:c3:26:50:38:98: 7b:79:8e:26:29:df:91:49:a5:a8:73:df:55:30:c6: 60:ff:96:60:36:86:24:65:88:f4:93:d8:bd:c7:5e: e2:a6:e1:39:15:83:ce:0b:58:d3:b7:08:bc:db:2b: 9a:71:5d:38:46:03:88:92:e4:1b:a9:e5:6a:e9:3b: 3e:d4:10:9d:bb:ee:30:2b:c0:d3:96:13:92:ae:42: 95:cd:be:e5:23:2d:af:85:8f:0a:25:8d:72:f9:7d: b0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5B:1E:9B:77:C7:68:4D:9B:CD:E8:1D:B0:B3:B5:FC:C4:95:75:92 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS208699.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5500::/40 Signature Algorithm: sha256WithRSAEncryption 97:44:81:fb:18:3d:d1:0f:98:6b:de:82:2d:a8:a5:45:78:14: 44:c7:55:7e:12:d7:a0:6a:57:c0:df:fb:ff:56:d8:e9:2a:3a: e9:14:6c:95:0b:b8:35:c4:3e:db:9d:d4:6e:34:b1:21:57:ec: 63:80:fd:c5:7c:05:29:ca:6c:c3:54:a6:82:7f:6d:3b:29:9e: 52:9d:47:aa:56:d8:06:c8:d8:e1:fd:52:d9:e8:5b:dc:85:58: fa:95:72:04:6d:45:23:7b:bd:77:26:5e:aa:c7:c1:ed:9f:74: 8a:79:6e:0b:ce:c2:6a:1c:34:27:4b:28:c5:a3:08:28:7b:34: 92:db:fd:82:3f:b5:1b:ff:cb:6e:0b:04:c2:d4:a0:0c:fc:fd: 0e:c0:a8:1e:6b:c2:37:72:0f:b0:4e:0d:13:ed:33:97:72:f4: 5b:62:22:f0:5b:4d:ae:88:56:12:08:38:50:ff:d9:d4:78:e5: f4:f6:c2:cc:2b:3d:bd:e0:cb:94:5d:b5:a9:dd:1d:03:97:25: a2:2e:62:c1:0d:88:58:8d:fc:2e:df:83:a0:45:23:75:54:9a: b9:12:b2:84:a8:e3:6d:b4:24:fa:ae:5d:11:d7:a8:b2:f3:ed: d9:f4:42:10:74:16:68:e5:69:37:0f:09:ae:d8:1f:36:d9:7f: 91:cb:6e:ce -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSfp0iIfO/2wgb6C5F6w9zHDsxw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjRaFw0yNzA2MDQwNzEyMjRaMDMxMTAvBgNV BAMTKDI3NUIxRTlCNzdDNzY4NEQ5QkNERTgxREIwQjNCNUZDQzQ5NTc1OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKknxuDfykn2IOMABpltC7t1dP Ks7qkSaDMQW3ckza/dWDOfyUptJOFVEdGgCmh6qBupKM4DByRTM3P7ku56pTtYzT YAmM+f/VXKq94qb2TYJM3GewN+uO9KONr6ahukx6iNJMwg/f5Hj5mrGzyMIa7klj o21Uh4c++lGFURlUM8/Hs4cY6QAJ4VMBRUe0jrjVo7AmHlruTLlAqpInsMDDJlA4 mHt5jiYp35FJpahz31UwxmD/lmA2hiRliPST2L3HXuKm4TkVg84LWNO3CLzbK5px XThGA4iS5Bup5WrpOz7UEJ277jArwNOWE5KuQpXNvuUjLa+FjwoljXL5fbARAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJ1sem3fHaE2bzegdsLO1/MSVdZIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA4Njk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVUwDQYJKoZIhvcNAQELBQADggEBAJdE gfsYPdEPmGvegi2opUV4FETHVX4S16BqV8Df+/9W2OkqOukUbJULuDXEPtud1G40 sSFX7GOA/cV8BSnKbMNUpoJ/bTspnlKdR6pW2AbI2OH9UtnoW9yFWPqVcgRtRSN7 vXcmXqrHwe2fdIp5bgvOwmocNCdLKMWjCCh7NJLb/YI/tRv/y24LBMLUoAz8/Q7A qB5rwjdyD7BODRPtM5dy9FtiIvBbTa6IVhIIOFD/2dR45fT2wswrPb3gy5Rdtand HQOXJaIuYsENiFiN/C7fg6BFI3VUmrkSsoSo4220JPquXRHXqLLz7dn0QhB0Fmjl aTcPCa7YHzbZf5HLbs4= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:19 2026 by rpki-client