$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209542.roa File: AS209542.roa (raw, json) Hash identifier: MY70VWYF9OExwkqyEem1kWhRzGCiF1xWFwc2sHj13kc= Subject key identifier: FB:53:B4:AD:B1:EE:4B:1F:64:8A:9B:F9:9D:3E:F0:C1:E2:5F:A2:09 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3BD3E06B5DC9BB2EC41EEE56C8D2B98E0251420B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209542.roa Signing time: Fri 05 Jun 2026 07:12:21 +0000 ROA not before: Fri 05 Jun 2026 07:07:21 +0000 ROA not after: Fri 04 Jun 2027 07:12:21 +0000 asID: 209542 IP address blocks: 2a05:dfc1:2700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:d3:e0:6b:5d:c9:bb:2e:c4:1e:ee:56:c8:d2:b9:8e:02:51:42:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:21 2026 GMT Not After : Jun 4 07:12:21 2027 GMT Subject: CN=FB53B4ADB1EE4B1F648A9BF99D3EF0C1E25FA209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:eb:ee:58:59:95:9b:a8:4f:5d:9b:35:d9:f3: 1c:92:7f:66:c2:08:f0:d4:e3:88:f5:24:90:d7:df: 72:20:02:7b:d7:36:f7:13:ef:b8:8b:b5:f3:c5:23: b1:f3:26:ac:3a:40:a1:db:0b:92:44:62:a5:b6:85: dc:d2:ed:be:4f:5e:35:b5:06:e8:9e:80:9e:a5:03: d2:2e:53:cf:15:64:f3:56:94:47:5c:8a:42:19:5f: 88:43:c2:fa:cc:7b:bb:d3:d8:ac:eb:b5:fb:3c:a2: d5:f4:aa:99:b0:b2:5c:08:60:bb:58:ac:94:8e:9e: 04:fc:ad:6d:d6:a3:73:d3:81:ba:08:44:a7:7c:a6: 55:22:f9:ba:e3:aa:72:e8:a5:48:9e:9b:8d:2e:9c: f3:7c:fa:d1:d3:f9:27:40:2b:72:49:2a:f0:9b:01: 39:4f:b3:15:68:56:db:38:b8:47:bd:77:93:4d:6f: 43:cc:50:df:43:70:b4:df:fe:b2:f4:1f:ba:a7:68: 87:ac:61:ca:6a:80:ab:1f:88:fb:c9:88:e9:7b:40: f0:8c:ac:5c:c4:eb:af:5c:46:58:97:af:9d:e5:df: d3:49:af:37:1a:ac:5f:c9:c0:93:54:c4:57:dd:71: 90:98:a3:f6:29:d3:46:17:e7:0a:44:39:fe:4a:55: a7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:53:B4:AD:B1:EE:4B:1F:64:8A:9B:F9:9D:3E:F0:C1:E2:5F:A2:09 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209542.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2700::/40 Signature Algorithm: sha256WithRSAEncryption 03:0e:3f:af:e8:7d:e6:73:df:81:d9:ea:ca:f8:60:b2:eb:0d: 07:8b:40:dd:db:c2:50:91:2a:49:b8:5b:be:7f:c0:5a:6e:b4: 4b:3c:74:06:b5:23:20:e9:c1:9c:1e:41:5e:01:a5:27:b4:99: 8a:e2:a9:cd:be:f8:c9:19:8f:4a:23:73:fd:61:12:b0:12:f7: e4:71:e6:86:4d:69:18:59:b2:12:77:83:76:a0:45:9b:1f:8f: a9:73:78:b7:f5:4d:50:09:1a:39:df:b1:6e:d4:bb:9e:1a:f7: 9f:d0:47:17:55:7f:04:b3:72:c6:82:d8:ab:84:96:97:aa:b0: f4:03:98:30:f0:52:c0:1a:dd:1b:94:59:1d:08:66:b3:7c:5a: 9e:d0:1f:b6:db:4b:ec:3f:c4:80:b8:6b:d3:db:0c:93:7f:0a: db:17:e2:99:c2:1f:2a:80:f8:f9:25:7c:c9:d3:fc:48:41:00: de:ae:7b:a5:ca:2a:16:b6:48:28:cc:96:e7:96:a8:54:d2:94: 28:d3:ba:e7:06:ab:02:23:71:ab:42:e8:81:31:70:34:da:2b: 40:9a:ec:9b:e8:31:8d:d4:29:78:d9:39:28:e5:20:fa:67:ce: b5:92:41:c3:31:45:7e:f3:f5:6d:2c:28:45:ef:a4:e7:a4:1b: 6e:83:fa:d8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUO9Pga13Juy7EHu5WyNK5jgJRQgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjFaFw0yNzA2MDQwNzEyMjFaMDMxMTAvBgNV BAMTKEZCNTNCNEFEQjFFRTRCMUY2NDhBOUJGOTlEM0VGMEMxRTI1RkEyMDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/6+5YWZWbqE9dmzXZ8xySf2bC CPDU44j1JJDX33IgAnvXNvcT77iLtfPFI7HzJqw6QKHbC5JEYqW2hdzS7b5PXjW1 BuiegJ6lA9IuU88VZPNWlEdcikIZX4hDwvrMe7vT2Kzrtfs8otX0qpmwslwIYLtY rJSOngT8rW3Wo3PTgboIRKd8plUi+brjqnLopUiem40unPN8+tHT+SdAK3JJKvCb ATlPsxVoVts4uEe9d5NNb0PMUN9DcLTf/rL0H7qnaIesYcpqgKsfiPvJiOl7QPCM rFzE669cRliXr53l39NJrzcarF/JwJNUxFfdcZCYo/Yp00YX5wpEOf5KVadpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+1O0rbHuSx9kipv5nT7wweJfogkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwScwDQYJKoZIhvcNAQELBQADggEBAAMO P6/ofeZz34HZ6sr4YLLrDQeLQN3bwlCRKkm4W75/wFputEs8dAa1IyDpwZweQV4B pSe0mYriqc2++MkZj0ojc/1hErAS9+Rx5oZNaRhZshJ3g3agRZsfj6lzeLf1TVAJ GjnfsW7Uu54a95/QRxdVfwSzcsaC2KuElpeqsPQDmDDwUsAa3RuUWR0IZrN8Wp7Q H7bbS+w/xIC4a9PbDJN/CtsX4pnCHyqA+PklfMnT/EhBAN6ue6XKKha2SCjMlueW qFTSlCjTuucGqwIjcatC6IExcDTaK0Ca7JvoMY3UKXjZOSjlIPpnzrWSQcMxRX7z 9W0sKEXvpOekG26D+tg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:55 2026 by rpki-client