$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209542.roa File: AS209542.roa (raw, json) Hash identifier: TSXRk8vhqMsMz3sYLDP2xGsybOLmtZMdik/3n2GfNV8= Subject key identifier: 00:BF:2F:0A:E7:08:98:21:BA:E7:AF:A1:5D:9B:1E:F7:DC:8D:D0:3B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 536EEE35828C1A13AED81193A6B291BD3B968139 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209542.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 209542 IP address blocks: 2a05:dfc1:2700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:6e:ee:35:82:8c:1a:13:ae:d8:11:93:a6:b2:91:bd:3b:96:81:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=00BF2F0AE7089821BAE7AFA15D9B1EF7DC8DD03B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:36:60:4b:8b:5c:5c:3e:0f:2d:0b:05:a2:26: 73:17:93:83:5b:20:c6:ff:ce:ca:0b:6b:b5:3d:fc: 35:fd:38:fd:d6:45:ba:5e:4d:0a:5a:c0:9d:73:ed: b9:02:21:73:a0:45:bc:10:34:87:55:e1:62:41:29: fe:c1:a0:99:af:0f:35:52:bc:93:47:95:8b:f6:fc: 49:4e:4b:82:fd:c7:ba:53:02:c7:3c:25:69:af:27: 52:17:32:78:62:a7:a3:82:e2:d9:bd:72:a8:37:0b: 98:3b:96:5d:7d:0a:89:10:68:6f:a8:dc:88:df:5f: ea:c9:c6:aa:64:76:12:73:01:2b:c3:46:14:48:fb: a3:17:f8:37:86:64:bb:71:49:61:aa:66:88:fc:ff: 26:00:cc:f3:a5:d7:38:21:33:c2:a8:14:01:fb:c6: ef:bf:8e:99:a1:7a:1e:6b:fd:58:67:3f:0b:8f:5f: 38:aa:2f:b0:68:0f:4b:30:49:7f:da:14:af:47:0d: f5:cd:02:25:51:23:2f:b7:3b:00:13:4f:60:b4:07: 73:89:07:04:64:9e:28:ea:c9:50:87:bd:15:8d:31: 79:5a:6e:3c:9d:ba:15:fd:e8:74:77:db:69:2b:92: 03:b8:dc:35:15:31:73:5d:59:3f:62:40:55:7c:1b: d9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:BF:2F:0A:E7:08:98:21:BA:E7:AF:A1:5D:9B:1E:F7:DC:8D:D0:3B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209542.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2700::/40 Signature Algorithm: sha256WithRSAEncryption 7a:c5:30:29:a4:f9:70:16:26:64:d1:ff:5a:12:9e:f2:d5:a7: 07:7c:4d:ec:c1:3c:89:be:3d:b1:06:30:e1:da:88:03:f9:17: 5d:86:0f:55:0f:d6:a7:ea:1b:7e:89:71:cd:df:fe:fa:ee:d7: f1:cd:a3:c6:a0:e1:3d:f7:ae:8c:9d:0d:16:0a:8a:76:42:0e: 7f:50:e3:ab:e7:3a:52:42:f5:39:06:01:de:fb:0c:5b:57:9f: 4e:47:c0:f8:9f:2f:4b:8f:61:b2:e4:df:50:00:c4:56:d7:04: fe:77:19:57:ef:30:8e:95:bd:09:38:77:69:1d:be:21:bc:59: 15:a6:2b:79:7e:d0:6e:8d:d2:d9:56:5f:57:22:47:1f:7c:b8: bd:13:17:fe:46:6c:ef:76:ed:d8:96:44:ee:ce:5c:2c:09:94: ec:69:aa:a4:41:f4:f0:a9:f6:da:11:8f:3f:10:cf:59:8d:09: 9c:f9:5d:7e:ba:8c:ee:9a:72:ea:19:5a:be:0f:29:90:23:b7: f8:40:d5:6d:9c:aa:c0:25:8e:c4:a2:16:ba:c7:6a:91:e4:62: e6:88:f9:5c:08:65:5c:d2:62:65:3d:3c:e3:e9:1d:7d:a8:71: 26:02:c0:40:2a:c2:0f:c3:0a:75:c7:12:06:24:c3:90:ec:9a: e7:32:44:b4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUU27uNYKMGhOu2BGTprKRvTuWgTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKDAwQkYyRjBBRTcwODk4MjFCQUU3QUZBMTVEOUIxRUY3REM4REQwM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrNmBLi1xcPg8tCwWiJnMXk4Nb IMb/zsoLa7U9/DX9OP3WRbpeTQpawJ1z7bkCIXOgRbwQNIdV4WJBKf7BoJmvDzVS vJNHlYv2/ElOS4L9x7pTAsc8JWmvJ1IXMnhip6OC4tm9cqg3C5g7ll19CokQaG+o 3IjfX+rJxqpkdhJzASvDRhRI+6MX+DeGZLtxSWGqZoj8/yYAzPOl1zghM8KoFAH7 xu+/jpmheh5r/VhnPwuPXziqL7BoD0swSX/aFK9HDfXNAiVRIy+3OwATT2C0B3OJ BwRknijqyVCHvRWNMXlabjyduhX96HR322krkgO43DUVMXNdWT9iQFV8G9nNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUAL8vCucImCG656+hXZse99yN0DswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwScwDQYJKoZIhvcNAQELBQADggEBAHrF MCmk+XAWJmTR/1oSnvLVpwd8TezBPIm+PbEGMOHaiAP5F12GD1UP1qfqG36Jcc3f /vru1/HNo8ag4T33roydDRYKinZCDn9Q46vnOlJC9TkGAd77DFtXn05HwPifL0uP YbLk31AAxFbXBP53GVfvMI6VvQk4d2kdviG8WRWmK3l+0G6N0tlWX1ciRx98uL0T F/5GbO927diWRO7OXCwJlOxpqqRB9PCp9toRjz8Qz1mNCZz5XX66jO6acuoZWr4P KZAjt/hA1W2cqsAljsSiFrrHapHkYuaI+VwIZVzSYmU9POPpHX2ocSYCwEAqwg/D CnXHEgYkw5DsmucyRLQ= -----END CERTIFICATE-----Generated at Wed Nov 5 08:43:56 2025 by rpki-client