$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209554.roa File: AS209554.roa (raw, json) Hash identifier: r9FT6I4GSjZ1p7xQjJucnBiK3h+MchBpDn4qzGLa1nc= Subject key identifier: 50:C4:4C:33:B5:66:EE:63:B1:41:F4:E9:06:8A:D9:15:F1:A1:DD:E4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 65D6F9325C34DFC90F846B0D8DA7A9A6C22E3162 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209554.roa Signing time: Fri 05 Jun 2026 07:12:08 +0000 ROA not before: Fri 05 Jun 2026 07:07:08 +0000 ROA not after: Fri 04 Jun 2027 07:12:08 +0000 asID: 209554 IP address blocks: 2a0a:6040:ad00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d6:f9:32:5c:34:df:c9:0f:84:6b:0d:8d:a7:a9:a6:c2:2e:31:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:08 2026 GMT Not After : Jun 4 07:12:08 2027 GMT Subject: CN=50C44C33B566EE63B141F4E9068AD915F1A1DDE4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c8:e6:5f:51:86:a2:46:16:86:da:2b:28:1f: 01:23:a3:e9:84:e0:3b:22:c9:5b:41:a9:b8:e8:78: 90:09:ab:9f:80:ce:a2:85:03:c4:79:7f:d7:72:a8: cf:8a:82:7c:f1:b0:b5:40:49:8f:7d:20:62:6f:39: c4:13:81:c7:d6:1a:c5:31:c1:53:84:e9:7f:cc:5f: 0e:33:f1:87:ae:49:00:fd:dc:db:d2:52:a3:e8:47: d3:62:12:65:2f:20:bb:f1:8f:da:d1:3a:6c:96:9e: 4d:99:15:be:b8:07:48:05:e6:ed:4e:0e:82:ec:c0: d5:a2:0d:d1:42:8d:01:f1:2a:5d:16:20:21:8f:78: 5b:09:00:36:d0:b5:7e:91:35:ef:17:dd:20:4e:65: 63:35:fd:5f:48:75:0c:d8:1c:f0:88:42:92:62:56: bb:d7:a7:5c:e9:39:94:3d:c0:c8:ad:e1:0f:74:a9: e1:c8:ad:ab:be:be:72:43:8c:66:f7:dc:f7:7e:11: 79:1e:cf:50:7c:9f:b7:4c:4b:9d:05:2b:f2:77:c4: 6f:76:a2:99:6b:a5:e3:72:55:87:f6:04:31:b7:2f: aa:89:9a:b1:cd:7e:10:c3:5a:b1:d2:8e:43:12:9d: e6:2e:5e:32:66:f9:f9:4c:20:01:2f:ef:42:96:b2: db:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C4:4C:33:B5:66:EE:63:B1:41:F4:E9:06:8A:D9:15:F1:A1:DD:E4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209554.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:ad00::/40 Signature Algorithm: sha256WithRSAEncryption 6b:94:c3:d6:ae:9d:42:73:ee:95:e5:c5:ca:61:89:2e:ab:6c: 0d:00:9a:c2:a9:06:61:94:5e:9a:30:36:44:60:7a:44:13:7e: 0f:4c:a2:6e:3d:25:79:0e:2f:92:87:90:bf:55:4d:cc:62:bc: 56:70:87:3b:04:d7:2a:38:48:1c:df:81:93:38:c1:98:d4:cf: 83:0c:0a:9b:8f:ac:85:a0:e5:97:ae:19:00:44:1f:ce:85:c1: 34:05:f5:d5:41:0e:4f:9c:71:bc:84:cc:c9:49:75:ab:1d:f7: 03:c8:f2:5d:10:b7:69:ab:76:25:f4:5a:71:83:d2:5f:bc:02: 30:2c:6c:5f:4e:d8:66:56:8b:9c:85:46:8e:84:e7:40:28:2c: d3:bf:a8:f1:62:82:b6:90:3c:71:b9:44:5b:21:11:e9:df:31: 3f:8b:c1:f7:55:75:3c:05:41:ac:2e:a7:8e:8c:b8:6a:e5:66: d4:12:d2:b7:36:a2:48:94:79:70:72:e5:ac:e1:a8:cc:a7:f4: a1:85:71:8c:10:f5:f1:2a:b8:7b:38:1e:cc:29:ef:e6:02:af: 19:c7:6d:68:b8:da:b0:f0:ca:f9:b7:be:a2:fd:6b:ee:02:05: 65:67:f3:5b:7c:9c:14:69:6b:a4:84:fa:12:07:96:ab:29:f3: b8:4c:53:a9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZdb5Mlw038kPhGsNjaeppsIuMWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDhaFw0yNzA2MDQwNzEyMDhaMDMxMTAvBgNV BAMTKDUwQzQ0QzMzQjU2NkVFNjNCMTQxRjRFOTA2OEFEOTE1RjFBMURERTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOyOZfUYaiRhaG2isoHwEjo+mE 4DsiyVtBqbjoeJAJq5+AzqKFA8R5f9dyqM+KgnzxsLVASY99IGJvOcQTgcfWGsUx wVOE6X/MXw4z8YeuSQD93NvSUqPoR9NiEmUvILvxj9rROmyWnk2ZFb64B0gF5u1O DoLswNWiDdFCjQHxKl0WICGPeFsJADbQtX6RNe8X3SBOZWM1/V9IdQzYHPCIQpJi VrvXp1zpOZQ9wMit4Q90qeHIrau+vnJDjGb33Pd+EXkez1B8n7dMS50FK/J3xG92 oplrpeNyVYf2BDG3L6qJmrHNfhDDWrHSjkMSneYuXjJm+flMIAEv70KWstvZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUMRMM7Vm7mOxQfTpBorZFfGh3eQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQK0wDQYJKoZIhvcNAQELBQADggEBAGuU w9aunUJz7pXlxcphiS6rbA0AmsKpBmGUXpowNkRgekQTfg9Mom49JXkOL5KHkL9V TcxivFZwhzsE1yo4SBzfgZM4wZjUz4MMCpuPrIWg5ZeuGQBEH86FwTQF9dVBDk+c cbyEzMlJdasd9wPI8l0Qt2mrdiX0WnGD0l+8AjAsbF9O2GZWi5yFRo6E50AoLNO/ qPFigraQPHG5RFshEenfMT+LwfdVdTwFQawup46MuGrlZtQS0rc2okiUeXBy5azh qMyn9KGFcYwQ9fEquHs4Hswp7+YCrxnHbWi42rDwyvm3vqL9a+4CBWVn81t8nBRp a6SE+hIHlqsp87hMU6k= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:20 2026 by rpki-client