$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209574.roa File: AS209574.roa (raw, json) Hash identifier: Yb/LJYnpyAqpFcCWZjIagWIQvRxlvWvPxI7kcOkRyrQ= Subject key identifier: FB:18:C7:A4:ED:34:DB:45:0A:0D:13:6D:2C:34:3E:95:79:DF:E5:DB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 600DEDAFCD097C0BE0315086F331DB27D95200DB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209574.roa Signing time: Fri 05 Jun 2026 07:12:33 +0000 ROA not before: Fri 05 Jun 2026 07:07:33 +0000 ROA not after: Fri 04 Jun 2027 07:12:33 +0000 asID: 209574 IP address blocks: 2a05:dfc1:7100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:0d:ed:af:cd:09:7c:0b:e0:31:50:86:f3:31:db:27:d9:52:00:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:33 2026 GMT Not After : Jun 4 07:12:33 2027 GMT Subject: CN=FB18C7A4ED34DB450A0D136D2C343E9579DFE5DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:63:12:08:65:86:45:82:7f:f2:3d:36:60:28: ce:c7:5b:1d:f0:21:0e:56:b3:14:95:94:36:3a:79: dd:56:18:43:98:5b:ce:c2:94:03:96:08:ea:6f:47: 8d:80:79:d7:bd:e6:4c:4b:f8:91:5e:88:87:fd:4e: 5c:99:d7:53:69:a9:54:32:7d:9c:ed:f2:43:d1:3a: 45:2e:3a:49:0b:cd:70:e3:68:0c:6d:9c:68:a4:4a: c8:5b:60:aa:37:48:78:74:d7:eb:9c:7a:2a:0b:86: 8f:46:3a:7a:2f:dc:2f:3d:0d:0a:58:bf:bd:51:62: 8c:02:b8:0d:1d:56:1f:ab:de:a1:8f:01:bf:1c:1f: 87:91:8f:9f:e6:be:59:45:53:24:80:34:a1:89:62: 3b:b3:6b:4b:9e:76:95:85:98:17:3c:48:fa:68:2e: ac:ff:b6:67:27:6d:e1:2f:ba:3f:2c:25:28:32:a9: 8a:a7:c1:ba:07:32:67:67:ad:bf:97:9a:04:36:19: fe:da:01:bc:89:b7:6f:64:73:aa:17:ad:e1:28:ef: ea:09:69:5c:73:c0:89:cc:6f:4c:99:14:19:6b:e7: 24:61:71:d2:c5:ae:85:94:0a:05:b2:6d:09:91:02: 7c:06:f3:83:dc:de:2d:2b:fc:4c:1a:95:12:1c:cf: 67:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:18:C7:A4:ED:34:DB:45:0A:0D:13:6D:2C:34:3E:95:79:DF:E5:DB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS209574.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7100::/40 Signature Algorithm: sha256WithRSAEncryption 10:58:01:ee:d3:d7:40:66:e5:b0:14:4b:56:55:be:e2:d3:05: f2:9b:4c:04:14:c7:0d:55:e3:e8:69:9c:1d:11:4e:e9:fc:45: 19:7b:59:9b:60:91:37:9b:2f:3c:1e:e2:04:9d:93:16:d8:d4: 35:62:6f:a8:1a:41:0a:74:b0:78:9c:d6:21:8d:98:c6:67:a5: fd:4c:80:3a:f2:22:67:ca:8e:ab:55:f0:53:32:61:7c:61:7a: 85:b5:bb:6e:62:d7:43:f4:4b:68:99:e9:26:15:2b:2a:f6:ac: 42:a8:fc:e4:fa:59:64:cc:5f:f7:22:0a:28:6d:ab:31:1e:94: 96:55:54:28:1c:e8:50:f6:91:13:9b:f6:dc:f2:bf:be:e5:28: 3f:76:79:1f:79:93:51:26:d0:b7:6a:83:a7:25:97:b2:22:4e: ac:41:ae:98:0c:0e:db:5c:35:62:cb:58:2e:44:24:d6:29:d9: d0:4f:a0:8f:fb:11:50:1a:77:af:64:35:6b:5a:f2:b0:2f:d1: d2:3e:88:67:82:23:7b:93:d9:08:51:f1:b4:1c:18:1b:d9:42: c7:c1:4e:74:12:23:98:7a:c6:f5:cb:5f:c7:73:e7:78:05:4c: 1e:9d:75:d3:91:89:95:9a:c9:1c:cb:5a:0a:20:90:6b:b4:23: be:20:72:2d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYA3tr80JfAvgMVCG8zHbJ9lSANswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzNaFw0yNzA2MDQwNzEyMzNaMDMxMTAvBgNV BAMTKEZCMThDN0E0RUQzNERCNDUwQTBEMTM2RDJDMzQzRTk1NzlERkU1REIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyYxIIZYZFgn/yPTZgKM7HWx3w IQ5WsxSVlDY6ed1WGEOYW87ClAOWCOpvR42Aede95kxL+JFeiIf9TlyZ11NpqVQy fZzt8kPROkUuOkkLzXDjaAxtnGikSshbYKo3SHh01+uceioLho9GOnov3C89DQpY v71RYowCuA0dVh+r3qGPAb8cH4eRj5/mvllFUySANKGJYjuza0uedpWFmBc8SPpo Lqz/tmcnbeEvuj8sJSgyqYqnwboHMmdnrb+XmgQ2Gf7aAbyJt29kc6oXreEo7+oJ aVxzwInMb0yZFBlr5yRhcdLFroWUCgWybQmRAnwG84Pc3i0r/EwalRIcz2c1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+xjHpO0020UKDRNtLDQ+lXnf5dswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjA5NTc0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXEwDQYJKoZIhvcNAQELBQADggEBABBY Ae7T10Bm5bAUS1ZVvuLTBfKbTAQUxw1V4+hpnB0RTun8RRl7WZtgkTebLzwe4gSd kxbY1DVib6gaQQp0sHic1iGNmMZnpf1MgDryImfKjqtV8FMyYXxheoW1u25i10P0 S2iZ6SYVKyr2rEKo/OT6WWTMX/ciCihtqzEelJZVVCgc6FD2kROb9tzyv77lKD92 eR95k1Em0Ldqg6cll7IiTqxBrpgMDttcNWLLWC5EJNYp2dBPoI/7EVAad69kNWta 8rAv0dI+iGeCI3uT2QhR8bQcGBvZQsfBTnQSI5h6xvXLX8dz53gFTB6dddORiZWa yRzLWgogkGu0I74gci0= -----END CERTIFICATE-----Generated at Sat Jun 13 10:22:59 2026 by rpki-client