$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210475.roa File: AS210475.roa (raw, json) Hash identifier: WriXWAAqj2xxYNaWYjIx6SQr4wLY8u25F/cweNK90yc= Subject key identifier: 4C:5B:C5:CC:2C:91:DE:E9:86:B4:4E:BC:0C:E1:C9:2B:F4:5D:00:59 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 79FFCA82939B3375AC59BD4B3716E65960CB1162 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210475.roa Signing time: Fri 05 Jun 2026 07:12:47 +0000 ROA not before: Fri 05 Jun 2026 07:07:47 +0000 ROA not after: Fri 04 Jun 2027 07:12:47 +0000 asID: 210475 IP address blocks: 2a05:dfc1:7700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:ff:ca:82:93:9b:33:75:ac:59:bd:4b:37:16:e6:59:60:cb:11:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:47 2026 GMT Not After : Jun 4 07:12:47 2027 GMT Subject: CN=4C5BC5CC2C91DEE986B44EBC0CE1C92BF45D0059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a6:b7:dd:0d:6c:b5:b5:45:0b:c8:66:50:32: 17:ba:7b:91:c9:fc:d9:bc:10:31:d0:47:d2:da:a4: 8f:2f:73:a4:5a:2c:50:98:13:bf:b3:d4:d9:aa:3d: c1:6c:5c:b7:2a:8e:a4:65:fe:4d:a6:f9:f4:42:bd: d0:58:5f:73:12:09:e8:24:a6:1d:e9:b8:6b:87:a5: 7e:5b:96:d3:cf:37:0a:a0:3a:08:da:33:26:74:12: 10:e8:61:ac:54:41:2c:7d:3b:4c:fc:f6:9f:9e:4f: de:b9:1d:ce:db:65:23:e5:7a:de:dd:d5:3f:fb:bf: 88:13:54:08:23:d6:e9:c4:b4:9c:6a:8f:19:cd:66: aa:13:28:fc:41:33:cb:0e:aa:d7:a2:f5:87:f4:96: d6:bb:e7:b4:e4:e3:05:86:12:58:90:86:f5:b5:1c: 70:21:a6:d0:d2:f1:7c:0f:6d:27:73:d4:d6:95:36: ee:03:16:14:f7:06:41:82:63:2e:e1:0e:3a:dc:34: b3:d5:0f:3b:0a:55:40:21:8c:03:15:f2:97:c0:db: fc:11:c6:97:1f:72:57:65:66:fb:b7:c0:5f:fd:d6: 36:01:4a:a5:4b:6c:17:3c:9a:32:ed:f9:e8:2a:8f: 55:7d:96:46:9c:9f:d4:0c:a4:dc:ff:f4:74:a2:e8: 15:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5B:C5:CC:2C:91:DE:E9:86:B4:4E:BC:0C:E1:C9:2B:F4:5D:00:59 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210475.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7700::/40 Signature Algorithm: sha256WithRSAEncryption c1:3b:7b:39:5b:f5:48:56:e4:32:98:51:12:b5:20:24:58:df: 9d:a0:e2:19:b2:5e:80:de:e2:37:60:59:8f:35:b1:1b:6d:f8: 9b:21:a6:95:a0:6f:36:d2:29:2e:e6:ce:0c:ae:c2:43:b0:16: 2a:c1:36:1e:a1:72:5d:e1:63:70:7e:5b:12:e3:f4:ca:f3:84: 99:52:c9:6f:15:0a:ed:44:e8:4e:d8:78:81:53:73:e1:29:dc: 6f:e1:5a:7b:e4:b0:bf:ea:14:0d:73:60:05:4d:30:93:17:77: 2e:ef:5d:66:0f:64:19:24:59:14:43:14:37:65:a7:88:39:f9: 0f:b0:cb:98:f8:18:86:02:53:5b:bc:98:28:e9:1b:26:fe:6d: 40:fc:c1:39:56:79:20:54:45:81:5c:06:99:d8:c3:b0:00:7e: 81:91:fd:35:16:b8:9a:16:42:f6:87:8f:f7:56:31:17:c1:d0: 37:a4:87:39:08:70:d3:59:9d:04:6f:10:25:f2:f0:9a:38:40: c1:5d:be:84:e5:a6:ea:9c:e1:ff:f0:63:60:42:7e:2a:4d:9f: 3c:cd:2a:f2:56:f7:14:ff:4f:68:cc:2b:12:24:9d:20:ca:a3: 4d:5c:19:af:c2:e7:d0:ae:4b:cf:56:d7:1c:16:c2:eb:85:82: 97:9e:f9:dd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUef/KgpObM3WsWb1LNxbmWWDLEWIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDdaFw0yNzA2MDQwNzEyNDdaMDMxMTAvBgNV BAMTKDRDNUJDNUNDMkM5MURFRTk4NkI0NEVCQzBDRTFDOTJCRjQ1RDAwNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/prfdDWy1tUULyGZQMhe6e5HJ /Nm8EDHQR9LapI8vc6RaLFCYE7+z1NmqPcFsXLcqjqRl/k2m+fRCvdBYX3MSCegk ph3puGuHpX5bltPPNwqgOgjaMyZ0EhDoYaxUQSx9O0z89p+eT965Hc7bZSPlet7d 1T/7v4gTVAgj1unEtJxqjxnNZqoTKPxBM8sOqtei9Yf0lta757Tk4wWGEliQhvW1 HHAhptDS8XwPbSdz1NaVNu4DFhT3BkGCYy7hDjrcNLPVDzsKVUAhjAMV8pfA2/wR xpcfcldlZvu3wF/91jYBSqVLbBc8mjLt+egqj1V9lkacn9QMpNz/9HSi6BUzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTFvFzCyR3umGtE68DOHJK/RdAFkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNDc1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXcwDQYJKoZIhvcNAQELBQADggEBAME7 ezlb9UhW5DKYURK1ICRY352g4hmyXoDe4jdgWY81sRtt+JshppWgbzbSKS7mzgyu wkOwFirBNh6hcl3hY3B+WxLj9MrzhJlSyW8VCu1E6E7YeIFTc+Ep3G/hWnvksL/q FA1zYAVNMJMXdy7vXWYPZBkkWRRDFDdlp4g5+Q+wy5j4GIYCU1u8mCjpGyb+bUD8 wTlWeSBURYFcBpnYw7AAfoGR/TUWuJoWQvaHj/dWMRfB0DekhzkIcNNZnQRvECXy 8Jo4QMFdvoTlpuqc4f/wY2BCfipNnzzNKvJW9xT/T2jMKxIknSDKo01cGa/C59Cu S89W1xwWwuuFgpee+d0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:26 2026 by rpki-client