$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210476.roa File: AS210476.roa (raw, json) Hash identifier: HTdeaXrlgrwTkoWt4rJtC+UjW0q/85tHTqBDKgzz3ts= Subject key identifier: 5B:8A:F2:66:C4:BF:CB:3A:27:E2:28:2C:4F:BB:E7:01:E0:51:6B:3C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 33940948A98166DA358CDA78FD08F0FD8B6982A0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210476.roa Signing time: Fri 05 Jun 2026 07:12:40 +0000 ROA not before: Fri 05 Jun 2026 07:07:40 +0000 ROA not after: Fri 04 Jun 2027 07:12:40 +0000 asID: 210476 IP address blocks: 2a05:dfc1:5b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:94:09:48:a9:81:66:da:35:8c:da:78:fd:08:f0:fd:8b:69:82:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:40 2026 GMT Not After : Jun 4 07:12:40 2027 GMT Subject: CN=5B8AF266C4BFCB3A27E2282C4FBBE701E0516B3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ff:56:dc:2d:86:c2:af:49:e9:04:09:7d:f1: c7:44:dc:04:9a:17:98:74:b7:12:c6:39:5c:cc:ab: 3d:85:05:6e:26:f8:42:44:00:c0:bd:f4:b2:30:ff: ec:7d:90:a4:7a:15:b4:a3:84:dc:41:9b:f7:c8:34: c0:21:d5:12:01:1f:13:8f:82:a5:fd:aa:69:03:c8: ac:51:ab:dc:c4:38:31:90:51:cf:02:ed:71:ee:f9: 31:1d:be:75:df:0b:f6:ea:97:d8:02:ee:86:4d:64: e9:a4:bd:69:fa:7e:2a:f5:f6:64:a9:5c:c3:cd:d2: ae:71:87:f5:96:e5:08:eb:df:3d:63:cb:a4:4c:e4: bb:1a:62:f0:1b:53:42:c2:af:54:44:75:0b:be:74: 42:10:7e:da:58:b7:c0:00:6f:b2:15:bd:4c:74:40: 5c:9f:8e:ea:19:54:7b:a5:a0:4e:4b:82:e4:8a:d4: c5:44:12:ec:cd:50:72:e2:32:ad:fd:06:65:01:73: 63:00:2b:fc:fd:81:57:90:19:54:35:83:95:6c:da: fc:31:37:f4:bf:0a:82:16:02:c0:81:cf:10:28:ac: 92:df:86:49:b0:28:ae:f8:5a:1c:e2:9c:07:24:34: 1d:a5:54:a1:f6:f5:38:1c:cf:8f:48:e0:43:86:77: a7:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8A:F2:66:C4:BF:CB:3A:27:E2:28:2C:4F:BB:E7:01:E0:51:6B:3C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210476.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5b00::/40 Signature Algorithm: sha256WithRSAEncryption 69:8f:21:62:a1:da:a6:d7:00:88:c9:60:5b:4e:b1:44:67:f0: 44:cc:ce:99:6a:19:e4:54:22:3f:c1:f4:b8:14:8a:fe:0d:3e: 44:6e:94:96:07:89:e6:53:a4:19:9d:92:96:1e:79:48:14:d0: ef:7e:88:96:5d:ce:fc:88:1b:cc:f9:34:93:73:4d:13:41:b4: 03:4d:ed:a6:f0:35:91:07:7e:32:00:0e:68:42:6b:de:4f:4b: 15:53:1d:df:b5:a1:af:31:5c:1d:a5:37:4c:35:70:46:dc:46: 9e:04:45:b2:4e:f1:d9:fe:e7:90:df:54:0d:8c:a3:84:d7:a8: cd:b1:64:eb:71:3f:6d:ca:be:74:d8:eb:9e:a7:8f:db:f8:2f: df:8c:b6:8e:6a:fc:f4:6c:6f:4d:58:96:38:4a:73:65:08:de: 70:09:6f:3a:f4:c2:00:b7:d0:d7:ee:41:10:fc:c2:c7:65:16: df:fe:88:d7:b6:60:81:58:86:72:08:10:fc:c9:3c:c2:9a:ad: 2d:68:37:01:9a:00:09:4c:36:b4:4f:6d:27:b1:3f:02:63:f8: 3a:ec:bc:ab:7b:88:82:6f:24:11:f5:b2:d8:5c:62:cf:d0:0a: 02:8c:a7:ee:2e:fb:8c:2c:a3:be:95:85:0e:f2:d5:aa:f9:0e: f5:15:27:65 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM5QJSKmBZto1jNp4/Qjw/YtpgqAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDBaFw0yNzA2MDQwNzEyNDBaMDMxMTAvBgNV BAMTKDVCOEFGMjY2QzRCRkNCM0EyN0UyMjgyQzRGQkJFNzAxRTA1MTZCM0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4/1bcLYbCr0npBAl98cdE3ASa F5h0txLGOVzMqz2FBW4m+EJEAMC99LIw/+x9kKR6FbSjhNxBm/fINMAh1RIBHxOP gqX9qmkDyKxRq9zEODGQUc8C7XHu+TEdvnXfC/bql9gC7oZNZOmkvWn6fir19mSp XMPN0q5xh/WW5Qjr3z1jy6RM5LsaYvAbU0LCr1REdQu+dEIQftpYt8AAb7IVvUx0 QFyfjuoZVHuloE5LguSK1MVEEuzNUHLiMq39BmUBc2MAK/z9gVeQGVQ1g5Vs2vwx N/S/CoIWAsCBzxAorJLfhkmwKK74WhzinAckNB2lVKH29Tgcz49I4EOGd6dxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUW4ryZsS/yzon4igsT7vnAeBRazwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNDc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVswDQYJKoZIhvcNAQELBQADggEBAGmP IWKh2qbXAIjJYFtOsURn8ETMzplqGeRUIj/B9LgUiv4NPkRulJYHieZTpBmdkpYe eUgU0O9+iJZdzvyIG8z5NJNzTRNBtANN7abwNZEHfjIADmhCa95PSxVTHd+1oa8x XB2lN0w1cEbcRp4ERbJO8dn+55DfVA2Mo4TXqM2xZOtxP23KvnTY656nj9v4L9+M to5q/PRsb01YljhKc2UI3nAJbzr0wgC30NfuQRD8wsdlFt/+iNe2YIFYhnIIEPzJ PMKarS1oNwGaAAlMNrRPbSexPwJj+DrsvKt7iIJvJBH1sthcYs/QCgKMp+4u+4ws o76VhQ7y1ar5DvUVJ2U= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:08 2026 by rpki-client