$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210738.roa File: AS210738.roa (raw, json) Hash identifier: YdHB0rOUYlV/lLT+1J6r8X7ddumjDWQmvUUDhDCEN+4= Subject key identifier: D1:96:B7:19:B1:B4:FA:08:25:78:C2:74:91:51:9E:50:E9:76:D2:ED Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3F0BE4A4C562FC1B75D8878915236BBE04D232A1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210738.roa Signing time: Fri 04 Jul 2025 06:53:03 +0000 ROA not before: Fri 04 Jul 2025 06:48:03 +0000 ROA not after: Fri 03 Jul 2026 06:53:03 +0000 asID: 210738 IP address blocks: 2a0a:6040:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0b:e4:a4:c5:62:fc:1b:75:d8:87:89:15:23:6b:be:04:d2:32:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:03 2025 GMT Not After : Jul 3 06:53:03 2026 GMT Subject: CN=D196B719B1B4FA082578C27491519E50E976D2ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3f:05:a8:5f:26:46:60:ec:c1:eb:03:eb:4c: 92:3f:e5:cb:55:74:e9:3a:1b:75:c0:25:1a:d2:48: 81:01:41:cc:5a:9d:d4:fa:3e:b4:ce:3a:e1:a3:26: 31:a6:ca:6b:c9:b2:2e:ce:6e:ee:ff:7b:83:fe:df: b2:c7:1e:5a:62:3f:05:17:ba:fa:42:89:fc:70:55: 3b:aa:73:aa:f4:91:08:7d:9f:93:91:f9:9a:f3:e2: 39:0c:12:41:2a:a5:14:bf:e0:a9:2b:9f:59:7a:ba: a1:a7:40:26:3a:4a:9a:8d:1a:65:92:d2:4a:2e:a9: 7b:fe:c2:ae:82:90:8b:41:88:34:99:f1:c0:eb:d9: 68:d9:fd:ae:b9:e1:f5:c6:2b:bd:85:6d:0a:93:f4: 16:05:17:94:0e:5d:6b:4f:6b:8e:6f:a2:99:ab:e1: fd:d6:6e:20:3b:23:ce:76:de:da:74:d9:1c:8e:0a: a8:62:ef:d5:98:1d:f9:7a:ec:1c:2f:57:49:c9:f4: 8c:e9:18:28:98:66:de:ba:1b:2c:49:3c:09:ce:85: b0:7a:db:c0:7a:02:0a:ff:ea:bc:e6:73:7e:45:ad: ea:94:36:06:4b:40:80:db:af:78:b9:5a:ec:cf:76: 94:32:74:9d:7c:2f:cf:07:80:74:72:05:c6:82:59: fd:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:96:B7:19:B1:B4:FA:08:25:78:C2:74:91:51:9E:50:E9:76:D2:ED X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6500::/40 Signature Algorithm: sha256WithRSAEncryption 80:65:a5:42:5c:4b:43:a8:85:d8:41:16:fb:bc:92:36:73:13: eb:1c:e5:65:4a:84:5f:27:fb:d3:45:32:1c:36:ca:f7:09:c5: 46:be:c0:7b:e9:58:ee:c9:24:f0:82:13:71:7d:76:95:dd:84: 2f:af:a0:d9:91:43:74:ef:16:91:46:87:e9:26:9a:1d:50:f3: 5a:70:5b:a6:be:fc:0d:6f:14:06:a5:df:52:ee:be:9d:b0:b7: 36:85:11:ac:e6:3f:9d:36:fa:54:97:2b:10:dc:1f:ff:14:c0: 81:96:28:14:bc:6c:f2:76:a5:bc:d4:5d:4f:ee:1d:0c:14:50: 43:f2:40:ff:fa:d9:e0:fe:6e:d4:92:8a:26:58:9b:a7:de:e1: 00:f2:6b:31:17:18:74:04:8a:5d:c6:81:25:c9:2d:b3:8f:01: ce:44:9f:08:95:54:75:9d:07:29:3e:fd:86:11:e5:56:6e:3c: 59:02:fd:3c:08:8d:5f:02:5b:ef:72:ae:c3:77:32:9c:1b:3b: 73:c8:d6:7a:c5:8a:cd:a7:41:3e:2b:5f:d2:b1:6f:46:af:a7: 24:ef:2c:81:ff:62:08:21:e4:b3:36:9d:38:91:67:64:cd:af: 8f:1b:46:ac:21:3e:56:87:46:7b:df:65:22:cf:4f:97:66:f9: 50:05:1f:e4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPwvkpMVi/Bt12IeJFSNrvgTSMqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDNaFw0yNjA3MDMwNjUzMDNaMDMxMTAvBgNV BAMTKEQxOTZCNzE5QjFCNEZBMDgyNTc4QzI3NDkxNTE5RTUwRTk3NkQyRUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUPwWoXyZGYOzB6wPrTJI/5ctV dOk6G3XAJRrSSIEBQcxandT6PrTOOuGjJjGmymvJsi7Obu7/e4P+37LHHlpiPwUX uvpCifxwVTuqc6r0kQh9n5OR+Zrz4jkMEkEqpRS/4Kkrn1l6uqGnQCY6SpqNGmWS 0kouqXv+wq6CkItBiDSZ8cDr2WjZ/a654fXGK72FbQqT9BYFF5QOXWtPa45vopmr 4f3WbiA7I8523tp02RyOCqhi79WYHfl67BwvV0nJ9IzpGCiYZt66GyxJPAnOhbB6 28B6Agr/6rzmc35FreqUNgZLQIDbr3i5WuzPdpQydJ18L88HgHRyBcaCWf3rAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0Za3GbG0+ggleMJ0kVGeUOl20u0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGUwDQYJKoZIhvcNAQELBQADggEBAIBl pUJcS0OohdhBFvu8kjZzE+sc5WVKhF8n+9NFMhw2yvcJxUa+wHvpWO7JJPCCE3F9 dpXdhC+voNmRQ3TvFpFGh+kmmh1Q81pwW6a+/A1vFAal31Luvp2wtzaFEazmP502 +lSXKxDcH/8UwIGWKBS8bPJ2pbzUXU/uHQwUUEPyQP/62eD+btSSiiZYm6fe4QDy azEXGHQEil3GgSXJLbOPAc5EnwiVVHWdByk+/YYR5VZuPFkC/TwIjV8CW+9yrsN3 MpwbO3PI1nrFis2nQT4rX9Kxb0avpyTvLIH/Yggh5LM2nTiRZ2TNr48bRqwhPlaH RnvfZSLPT5dm+VAFH+Q= -----END CERTIFICATE-----Generated at Wed Nov 5 06:25:49 2025 by rpki-client