$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210738.roa File: AS210738.roa (raw, json) Hash identifier: xG+rJIHsYCMImsDWfTT1N2IEwyeNr5eICpKOY4CAgdw= Subject key identifier: 95:32:3E:68:7D:A8:2D:52:D5:77:BC:A8:53:5F:30:95:B9:5C:03:66 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 414F8D644EE3466686C9C87D5829DCCC437C44D7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210738.roa Signing time: Fri 05 Jun 2026 07:12:41 +0000 ROA not before: Fri 05 Jun 2026 07:07:41 +0000 ROA not after: Fri 04 Jun 2027 07:12:41 +0000 asID: 210738 IP address blocks: 2a0a:6040:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:4f:8d:64:4e:e3:46:66:86:c9:c8:7d:58:29:dc:cc:43:7c:44:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:41 2026 GMT Not After : Jun 4 07:12:41 2027 GMT Subject: CN=95323E687DA82D52D577BCA8535F3095B95C0366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:80:fa:7f:11:4e:ab:b5:bb:08:8d:60:d8:a5: 13:d0:60:2b:fd:82:71:a0:e6:f3:f8:46:fe:c5:32: 62:30:f3:c7:f8:53:ae:cc:d9:8a:ee:33:13:17:d6: 47:a0:6e:12:3c:82:b2:cb:2d:43:00:a4:1d:d0:00: 81:29:e1:40:90:3f:9c:04:31:99:16:60:76:9b:66: b6:4a:36:ec:00:6e:ca:f7:7a:50:57:49:aa:70:71: aa:8a:86:53:55:87:52:84:fe:31:30:44:e8:21:91: 9a:5f:06:77:eb:9f:fd:0f:fe:4f:bf:fc:b2:9a:c5: 66:b8:37:ef:04:8b:de:41:47:d1:77:60:e1:16:0b: e4:6a:bc:8b:2d:33:92:48:bc:fb:eb:12:e3:31:df: 41:78:34:0a:a2:ef:01:d3:17:da:eb:e8:a0:89:bb: d9:74:cc:d6:31:4e:24:d0:2d:e2:04:af:ed:08:5d: 32:0d:db:1a:5c:d6:7d:b8:bd:f5:7a:8e:0a:ff:df: 1d:6b:9a:79:cf:82:23:28:07:e7:a6:4e:81:57:75: f2:a1:ce:d3:d6:35:1d:1b:dd:32:89:ee:35:5b:7f: 10:31:e1:7a:59:22:73:ca:88:1d:13:bc:82:de:cb: 3d:0b:77:80:2f:71:ab:0f:38:d4:03:85:f2:af:6f: 22:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:32:3E:68:7D:A8:2D:52:D5:77:BC:A8:53:5F:30:95:B9:5C:03:66 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS210738.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6500::/40 Signature Algorithm: sha256WithRSAEncryption d6:c3:61:be:fa:03:7c:9b:31:f9:c9:96:78:27:33:60:3f:5c: 13:60:76:54:c8:fa:c1:1f:bd:fa:39:68:8f:56:7d:6c:b7:17: 9b:d9:1a:7c:21:96:fb:04:51:71:8d:ab:41:b2:3c:2e:04:ed: db:0d:a8:79:85:40:d5:3f:1c:4a:e5:2a:e8:bd:8b:77:fc:99: e9:2c:d4:ca:87:71:c3:54:3d:1e:f5:40:97:80:fe:e3:0a:6b: 78:f7:8f:03:7a:4d:c7:3d:24:bf:a1:59:e1:6d:dd:b6:f7:06: 00:fc:e1:3a:d2:87:0e:94:53:9b:43:69:d0:2b:f0:55:2f:f4: ab:38:30:fb:44:3b:d5:53:55:e8:5f:bc:bd:77:ba:9c:8d:c8: f6:03:a6:60:57:8a:36:35:1a:8d:f4:b1:1d:f6:fa:18:9d:a5: b9:4d:e9:e0:28:ba:de:ca:ad:26:b8:43:a4:19:f0:9e:10:35: 1e:03:dd:4b:24:7e:aa:8d:7c:ed:8c:10:94:8c:64:64:4f:e5: 85:e6:f5:3b:e7:99:61:ef:44:80:60:71:80:db:6d:74:98:2f: c1:41:f0:a9:6e:51:a3:cd:8c:f0:e2:bd:ca:e7:14:30:b6:14: 56:2a:3a:39:55:ae:06:cb:6a:65:0c:5a:f5:bc:bb:02:15:cf: de:3a:5f:1d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQU+NZE7jRmaGych9WCnczEN8RNcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDFaFw0yNzA2MDQwNzEyNDFaMDMxMTAvBgNV BAMTKDk1MzIzRTY4N0RBODJENTJENTc3QkNBODUzNUYzMDk1Qjk1QzAzNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAgPp/EU6rtbsIjWDYpRPQYCv9 gnGg5vP4Rv7FMmIw88f4U67M2YruMxMX1kegbhI8grLLLUMApB3QAIEp4UCQP5wE MZkWYHabZrZKNuwAbsr3elBXSapwcaqKhlNVh1KE/jEwROghkZpfBnfrn/0P/k+/ /LKaxWa4N+8Ei95BR9F3YOEWC+RqvIstM5JIvPvrEuMx30F4NAqi7wHTF9rr6KCJ u9l0zNYxTiTQLeIEr+0IXTIN2xpc1n24vfV6jgr/3x1rmnnPgiMoB+emToFXdfKh ztPWNR0b3TKJ7jVbfxAx4XpZInPKiB0TvILeyz0Ld4AvcasPONQDhfKvbyIPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlTI+aH2oLVLVd7yoU18wlblcA2YwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEwNzM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGUwDQYJKoZIhvcNAQELBQADggEBANbD Yb76A3ybMfnJlngnM2A/XBNgdlTI+sEfvfo5aI9WfWy3F5vZGnwhlvsEUXGNq0Gy PC4E7dsNqHmFQNU/HErlKui9i3f8meks1MqHccNUPR71QJeA/uMKa3j3jwN6Tcc9 JL+hWeFt3bb3BgD84TrShw6UU5tDadAr8FUv9Ks4MPtEO9VTVehfvL13upyNyPYD pmBXijY1Go30sR32+hidpblN6eAout7KrSa4Q6QZ8J4QNR4D3UskfqqNfO2MEJSM ZGRP5YXm9TvnmWHvRIBgcYDbbXSYL8FB8KluUaPNjPDivcrnFDC2FFYqOjlVrgbL amUMWvW8uwIVz946Xx0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:54 2026 by rpki-client