$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211036.roa File: AS211036.roa (raw, json) Hash identifier: SYhHwDryQXIzpeQjyAemBQr8x/7wpw33S+4KJQZRy48= Subject key identifier: 30:C1:D6:8A:E2:C8:63:C7:97:23:87:CF:7F:D5:2B:09:00:CA:7F:A2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 023A36D93B13BF5B7D5B59A78592E46D565F000B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211036.roa Signing time: Fri 05 Jun 2026 07:12:10 +0000 ROA not before: Fri 05 Jun 2026 07:07:10 +0000 ROA not after: Fri 04 Jun 2027 07:12:10 +0000 asID: 211036 IP address blocks: 2a05:dfc1:1a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:3a:36:d9:3b:13:bf:5b:7d:5b:59:a7:85:92:e4:6d:56:5f:00:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:10 2026 GMT Not After : Jun 4 07:12:10 2027 GMT Subject: CN=30C1D68AE2C863C7972387CF7FD52B0900CA7FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:85:9b:b4:72:52:74:97:e3:7c:38:c8:11:3f: b9:b4:fc:eb:dc:8c:df:1b:85:91:bb:38:b1:21:68: 98:d5:df:ae:fb:01:ed:22:a7:6e:96:ea:17:97:ba: 27:5a:f6:94:5b:3c:0b:7e:59:b9:5f:ea:79:14:99: e1:6c:76:6a:5a:69:6d:48:f8:d2:fb:e1:b1:44:a9: 94:9b:13:3a:7e:10:00:93:11:29:21:b8:37:13:48: 05:35:89:76:34:2d:6e:ae:8b:53:69:c4:82:74:07: 09:b4:db:93:8d:5d:7c:82:9f:c7:68:65:e1:14:ab: 39:93:23:3c:e3:8e:69:43:7f:41:01:11:1c:cd:5d: ab:26:68:df:63:dc:a5:cc:c8:33:3c:8c:67:f3:c7: 16:b8:ab:08:c4:89:e8:2d:79:3f:f2:2c:27:be:30: c7:db:5f:ae:42:fa:95:46:c9:b2:05:8e:c4:7d:c8: 3c:39:4a:5b:38:91:45:d6:52:1d:b8:de:31:dd:ed: e0:26:ea:c2:d5:9e:ee:2a:e7:53:52:e9:01:2e:53: 6a:0d:41:19:0d:09:95:7f:88:9a:a9:68:01:f3:13: 58:46:01:19:1f:70:9c:c2:6e:b1:1c:88:73:2d:45: 18:aa:d2:d0:07:9f:75:41:51:d9:bf:af:f1:05:42: 90:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:C1:D6:8A:E2:C8:63:C7:97:23:87:CF:7F:D5:2B:09:00:CA:7F:A2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211036.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1a00::/40 Signature Algorithm: sha256WithRSAEncryption 0b:7a:65:37:e0:bd:54:ef:03:17:6d:95:78:76:98:bf:99:1a: 9c:de:eb:95:ee:e7:de:6d:9d:b7:df:51:18:9c:00:62:bf:7f: 0e:27:b6:40:eb:89:06:29:0b:b8:a3:ad:5a:14:2d:0c:e6:52: 66:be:fc:82:79:b8:bf:36:54:85:b5:f9:da:db:09:c6:19:12: 3d:ba:30:82:d7:85:95:9b:53:a5:6d:86:12:e6:6c:4b:f4:73: 90:5e:67:22:96:60:dc:32:ac:8f:ad:69:82:c5:01:92:74:1c: 7b:81:64:c5:81:3f:56:21:41:ff:de:be:91:cf:a4:c1:38:5f: 06:e5:71:f8:61:d6:ef:1e:d0:18:4a:95:cb:6f:dc:79:5c:30: ec:44:d4:52:56:94:5d:6b:d4:35:1a:e7:02:89:3f:92:67:89: 48:2a:7e:fc:2a:98:1a:03:84:de:c4:62:ab:da:a8:73:56:98: 0c:03:db:04:49:5c:d7:cb:78:6c:78:4e:9d:83:38:8d:d1:d4: 22:24:5e:07:f0:84:b6:7e:69:a3:52:1e:dc:af:b7:0a:57:85: ff:08:bc:3a:89:9c:c1:c8:cc:63:8e:13:a5:6a:d3:76:7a:f2: 2e:4b:8e:19:cb:63:e3:f5:fa:e4:05:95:43:4e:9f:b6:17:94: 6d:5f:fc:e2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAjo22TsTv1t9W1mnhZLkbVZfAAswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTBaFw0yNzA2MDQwNzEyMTBaMDMxMTAvBgNV BAMTKDMwQzFENjhBRTJDODYzQzc5NzIzODdDRjdGRDUyQjA5MDBDQTdGQTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDahZu0clJ0l+N8OMgRP7m0/Ovc jN8bhZG7OLEhaJjV3677Ae0ip26W6heXuida9pRbPAt+Wblf6nkUmeFsdmpaaW1I +NL74bFEqZSbEzp+EACTESkhuDcTSAU1iXY0LW6ui1NpxIJ0Bwm025ONXXyCn8do ZeEUqzmTIzzjjmlDf0EBERzNXasmaN9j3KXMyDM8jGfzxxa4qwjEiegteT/yLCe+ MMfbX65C+pVGybIFjsR9yDw5Sls4kUXWUh243jHd7eAm6sLVnu4q51NS6QEuU2oN QRkNCZV/iJqpaAHzE1hGARkfcJzCbrEciHMtRRiq0tAHn3VBUdm/r/EFQpDDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMMHWiuLIY8eXI4fPf9UrCQDKf6IwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRowDQYJKoZIhvcNAQELBQADggEBAAt6 ZTfgvVTvAxdtlXh2mL+ZGpze65Xu595tnbffURicAGK/fw4ntkDriQYpC7ijrVoU LQzmUma+/IJ5uL82VIW1+drbCcYZEj26MILXhZWbU6VthhLmbEv0c5BeZyKWYNwy rI+taYLFAZJ0HHuBZMWBP1YhQf/evpHPpME4Xwblcfhh1u8e0BhKlctv3HlcMOxE 1FJWlF1r1DUa5wKJP5JniUgqfvwqmBoDhN7EYqvaqHNWmAwD2wRJXNfLeGx4Tp2D OI3R1CIkXgfwhLZ+aaNSHtyvtwpXhf8IvDqJnMHIzGOOE6Vq03Z68i5LjhnLY+P1 +uQFlUNOn7YXlG1f/OI= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:02 2026 by rpki-client