$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211407.roa File: AS211407.roa (raw, json) Hash identifier: w/ZLYUnefi5AaBjZb3X6JyyBf+lQdfdbyIEcoOt0vnU= Subject key identifier: 0E:1F:2E:7B:09:B8:C6:29:10:37:9F:14:AC:4E:1F:4D:20:B4:22:C4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 370D1C7570871AB1E447ACE4684F15270492DB19 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211407.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 211407 IP address blocks: 2a0a:6040:1200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:0d:1c:75:70:87:1a:b1:e4:47:ac:e4:68:4f:15:27:04:92:db:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=0E1F2E7B09B8C62910379F14AC4E1F4D20B422C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ee:43:52:f9:d9:f7:6f:4f:0e:40:e8:ee:9b: 53:00:69:a4:83:94:67:ec:62:4f:6c:51:c6:08:10: 84:13:01:6e:4b:9c:12:13:a6:27:09:7c:a0:61:d6: e1:36:a6:53:5e:0d:4f:3c:b2:b2:16:ab:2d:49:9d: 8a:ba:06:7e:89:2d:b2:e5:06:d7:8a:ad:2d:56:ed: 82:2c:da:fa:99:03:8b:de:f6:fa:33:f2:1c:03:b3: 79:3a:0a:fd:cd:55:4c:ad:8f:1c:e9:22:d9:3a:cb: 87:12:66:44:ac:be:ed:03:a3:5d:2e:8d:db:aa:2a: dd:98:ab:cd:e4:28:c4:bc:92:71:81:dc:be:af:95: 95:40:18:87:ee:9b:78:2a:d9:87:73:d3:1e:a6:31: 1e:c3:df:e1:66:59:c5:0e:4f:4d:f7:99:69:a0:48: 30:1a:46:a9:82:23:cd:4b:0c:0b:fc:6a:58:9c:22: 23:e8:f8:f0:6f:44:2c:24:79:4a:2a:47:06:07:22: 5d:3a:0d:b2:1f:00:9c:4f:b2:ea:6a:e4:91:b6:c5: b6:d4:f0:f9:55:d7:78:10:2d:3e:ec:f2:9c:2b:47: 63:ef:14:4c:07:21:2d:c0:73:77:48:54:56:25:c3: 54:b7:c0:dd:53:63:49:f8:41:30:45:e7:75:08:e5: c3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1F:2E:7B:09:B8:C6:29:10:37:9F:14:AC:4E:1F:4D:20:B4:22:C4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211407.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1200::/40 Signature Algorithm: sha256WithRSAEncryption b9:09:7b:a7:12:2d:90:5d:fb:03:4c:9b:ad:2f:98:22:7b:9d: 0c:9d:71:3a:94:aa:8b:a4:5d:a1:c6:02:6a:79:5d:a3:d9:f3: ca:d5:82:b8:54:de:75:cb:ab:8c:3e:c1:86:c8:d4:cb:5c:5e: 71:82:cd:e5:70:80:82:c2:54:81:0f:a4:12:a7:4a:4c:08:c1: 02:21:ac:0f:a9:97:19:7d:25:50:60:e7:ab:60:77:65:49:ee: 01:ae:5a:78:9a:a6:9a:2a:21:fb:a9:52:b7:a3:e9:85:91:3e: 56:21:cd:53:d4:68:4f:08:47:40:a1:cf:8e:42:79:b5:f7:47: 43:b4:e3:89:3f:40:58:16:06:24:95:9c:a9:60:99:23:d3:18: 71:f3:f2:2b:e6:cc:f6:4d:0b:66:81:49:1a:bd:da:21:50:92: 5d:94:a1:b8:dc:61:15:a7:db:8c:bf:69:81:d8:62:e0:94:2a: 91:57:a3:f8:59:49:e6:bb:17:fc:3b:f4:b0:e8:08:c8:4d:5b: 93:d7:1d:ef:73:8a:9b:3d:5b:81:3c:07:10:c8:62:bf:88:e8: 37:02:a6:ac:6e:e7:cf:21:88:1d:01:fc:a0:09:7c:a6:e6:17: db:49:d8:72:58:87:ca:35:44:9d:8e:f7:81:f6:33:2c:e7:78: 89:2c:94:21 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNw0cdXCHGrHkR6zkaE8VJwSS2xkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDBFMUYyRTdCMDlCOEM2MjkxMDM3OUYxNEFDNEUxRjREMjBCNDIyQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa7kNS+dn3b08OQOjum1MAaaSD lGfsYk9sUcYIEIQTAW5LnBITpicJfKBh1uE2plNeDU88srIWqy1JnYq6Bn6JLbLl BteKrS1W7YIs2vqZA4ve9voz8hwDs3k6Cv3NVUytjxzpItk6y4cSZkSsvu0Do10u jduqKt2Yq83kKMS8knGB3L6vlZVAGIfum3gq2Ydz0x6mMR7D3+FmWcUOT033mWmg SDAaRqmCI81LDAv8alicIiPo+PBvRCwkeUoqRwYHIl06DbIfAJxPsupq5JG2xbbU 8PlV13gQLT7s8pwrR2PvFEwHIS3Ac3dIVFYlw1S3wN1TY0n4QTBF53UI5cP7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDh8uewm4xikQN58UrE4fTSC0IsQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBIwDQYJKoZIhvcNAQELBQADggEBALkJ e6cSLZBd+wNMm60vmCJ7nQydcTqUqoukXaHGAmp5XaPZ88rVgrhU3nXLq4w+wYbI 1MtcXnGCzeVwgILCVIEPpBKnSkwIwQIhrA+plxl9JVBg56tgd2VJ7gGuWniappoq IfupUrej6YWRPlYhzVPUaE8IR0Chz45CebX3R0O044k/QFgWBiSVnKlgmSPTGHHz 8ivmzPZNC2aBSRq92iFQkl2UobjcYRWn24y/aYHYYuCUKpFXo/hZSea7F/w79LDo CMhNW5PXHe9zips9W4E8BxDIYr+I6DcCpqxu588hiB0B/KAJfKbmF9tJ2HJYh8o1 RJ2O94H2MyzneIkslCE= -----END CERTIFICATE-----Generated at Mon Aug 4 13:54:29 2025 by rpki-client