$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211407.roa File: AS211407.roa (raw, json) Hash identifier: seI300QqNrg/rHaYmACycPnmEtLB2UY6gz+ycXAH/W0= Subject key identifier: 75:F1:E6:F5:EB:8F:7B:E4:20:83:96:46:7A:05:84:AE:E4:F8:49:78 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1E799365BF0058015D3A8ABD782234289AD725A6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211407.roa Signing time: Fri 05 Jun 2026 07:12:37 +0000 ROA not before: Fri 05 Jun 2026 07:07:37 +0000 ROA not after: Fri 04 Jun 2027 07:12:37 +0000 asID: 211407 IP address blocks: 2a0a:6040:1200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:79:93:65:bf:00:58:01:5d:3a:8a:bd:78:22:34:28:9a:d7:25:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:37 2026 GMT Not After : Jun 4 07:12:37 2027 GMT Subject: CN=75F1E6F5EB8F7BE4208396467A0584AEE4F84978 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a3:f5:52:04:b2:42:2b:83:7e:81:8c:28:00: d3:d3:db:5e:1d:52:76:a3:24:7a:38:7c:e9:e3:81: d2:5b:a3:5f:c9:72:bc:fa:3d:72:e8:84:4b:4f:d2: 10:97:38:f2:3c:e9:f0:4b:59:ba:5d:74:7a:7e:ce: b8:d2:dd:36:9b:2c:ed:57:b6:82:a1:12:0f:48:c4: f2:51:f6:73:64:d4:56:6e:c0:3b:28:bc:bb:30:cc: 88:e4:e4:59:f0:87:48:b5:21:a0:8e:12:53:7c:97: b6:e0:8a:70:3d:f3:d3:33:c4:d6:da:57:3b:6b:99: f6:2f:e4:34:a6:66:3b:0a:09:7c:b0:0a:e5:fb:08: 80:8c:be:f9:37:19:5a:0c:00:f6:f1:76:ca:57:5a: ae:cb:8c:82:59:38:25:bb:ba:44:1c:d2:19:4e:d1: c5:29:f7:2f:5d:eb:36:ee:70:b7:a8:a8:c2:5b:c6: cb:2b:72:8f:50:4b:fc:a0:e1:6d:5b:49:b4:fa:2d: f3:6c:2c:23:e3:38:1c:b1:a2:9e:5e:92:6f:11:69: 13:79:7d:a3:82:5a:9e:af:ca:b6:9d:0d:08:6a:58: 41:1f:9d:f9:50:bb:94:fd:24:59:8d:93:31:b0:75: 71:d0:d5:71:3a:e6:8d:4c:04:69:4b:16:15:be:b0: 0c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F1:E6:F5:EB:8F:7B:E4:20:83:96:46:7A:05:84:AE:E4:F8:49:78 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211407.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1200::/40 Signature Algorithm: sha256WithRSAEncryption c0:44:ef:dc:fd:12:a4:4c:2b:99:95:18:10:96:06:b3:14:40: 4f:be:4c:a1:d8:79:f7:ef:61:34:f9:9b:9e:ba:92:f9:04:89: 3a:eb:87:4c:4c:1c:a6:51:84:7d:c7:fb:3c:94:58:d3:dd:24: 63:08:53:2d:5a:3d:c2:a0:82:e0:a0:e8:39:0f:2a:cc:82:b3: 53:8e:0d:5d:4c:65:76:d2:6d:aa:dd:c2:ec:6e:55:39:93:c6: 84:71:1b:28:bb:fb:a0:e5:14:1a:0e:b5:33:ba:d0:85:c9:ec: 7a:f9:48:f1:57:ff:43:a1:66:a6:52:1b:96:65:1f:79:86:7c: 40:99:40:84:b0:44:50:27:52:de:b9:10:e2:e3:43:bc:09:54: 13:29:0c:e0:c0:54:db:da:1f:63:ad:df:f4:29:09:1c:c2:60: 4a:e8:f4:ae:8e:f5:de:61:cf:1e:50:c3:aa:9e:ae:81:cc:47: 88:b7:2d:0e:9a:4d:b3:80:64:e7:55:8d:26:d0:bd:90:eb:b9: a4:6d:27:9b:e2:84:a1:5f:70:59:e1:64:53:bc:95:ee:66:99: 71:69:d5:b9:34:cb:70:2e:0d:d5:15:55:f0:26:b0:7c:c4:da: 4a:db:ed:f5:78:a8:24:0f:6f:03:09:f6:92:4d:d8:f2:66:68: e2:f3:fa:94 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHnmTZb8AWAFdOoq9eCI0KJrXJaYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzdaFw0yNzA2MDQwNzEyMzdaMDMxMTAvBgNV BAMTKDc1RjFFNkY1RUI4RjdCRTQyMDgzOTY0NjdBMDU4NEFFRTRGODQ5NzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuo/VSBLJCK4N+gYwoANPT214d UnajJHo4fOnjgdJbo1/Jcrz6PXLohEtP0hCXOPI86fBLWbpddHp+zrjS3TabLO1X toKhEg9IxPJR9nNk1FZuwDsovLswzIjk5Fnwh0i1IaCOElN8l7bginA989MzxNba VztrmfYv5DSmZjsKCXywCuX7CICMvvk3GVoMAPbxdspXWq7LjIJZOCW7ukQc0hlO 0cUp9y9d6zbucLeoqMJbxssrco9QS/yg4W1bSbT6LfNsLCPjOByxop5ekm8RaRN5 faOCWp6vyradDQhqWEEfnflQu5T9JFmNkzGwdXHQ1XE65o1MBGlLFhW+sAz5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUdfHm9euPe+Qgg5ZGegWEruT4SXgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExNDA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBIwDQYJKoZIhvcNAQELBQADggEBAMBE 79z9EqRMK5mVGBCWBrMUQE++TKHYeffvYTT5m566kvkEiTrrh0xMHKZRhH3H+zyU WNPdJGMIUy1aPcKgguCg6DkPKsyCs1OODV1MZXbSbardwuxuVTmTxoRxGyi7+6Dl FBoOtTO60IXJ7Hr5SPFX/0OhZqZSG5ZlH3mGfECZQISwRFAnUt65EOLjQ7wJVBMp DODAVNvaH2Ot3/QpCRzCYEro9K6O9d5hzx5Qw6qeroHMR4i3LQ6aTbOAZOdVjSbQ vZDruaRtJ5vihKFfcFnhZFO8le5mmXFp1bk0y3AuDdUVVfAmsHzE2krb7fV4qCQP bwMJ9pJN2PJmaOLz+pQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:20 2026 by rpki-client