$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211962.roa File: AS211962.roa (raw, json) Hash identifier: rq3BfuZKQ+prEfeFvGvMr2f+92Hi0u7onVJMdhbzAMY= Subject key identifier: 8D:41:56:79:89:4C:6B:96:59:2F:DF:33:D2:FC:89:4D:88:DA:E8:69 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1123F6EDD9768A728BDB0961CBBADDE1C7771AA1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211962.roa Signing time: Fri 05 Jun 2026 07:12:46 +0000 ROA not before: Fri 05 Jun 2026 07:07:46 +0000 ROA not after: Fri 04 Jun 2027 07:12:46 +0000 asID: 211962 IP address blocks: 2a06:9f81:4400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:23:f6:ed:d9:76:8a:72:8b:db:09:61:cb:ba:dd:e1:c7:77:1a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:46 2026 GMT Not After : Jun 4 07:12:46 2027 GMT Subject: CN=8D415679894C6B96592FDF33D2FC894D88DAE869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:89:20:de:2b:e0:24:e6:da:bd:fd:8b:95:86: 04:80:e7:24:bb:c6:17:f7:cc:64:2d:3e:83:49:d5: 54:53:5f:55:cd:dc:6d:2d:07:d7:8a:33:ad:21:7f: 68:38:f4:14:b5:9b:e3:69:76:10:88:dc:f7:36:32: c1:e2:ad:1e:52:3c:2a:d8:7a:78:eb:7d:3f:47:9e: 5b:e2:be:60:5a:05:0d:14:4b:2b:05:29:0d:c2:4b: db:af:70:8a:7a:ad:ff:93:12:30:c6:d1:af:79:15: c7:74:4a:43:f3:8a:37:8a:11:99:b6:a9:4e:7d:47: 42:34:4a:10:df:46:a3:9a:27:3a:ce:b3:d6:62:3e: 26:d3:d6:fd:46:7a:74:82:5a:c0:f4:9f:0a:88:5e: cf:81:1c:24:3d:00:11:20:3e:01:74:65:04:ed:4b: 91:09:c2:19:55:af:01:86:a7:90:3d:97:9c:ca:09: dc:c2:e5:a3:6e:eb:6c:f9:49:f6:dc:ad:35:1d:c4: 05:58:ee:b4:c6:3c:f7:bf:66:bc:32:a2:80:b7:9d: bb:a8:80:b4:9b:d3:61:05:01:81:79:bd:f0:09:84: c5:4d:b6:ea:41:e1:d6:4c:b1:90:9a:41:0c:82:b3: 33:c7:4d:6f:75:7e:d8:00:32:87:f4:d3:9a:e9:3a: bd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:41:56:79:89:4C:6B:96:59:2F:DF:33:D2:FC:89:4D:88:DA:E8:69 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS211962.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4400::/40 Signature Algorithm: sha256WithRSAEncryption 14:99:d4:ae:43:cb:a5:81:d1:c5:44:4f:0a:0a:e5:2f:c2:15: a8:9e:1d:62:79:94:85:00:2c:d6:2e:21:d6:21:37:f6:06:98: 3f:43:80:05:91:8c:eb:a0:d0:28:f3:81:47:e3:48:dc:79:fb: 79:f0:1e:01:52:07:15:b4:98:59:56:fb:cb:57:26:93:61:26: 98:1b:71:d4:8e:27:26:16:e8:44:99:82:19:ac:1e:71:e9:47: de:92:30:b7:94:18:1e:d0:a2:50:41:ca:3b:ab:cd:7e:a0:54: 26:28:44:f3:54:ab:a4:e4:1b:aa:be:fb:f5:bc:af:df:70:58: 6e:b0:dd:e1:f9:ec:6d:ab:f6:9e:9f:be:87:38:2d:73:b6:4c: 18:9a:b3:25:da:8e:cf:cc:1e:16:71:ec:99:9e:f2:df:e7:05: 85:b9:1e:a9:58:53:03:45:94:4f:b8:46:e9:71:dd:4c:29:cf: fb:22:48:1e:2d:fc:58:72:cb:75:fb:e0:dd:9f:2a:44:c9:57: 4e:8e:cf:6b:0d:9b:1d:c3:24:b6:55:6d:5f:63:88:2c:38:51: 8c:03:a0:c2:ca:aa:c2:dc:31:fa:46:06:83:03:9f:8d:36:ea: 63:d6:80:fe:75:86:37:df:6a:c3:d2:0e:47:07:7c:86:3e:a0: e4:60:9c:eb -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUESP27dl2inKL2wlhy7rd4cd3GqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDZaFw0yNzA2MDQwNzEyNDZaMDMxMTAvBgNV BAMTKDhENDE1Njc5ODk0QzZCOTY1OTJGREYzM0QyRkM4OTREODhEQUU4NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpiSDeK+Ak5tq9/YuVhgSA5yS7 xhf3zGQtPoNJ1VRTX1XN3G0tB9eKM60hf2g49BS1m+NpdhCI3Pc2MsHirR5SPCrY enjrfT9HnlvivmBaBQ0USysFKQ3CS9uvcIp6rf+TEjDG0a95Fcd0SkPzijeKEZm2 qU59R0I0ShDfRqOaJzrOs9ZiPibT1v1GenSCWsD0nwqIXs+BHCQ9ABEgPgF0ZQTt S5EJwhlVrwGGp5A9l5zKCdzC5aNu62z5SfbcrTUdxAVY7rTGPPe/ZrwyooC3nbuo gLSb02EFAYF5vfAJhMVNtupB4dZMsZCaQQyCszPHTW91ftgAMof005rpOr39AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjUFWeYlMa5ZZL98z0vyJTYja6GkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjExOTYyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUQwDQYJKoZIhvcNAQELBQADggEBABSZ 1K5Dy6WB0cVETwoK5S/CFaieHWJ5lIUALNYuIdYhN/YGmD9DgAWRjOug0CjzgUfj SNx5+3nwHgFSBxW0mFlW+8tXJpNhJpgbcdSOJyYW6ESZghmsHnHpR96SMLeUGB7Q olBByjurzX6gVCYoRPNUq6TkG6q++/W8r99wWG6w3eH57G2r9p6fvoc4LXO2TBia syXajs/MHhZx7Jme8t/nBYW5HqlYUwNFlE+4Rulx3Uwpz/siSB4t/Fhyy3X74N2f KkTJV06Oz2sNmx3DJLZVbV9jiCw4UYwDoMLKqsLcMfpGBoMDn4026mPWgP51hjff asPSDkcHfIY+oORgnOs= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:49 2026 by rpki-client