$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: x2HxVrDw3Lu6fsVPifWx4+Uf7QR1JiQDkq5lUicwfRg= Subject key identifier: 9F:8A:68:EA:FF:CC:36:70:02:97:33:85:5D:1F:22:12:4C:2B:91:30 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 646DDED3CA0FAFB528F632C3289C7B626A6EBF88 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212238.roa Signing time: Fri 04 Jul 2025 06:53:23 +0000 ROA not before: Fri 04 Jul 2025 06:48:23 +0000 ROA not after: Fri 03 Jul 2026 06:53:23 +0000 asID: 212238 IP address blocks: 2a0a:6040:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:6d:de:d3:ca:0f:af:b5:28:f6:32:c3:28:9c:7b:62:6a:6e:bf:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:23 2025 GMT Not After : Jul 3 06:53:23 2026 GMT Subject: CN=9F8A68EAFFCC3670029733855D1F22124C2B9130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:20:c9:ac:25:1b:b9:9f:30:c9:e1:d8:21: 71:f8:03:ff:96:7b:d0:af:ca:82:bb:f5:27:6b:58: 71:7b:6e:80:2c:de:b2:e5:04:32:d9:fc:87:2b:f3: 17:8f:89:b4:3c:5d:5e:13:07:95:cb:6b:42:9f:bf: 94:a5:85:9f:48:78:4b:4e:28:1e:8f:34:dd:14:87: a0:5a:5e:d5:b5:65:6e:e3:a6:58:f0:1f:1f:94:c4: 5b:43:e6:8c:0f:b8:b8:f0:34:ce:af:04:d7:ed:eb: cb:50:de:71:30:c1:04:12:4c:aa:28:00:d0:9d:26: 03:c3:3f:af:d9:36:d8:0a:84:7a:70:5d:e1:c4:99: 67:5b:48:88:2b:e1:c1:bb:9f:6e:66:ca:5f:df:d7: 9f:75:42:ae:17:0a:19:de:24:73:b0:96:82:93:c1: 7c:bc:88:8d:52:c0:b4:f4:cf:71:89:cb:b5:e5:7f: a5:88:a1:94:0d:53:b8:8f:46:8e:4e:dc:d8:17:7a: 81:dd:06:66:ea:4c:85:3e:ca:ab:f3:d7:55:4e:1e: 62:e6:04:a1:15:b0:19:b3:9e:ed:0f:41:96:08:17: 85:6c:8a:62:f8:8c:94:7d:88:3e:31:a8:90:34:5e: 83:03:cd:2b:ca:41:89:61:9e:f2:39:fe:48:61:fd: 3b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:8A:68:EA:FF:CC:36:70:02:97:33:85:5D:1F:22:12:4C:2B:91:30 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8700::/40 Signature Algorithm: sha256WithRSAEncryption 4f:e8:8a:7d:cb:e0:3f:e3:1e:1b:71:1b:f5:cb:cf:74:f1:5f: 31:08:c7:b5:bc:82:e2:f4:85:5a:33:30:fe:c8:68:bc:ed:d4: a0:c1:41:45:a8:5c:6e:07:65:93:52:18:ae:3b:67:16:df:7d: 6b:67:61:f9:8f:47:2c:b5:37:fd:87:50:e0:3c:6b:cd:5a:a2: 56:66:4d:b2:aa:4b:81:04:3a:70:42:c0:ee:7f:df:7e:75:ae: dc:84:21:3e:8c:f4:c7:67:28:1e:13:7e:e3:e5:b1:42:b5:47: 95:86:19:52:d0:2f:b7:7c:8c:05:52:81:61:d2:d6:4e:55:0f: 7f:6f:8f:fb:fb:4c:ec:44:15:d1:5a:fd:67:96:50:f2:ff:18: 30:13:68:4c:c8:79:a6:bf:64:27:13:57:d2:17:28:fa:92:bc: ff:5d:84:78:f7:d2:69:4c:be:e6:02:6c:f8:f8:ce:05:64:2b: f8:75:be:23:5a:34:1e:04:f5:26:49:1b:05:82:6f:06:b0:d1: d0:21:67:d0:65:5f:18:fb:63:a0:67:d8:ce:49:c9:06:e6:70: 47:58:9f:60:70:ff:a9:b9:49:18:29:ef:45:f6:73:24:c9:ce: 00:fb:47:1a:0b:c2:01:a5:b0:f4:7e:b1:cd:1c:8f:5d:06:0e: 29:68:a3:9f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZG3e08oPr7Uo9jLDKJx7Ympuv4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjNaFw0yNjA3MDMwNjUzMjNaMDMxMTAvBgNV BAMTKDlGOEE2OEVBRkZDQzM2NzAwMjk3MzM4NTVEMUYyMjEyNEMyQjkxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHSSDJrCUbuZ8wyeHYIXH4A/+W e9CvyoK79SdrWHF7boAs3rLlBDLZ/Icr8xePibQ8XV4TB5XLa0Kfv5SlhZ9IeEtO KB6PNN0Uh6BaXtW1ZW7jpljwHx+UxFtD5owPuLjwNM6vBNft68tQ3nEwwQQSTKoo ANCdJgPDP6/ZNtgKhHpwXeHEmWdbSIgr4cG7n25myl/f1591Qq4XChneJHOwloKT wXy8iI1SwLT0z3GJy7Xlf6WIoZQNU7iPRo5O3NgXeoHdBmbqTIU+yqvz11VOHmLm BKEVsBmznu0PQZYIF4VsimL4jJR9iD4xqJA0XoMDzSvKQYlhnvI5/khh/TuzAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUn4po6v/MNnAClzOFXR8iEkwrkTAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIcwDQYJKoZIhvcNAQELBQADggEBAE/o in3L4D/jHhtxG/XLz3TxXzEIx7W8guL0hVozMP7IaLzt1KDBQUWoXG4HZZNSGK47 ZxbffWtnYfmPRyy1N/2HUOA8a81aolZmTbKqS4EEOnBCwO5/3351rtyEIT6M9Mdn KB4TfuPlsUK1R5WGGVLQL7d8jAVSgWHS1k5VD39vj/v7TOxEFdFa/WeWUPL/GDAT aEzIeaa/ZCcTV9IXKPqSvP9dhHj30mlMvuYCbPj4zgVkK/h1viNaNB4E9SZJGwWC bwaw0dAhZ9BlXxj7Y6Bn2M5JyQbmcEdYn2Bw/6m5SRgp70X2cyTJzgD7RxoLwgGl sPR+sc0cj10GDiloo58= -----END CERTIFICATE-----Generated at Wed Nov 5 14:52:25 2025 by rpki-client