$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212238.roa File: AS212238.roa (raw, json) Hash identifier: lZRPqtyk6cCBWPiV9DBiwTG5TyPyWBqkEVsi6Ydj4Fw= Subject key identifier: 95:22:E8:EE:11:92:A5:CC:33:BC:65:81:07:B9:5B:A1:83:29:5D:AD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 444D43B84324E4233DBC7EFDF0449F4D967F5062 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212238.roa Signing time: Fri 05 Jun 2026 07:12:19 +0000 ROA not before: Fri 05 Jun 2026 07:07:19 +0000 ROA not after: Fri 04 Jun 2027 07:12:19 +0000 asID: 212238 IP address blocks: 2a0a:6040:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4d:43:b8:43:24:e4:23:3d:bc:7e:fd:f0:44:9f:4d:96:7f:50:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:19 2026 GMT Not After : Jun 4 07:12:19 2027 GMT Subject: CN=9522E8EE1192A5CC33BC658107B95BA183295DAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:63:4a:03:a1:3f:fa:f2:18:d9:b3:e2:6c:a5: de:8b:16:91:83:6c:19:43:37:06:71:1c:31:23:cb: bf:c2:d6:23:86:9e:7a:14:7c:6a:5a:4d:18:40:cf: 68:a0:b4:72:c5:95:d1:50:e1:92:d2:53:b2:17:ad: 0f:ae:43:6c:10:77:76:8f:3d:30:f7:c2:a6:f8:da: 30:6a:f0:00:1f:dc:5b:95:df:03:fc:18:f2:d6:05: c8:ba:6e:27:85:6c:ac:99:52:1a:32:8f:8d:bc:a4: b0:db:fe:91:2f:4d:c3:d8:4f:8e:48:7f:e5:d8:05: 2b:a5:2a:7c:39:07:0f:ef:36:8b:15:59:d7:cb:19: fb:6e:1f:d8:e0:6a:d6:83:a8:fd:b7:4b:6a:b1:3d: 47:64:b4:3c:8b:f7:65:b1:bd:48:85:be:32:ca:fe: 3e:0a:93:7e:eb:82:8e:cb:8a:47:ff:bc:11:fc:ee: 60:af:79:d7:b4:93:58:5d:89:e0:0b:2a:95:9b:f9: b3:9e:52:42:9b:f1:64:14:a0:e8:c4:f0:5e:02:50: 01:ff:ea:e5:42:b7:95:ba:45:d9:44:0f:4f:4d:bd: de:37:31:4f:40:4b:84:95:91:53:e7:08:54:06:25: fd:f2:9b:87:98:87:58:52:5b:07:9e:fb:27:69:b3: d2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:22:E8:EE:11:92:A5:CC:33:BC:65:81:07:B9:5B:A1:83:29:5D:AD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212238.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8700::/40 Signature Algorithm: sha256WithRSAEncryption 1e:eb:3e:95:2b:3b:27:ca:53:40:cd:bd:b7:ae:7b:69:ea:a6: 31:18:e6:27:32:7b:d2:a9:5d:f4:97:7d:48:29:13:1d:14:47: aa:f4:d7:1d:6e:39:be:7a:32:5f:54:09:79:b0:8b:12:a0:8f: 12:22:8e:3a:ca:19:c8:32:66:96:e7:fc:3c:ce:6d:ff:18:4f: cf:86:2b:dc:ef:4a:30:80:67:e6:6e:98:6c:06:56:e7:df:5f: 6b:f0:bb:f7:ed:f5:bc:34:99:9f:76:d0:84:a1:ff:be:ea:58: 4d:65:6a:d2:7b:f6:8f:cd:82:ee:f3:92:b1:6c:7d:97:37:b0: d1:04:7a:0c:02:39:61:aa:ac:23:a3:c5:f1:4b:ee:0c:44:17: 49:6a:a0:e2:ef:4c:5b:0e:cf:43:69:42:87:f0:e5:c0:c9:0a: 7d:41:69:f4:3c:d5:e9:61:a9:b5:c2:24:f2:59:f5:0d:ca:3d: 47:aa:f7:b3:ce:88:23:90:e5:c5:aa:db:68:dd:4b:d1:0c:19: 07:59:44:8b:2d:b9:1f:6e:c9:82:c6:dd:41:4a:66:95:40:ad: bc:73:17:15:55:01:2f:da:6e:91:82:49:89:24:83:29:75:85: c7:02:94:10:77:32:19:66:78:cd:f9:ef:6a:b0:7e:a8:10:40: 8f:7a:ce:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIURE1DuEMk5CM9vH798ESfTZZ/UGIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTlaFw0yNzA2MDQwNzEyMTlaMDMxMTAvBgNV BAMTKDk1MjJFOEVFMTE5MkE1Q0MzM0JDNjU4MTA3Qjk1QkExODMyOTVEQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrY0oDoT/68hjZs+Jspd6LFpGD bBlDNwZxHDEjy7/C1iOGnnoUfGpaTRhAz2igtHLFldFQ4ZLSU7IXrQ+uQ2wQd3aP PTD3wqb42jBq8AAf3FuV3wP8GPLWBci6bieFbKyZUhoyj428pLDb/pEvTcPYT45I f+XYBSulKnw5Bw/vNosVWdfLGftuH9jgataDqP23S2qxPUdktDyL92WxvUiFvjLK /j4Kk37rgo7Likf/vBH87mCvede0k1hdieALKpWb+bOeUkKb8WQUoOjE8F4CUAH/ 6uVCt5W6RdlED09Nvd43MU9AS4SVkVPnCFQGJf3ym4eYh1hSWwee+ydps9JRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlSLo7hGSpcwzvGWBB7lboYMpXa0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyMjM4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIcwDQYJKoZIhvcNAQELBQADggEBAB7r PpUrOyfKU0DNvbeue2nqpjEY5icye9KpXfSXfUgpEx0UR6r01x1uOb56Ml9UCXmw ixKgjxIijjrKGcgyZpbn/DzObf8YT8+GK9zvSjCAZ+ZumGwGVuffX2vwu/ft9bw0 mZ920ISh/77qWE1latJ79o/Ngu7zkrFsfZc3sNEEegwCOWGqrCOjxfFL7gxEF0lq oOLvTFsOz0NpQofw5cDJCn1BafQ81elhqbXCJPJZ9Q3KPUeq97POiCOQ5cWq22jd S9EMGQdZRIstuR9uyYLG3UFKZpVArbxzFxVVAS/abpGCSYkkgyl1hccClBB3Mhlm eM3572qwfqgQQI96zhQ= -----END CERTIFICATE-----Generated at Sat Jun 13 05:40:24 2026 by rpki-client