$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212799.roa File: AS212799.roa (raw, json) Hash identifier: Plg9JdV+jhIntx8JHkSci6ZYyV3tos7NGISJ24TPF1s= Subject key identifier: DE:70:24:4B:3C:D1:0E:36:61:B9:FF:19:1C:4A:48:6F:C4:19:01:85 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1B29FCE5D524EF82DDD9BB23248FD0EABDB064EA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212799.roa Signing time: Fri 05 Jun 2026 07:12:13 +0000 ROA not before: Fri 05 Jun 2026 07:07:13 +0000 ROA not after: Fri 04 Jun 2027 07:12:13 +0000 asID: 212799 IP address blocks: 2a0a:6040:700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:29:fc:e5:d5:24:ef:82:dd:d9:bb:23:24:8f:d0:ea:bd:b0:64:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:13 2026 GMT Not After : Jun 4 07:12:13 2027 GMT Subject: CN=DE70244B3CD10E3661B9FF191C4A486FC4190185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cc:77:62:59:b0:a5:74:ab:c7:49:16:a2:80: a0:f6:4b:cc:67:4c:fc:56:35:66:d8:76:58:84:e3: 48:0e:fd:1f:59:5f:ef:8c:44:55:92:e2:9c:d6:65: 46:1a:a3:c1:27:29:f5:3d:70:1e:a6:f2:99:e5:da: 24:0f:62:d5:21:80:38:d5:16:16:33:f6:02:28:46: 2f:e0:6b:59:88:bc:60:e7:83:a2:59:13:ce:d4:47: aa:57:60:26:07:cb:d9:47:bc:54:1b:df:b5:fa:7c: 23:88:f2:32:c7:87:10:94:e8:0a:47:85:68:d8:c6: 9f:77:8c:86:63:07:5a:63:4a:ee:af:9c:56:db:81: 92:e3:b2:54:d3:4a:5f:af:63:27:34:1d:eb:79:91: 30:b5:18:b6:1a:e3:1d:c2:ed:b7:ad:5d:d8:77:0d: b7:4b:b6:24:bf:c4:3d:5b:b8:a2:18:f0:a1:2b:12: 67:37:3c:5b:71:25:96:e3:b1:2c:94:a9:03:7c:32: 75:ee:62:ef:bc:a5:d6:3f:e3:6c:41:5c:41:d5:0b: c5:e7:c2:65:44:0c:da:3e:4f:73:b6:48:7f:b5:85: a1:65:15:56:06:f7:a0:a0:e8:66:52:c7:89:08:17: a0:3a:74:af:f3:ec:20:4b:41:af:e2:c2:7f:b1:c8: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:70:24:4B:3C:D1:0E:36:61:B9:FF:19:1C:4A:48:6F:C4:19:01:85 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS212799.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:700::/40 Signature Algorithm: sha256WithRSAEncryption 63:77:1a:3d:6d:36:0a:96:a7:e2:28:86:0b:59:ec:12:37:a0: c7:ca:1b:9a:54:c7:e9:4b:57:b7:2f:de:14:4c:fc:2d:0b:b1: b0:48:c5:4d:7a:69:b4:40:aa:ff:27:80:0c:7c:92:76:0d:22: 97:68:56:88:ce:fa:c3:95:cd:aa:9b:5c:f1:c6:f4:3e:d7:9a: e3:e0:1f:a9:b5:65:1d:f2:82:85:03:ff:2b:9c:50:bd:5b:8f: f8:71:50:1f:0f:df:8f:d2:dc:06:6a:a8:45:57:2c:af:c9:78: f2:17:51:20:9e:85:b4:9e:5b:33:6e:ff:cb:ca:8e:ec:fc:a7: 4f:8d:06:10:b1:26:af:60:68:a8:7c:d9:cb:b7:e9:ca:81:5a: f4:ae:44:9e:0d:c6:59:09:d3:b3:2a:48:ee:e2:92:ff:66:2d: 2a:36:fd:8f:89:83:d3:91:6c:10:e4:e3:a6:70:ec:f8:fe:b1: 34:41:41:b8:b6:70:b3:1a:9e:c6:b3:11:e8:67:b3:f7:68:23: 6f:64:c2:4b:96:17:eb:c1:b2:de:1a:93:dd:53:25:d1:c1:fb: 03:9c:bd:b9:5f:97:41:ca:4f:9b:35:ef:a9:25:91:9f:95:c6: 9d:b9:71:a0:ba:77:e4:5e:27:9b:83:20:c8:23:49:42:3f:f7: 83:4a:6a:bf -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGyn85dUk74Ld2bsjJI/Q6r2wZOowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTNaFw0yNzA2MDQwNzEyMTNaMDMxMTAvBgNV BAMTKERFNzAyNDRCM0NEMTBFMzY2MUI5RkYxOTFDNEE0ODZGQzQxOTAxODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXzHdiWbCldKvHSRaigKD2S8xn TPxWNWbYdliE40gO/R9ZX++MRFWS4pzWZUYao8EnKfU9cB6m8pnl2iQPYtUhgDjV FhYz9gIoRi/ga1mIvGDng6JZE87UR6pXYCYHy9lHvFQb37X6fCOI8jLHhxCU6ApH hWjYxp93jIZjB1pjSu6vnFbbgZLjslTTSl+vYyc0Het5kTC1GLYa4x3C7betXdh3 DbdLtiS/xD1buKIY8KErEmc3PFtxJZbjsSyUqQN8MnXuYu+8pdY/42xBXEHVC8Xn wmVEDNo+T3O2SH+1haFlFVYG96Cg6GZSx4kIF6A6dK/z7CBLQa/iwn+xyKTrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3nAkSzzRDjZhuf8ZHEpIb8QZAYUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjEyNzk5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQAcwDQYJKoZIhvcNAQELBQADggEBAGN3 Gj1tNgqWp+IohgtZ7BI3oMfKG5pUx+lLV7cv3hRM/C0LsbBIxU16abRAqv8ngAx8 knYNIpdoVojO+sOVzaqbXPHG9D7XmuPgH6m1ZR3ygoUD/yucUL1bj/hxUB8P34/S 3AZqqEVXLK/JePIXUSCehbSeWzNu/8vKjuz8p0+NBhCxJq9gaKh82cu36cqBWvSu RJ4NxlkJ07MqSO7ikv9mLSo2/Y+Jg9ORbBDk46Zw7Pj+sTRBQbi2cLMansazEehn s/doI29kwkuWF+vBst4ak91TJdHB+wOcvblfl0HKT5s176klkZ+Vxp25caC6d+Re J5uDIMgjSUI/94NKar8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:23 2026 by rpki-client