$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214909.roa File: AS214909.roa (raw, json) Hash identifier: /jW4PLBUUwNGdUlldVw2SGnI30KQQxBdtkxDKCgF+PM= Subject key identifier: E1:6E:B9:0F:FC:1B:3E:01:67:20:25:35:46:21:AC:16:20:83:DD:31 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 35D34C54C55766088CB36F0A712638DF417A28F6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214909.roa Signing time: Fri 05 Jun 2026 07:12:09 +0000 ROA not before: Fri 05 Jun 2026 07:07:09 +0000 ROA not after: Fri 04 Jun 2027 07:12:09 +0000 asID: 214909 IP address blocks: 2a06:9f81:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d3:4c:54:c5:57:66:08:8c:b3:6f:0a:71:26:38:df:41:7a:28:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:09 2026 GMT Not After : Jun 4 07:12:09 2027 GMT Subject: CN=E16EB90FFC1B3E01672025354621AC162083DD31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:4a:d6:5c:dc:67:a4:6e:a8:2a:76:e4:63: c7:a6:ec:d8:2e:7f:ed:6b:a0:23:2d:4b:32:f4:33: 5f:9c:b2:34:20:6a:9a:31:e1:d6:71:c5:9f:46:1b: c2:1e:3d:22:52:33:c0:2e:b6:1a:97:6a:2f:67:cb: 24:19:00:f3:63:40:9c:18:d5:0a:5c:78:e6:d6:76: dd:2c:e0:78:73:50:63:54:74:e3:6b:15:f1:b7:b4: 00:ff:e2:d9:6c:1e:d9:a5:01:4d:19:86:4d:0a:4a: 36:ae:6b:de:f6:68:5c:15:2a:bf:d1:80:4f:25:d9: e0:df:a1:f2:bd:c7:cf:ef:47:74:dd:84:a4:9c:5f: 96:25:cf:fa:1f:32:65:fc:fa:61:f1:9f:58:01:35: 2b:f1:13:be:b1:0e:b1:dc:2b:03:e0:69:5a:80:04: 24:3f:d7:4b:60:db:10:89:d6:3e:75:14:90:2c:ec: 06:40:02:ff:33:61:b4:b1:7b:a9:49:31:2c:f7:c7: a8:79:dd:3d:28:53:b3:e4:8d:ab:ef:bb:2e:95:bb: d8:b4:25:1f:74:cb:3e:06:ba:4e:0b:e7:c0:5c:66: b1:70:0f:25:68:ff:55:37:a9:a9:c0:0f:a6:b5:13: 75:58:66:e4:f7:a1:1f:df:3a:9c:04:2c:b5:37:30: 82:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6E:B9:0F:FC:1B:3E:01:67:20:25:35:46:21:AC:16:20:83:DD:31 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS214909.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3800::/40 Signature Algorithm: sha256WithRSAEncryption 7a:e2:03:ce:ac:f1:5c:91:61:ba:26:1b:77:76:13:07:51:eb: 17:ca:ba:78:77:05:d0:9a:91:43:44:e0:ba:01:42:fa:e4:b6: f2:9a:63:bf:d2:c1:ea:44:fa:08:de:25:86:1c:01:e5:7b:01: 49:e8:f9:b4:bd:d3:e2:ed:cc:2b:8c:73:67:15:d0:5a:6c:47: 66:17:9d:bc:3b:4b:52:be:58:4a:f8:8f:72:f1:95:8d:bd:d5: c5:4a:52:9e:46:2c:06:f2:d5:68:91:e1:8b:46:cc:0b:0e:27: 19:de:93:df:da:27:15:11:fc:6c:f7:af:9d:2c:0e:7d:44:a8: 33:14:45:fc:ca:3f:f7:f5:21:81:80:a8:8d:a7:4d:20:55:2a: b5:03:58:57:a0:37:a7:34:a2:66:ec:35:17:40:f9:34:3e:f1: 79:88:65:de:49:3d:d3:e6:36:8e:96:a2:8a:6f:09:5e:e8:0e: 51:26:28:d2:32:d5:91:54:69:43:0e:b5:ad:8c:81:8a:cc:ff: 07:53:df:ee:fb:85:a9:66:44:a4:f0:2e:c4:73:a9:5d:36:ef: bd:b5:30:cb:dd:38:7b:60:ba:7a:51:05:16:6d:51:2e:26:2f: e4:5a:d7:f2:f3:5f:a1:c5:5d:e3:b3:c2:25:f1:f9:0a:98:d9: 58:ad:4a:69 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNdNMVMVXZgiMs28KcSY430F6KPYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDlaFw0yNzA2MDQwNzEyMDlaMDMxMTAvBgNV BAMTKEUxNkVCOTBGRkMxQjNFMDE2NzIwMjUzNTQ2MjFBQzE2MjA4M0REMzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+TUrWXNxnpG6oKnbkY8em7Ngu f+1roCMtSzL0M1+csjQgapox4dZxxZ9GG8IePSJSM8AuthqXai9nyyQZAPNjQJwY 1QpceObWdt0s4HhzUGNUdONrFfG3tAD/4tlsHtmlAU0Zhk0KSjaua972aFwVKr/R gE8l2eDfofK9x8/vR3TdhKScX5Ylz/ofMmX8+mHxn1gBNSvxE76xDrHcKwPgaVqA BCQ/10tg2xCJ1j51FJAs7AZAAv8zYbSxe6lJMSz3x6h53T0oU7Pkjavvuy6Vu9i0 JR90yz4Guk4L58BcZrFwDyVo/1U3qanAD6a1E3VYZuT3oR/fOpwELLU3MIIvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU4W65D/wbPgFnICU1RiGsFiCD3TEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE0OTA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTgwDQYJKoZIhvcNAQELBQADggEBAHri A86s8VyRYbomG3d2EwdR6xfKunh3BdCakUNE4LoBQvrktvKaY7/SwepE+gjeJYYc AeV7AUno+bS90+LtzCuMc2cV0FpsR2YXnbw7S1K+WEr4j3LxlY291cVKUp5GLAby 1WiR4YtGzAsOJxnek9/aJxUR/Gz3r50sDn1EqDMURfzKP/f1IYGAqI2nTSBVKrUD WFegN6c0ombsNRdA+TQ+8XmIZd5JPdPmNo6WoopvCV7oDlEmKNIy1ZFUaUMOta2M gYrM/wdT3+77halmRKTwLsRzqV027721MMvdOHtgunpRBRZtUS4mL+Ra1/LzX6HF XeOzwiXx+QqY2VitSmk= -----END CERTIFICATE-----Generated at Sat Jun 13 06:43:34 2026 by rpki-client