$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215241.roa File: AS215241.roa (raw, json) Hash identifier: /k1z29nhLEDoW3bXaimkDdUvE5tZPuMh96YMGjxCB1Q= Subject key identifier: 84:04:95:5B:79:8A:E9:FF:54:75:9B:F2:A0:A3:05:40:0C:6A:5E:CD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 57EAA2F8C00AB6CE80CD350AA0BB65C1D8EDA3CA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215241.roa Signing time: Fri 05 Jun 2026 07:12:25 +0000 ROA not before: Fri 05 Jun 2026 07:07:25 +0000 ROA not after: Fri 04 Jun 2027 07:12:25 +0000 asID: 215241 IP address blocks: 2a06:9f81:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:ea:a2:f8:c0:0a:b6:ce:80:cd:35:0a:a0:bb:65:c1:d8:ed:a3:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:25 2026 GMT Not After : Jun 4 07:12:25 2027 GMT Subject: CN=8404955B798AE9FF54759BF2A0A305400C6A5ECD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4d:62:e5:d1:47:1b:7c:30:f9:b7:40:c7:8c: c3:66:65:59:ec:f8:5e:3a:8e:ec:fe:bd:f3:3f:8d: 63:b9:42:e0:e4:4e:20:60:c4:d0:9e:ce:54:f4:f8: 06:0d:ee:ba:ea:08:a0:9a:1d:1d:fd:3e:37:61:08: 2d:8c:15:3d:17:c5:1f:12:c0:06:d5:9d:32:cf:f3: 0b:d8:1a:58:b3:03:bc:b4:4e:24:74:47:40:03:a7: de:c7:cb:2c:fb:99:1c:7f:7f:0c:88:10:ca:37:ad: a4:69:f3:35:2e:17:de:30:7c:ee:c0:d1:f6:7c:f1: cd:d0:f1:fc:0e:1e:30:c5:74:9a:40:ed:2a:e1:b7: b4:39:f5:78:fc:e0:5d:85:03:fa:07:e3:6d:22:8d: 2a:2d:ec:37:15:1c:7f:66:42:06:72:8b:c2:6a:5b: 5b:35:d4:05:45:9a:ab:38:19:9d:3b:5b:44:9f:85: 86:19:a2:9c:09:ee:6a:9c:70:48:df:79:38:89:af: fa:c4:da:f4:04:2e:f9:cf:dc:b5:30:17:27:55:9d: 5f:43:a7:2e:37:d9:0d:56:de:39:17:8c:33:b8:0b: dc:16:67:10:4b:94:f0:d2:b5:a1:08:30:4d:7c:7d: 27:08:b3:97:4a:6f:ad:29:93:bd:29:74:e0:28:5b: ce:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:04:95:5B:79:8A:E9:FF:54:75:9B:F2:A0:A3:05:40:0C:6A:5E:CD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4900::/40 Signature Algorithm: sha256WithRSAEncryption ba:8a:0d:64:f7:4c:67:5d:10:9e:58:d4:1c:69:0c:6f:40:c3: ff:ad:c4:a2:91:a8:b3:6c:ef:c9:d2:3d:f7:74:c1:bb:eb:78: c7:85:62:3e:fb:59:ef:1f:45:91:04:6b:70:6e:7b:46:9b:23: 1e:9a:35:82:93:7d:d3:86:53:79:5f:7b:0e:a3:9e:60:3a:1b: db:15:84:4a:0a:e0:dd:79:49:97:44:dd:94:08:0a:b4:3c:6f: 6f:97:68:7b:8f:dd:d6:b2:fd:de:ab:b8:43:1b:a8:11:7f:9e: 38:da:59:21:49:00:75:7d:fa:22:4f:c0:70:7d:24:3f:a9:e8: 4e:d0:f8:d9:b8:ec:c8:5c:e5:83:bc:c6:9b:cb:94:9b:02:c4: ae:94:ea:3a:91:14:86:fb:cf:82:46:f5:38:46:24:77:71:92: a8:e4:71:c7:04:57:91:50:2b:33:3d:48:30:8b:4d:70:5f:b9: f7:1a:f7:63:aa:b9:5f:e0:7a:0c:b2:c8:da:90:10:02:ed:bb: ba:c1:b2:1e:55:2f:b4:8c:7b:40:d9:40:8b:1d:b9:6a:26:a2: 04:56:b0:d0:04:47:ae:d7:92:70:e7:79:18:26:7d:18:4d:17: df:25:c0:52:56:87:64:d7:70:e8:fc:33:e9:d5:d8:78:a5:f9: 9f:b6:42:4c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUV+qi+MAKts6AzTUKoLtlwdjto8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjVaFw0yNzA2MDQwNzEyMjVaMDMxMTAvBgNV BAMTKDg0MDQ5NTVCNzk4QUU5RkY1NDc1OUJGMkEwQTMwNTQwMEM2QTVFQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrTWLl0UcbfDD5t0DHjMNmZVns +F46juz+vfM/jWO5QuDkTiBgxNCezlT0+AYN7rrqCKCaHR39PjdhCC2MFT0XxR8S wAbVnTLP8wvYGlizA7y0TiR0R0ADp97Hyyz7mRx/fwyIEMo3raRp8zUuF94wfO7A 0fZ88c3Q8fwOHjDFdJpA7Srht7Q59Xj84F2FA/oH420ijSot7DcVHH9mQgZyi8Jq W1s11AVFmqs4GZ07W0SfhYYZopwJ7mqccEjfeTiJr/rE2vQELvnP3LUwFydVnV9D py432Q1W3jkXjDO4C9wWZxBLlPDStaEIME18fScIs5dKb60pk70pdOAoW87ZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhASVW3mK6f9UdZvyoKMFQAxqXs0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1MjQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUkwDQYJKoZIhvcNAQELBQADggEBALqK DWT3TGddEJ5Y1BxpDG9Aw/+txKKRqLNs78nSPfd0wbvreMeFYj77We8fRZEEa3Bu e0abIx6aNYKTfdOGU3lfew6jnmA6G9sVhEoK4N15SZdE3ZQICrQ8b2+XaHuP3day /d6ruEMbqBF/njjaWSFJAHV9+iJPwHB9JD+p6E7Q+Nm47Mhc5YO8xpvLlJsCxK6U 6jqRFIb7z4JG9ThGJHdxkqjkcccEV5FQKzM9SDCLTXBfufca92OquV/gegyyyNqQ EALtu7rBsh5VL7SMe0DZQIsduWomogRWsNAER67XknDneRgmfRhNF98lwFJWh2TX cOj8M+nV2Hil+Z+2Qkw= -----END CERTIFICATE-----Generated at Sat Jun 13 10:52:18 2026 by rpki-client