$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215241.roa File: AS215241.roa (raw, json) Hash identifier: pA/Jwftdrvp2B7jk295dXmmKIOWb5t0/T1t5Qj9Lhns= Subject key identifier: 4B:89:44:93:6D:0D:A7:E7:D0:06:CC:25:30:4E:49:A1:D1:FB:05:DD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2A10F061847934ED72EB70B475882F4F70B53616 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215241.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 215241 IP address blocks: 2a06:9f81:4900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:10:f0:61:84:79:34:ed:72:eb:70:b4:75:88:2f:4f:70:b5:36:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=4B8944936D0DA7E7D006CC25304E49A1D1FB05DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b9:63:da:e3:79:14:33:64:b1:73:e5:19:a5: 81:1f:e6:56:dd:81:ee:86:a4:cc:d8:ae:58:bd:f7: 11:78:0f:13:c5:8b:6a:3c:36:86:fe:7a:4f:f6:c2: 1a:3d:06:fb:08:ec:93:c3:36:03:c1:eb:08:8d:70: 65:c0:f0:e7:dc:24:14:80:a5:f3:22:03:41:b0:f1: 49:ee:04:d4:3f:f8:52:bd:8d:7e:84:ba:20:09:da: d2:52:fb:21:29:db:69:9e:7f:18:de:f8:83:7c:79: a1:65:5b:97:f8:ae:fc:c7:8c:96:3f:3d:65:80:cc: c4:3b:f3:fb:3b:68:22:97:0f:dc:ea:fc:9b:e9:f9: 20:82:aa:e5:95:44:0e:9f:3d:1e:f8:da:72:d2:f5: 2a:e8:e8:87:2c:61:54:67:47:d1:df:22:43:f1:b6: 2b:8b:c9:ed:f0:59:0e:01:41:4e:07:7c:87:9e:46: e3:31:84:5e:46:5a:57:30:a8:56:c7:6b:bf:fa:39: af:88:b1:c6:f6:e8:eb:33:75:c8:ea:df:cd:6e:92: 42:b3:84:57:25:fa:f0:a3:3b:4a:fe:71:8c:b4:14: 1e:d7:d2:7d:45:d4:61:0e:e6:7a:6e:73:b6:5e:3c: ee:8f:80:68:7b:6c:ad:d9:c3:cf:b7:4a:40:ff:d2: 28:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:89:44:93:6D:0D:A7:E7:D0:06:CC:25:30:4E:49:A1:D1:FB:05:DD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215241.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4900::/40 Signature Algorithm: sha256WithRSAEncryption 4f:22:30:be:4f:b9:94:25:d3:e1:8d:3f:1f:18:b6:da:e1:40: c0:b4:6f:01:c7:9d:75:f1:6b:3a:33:f9:8f:0e:15:05:1b:37: b3:8e:c3:a0:8b:9e:8c:f9:21:04:18:39:f2:5f:31:90:e7:7e: 07:15:5c:d7:5b:b7:e1:e8:b6:93:31:31:af:2b:3f:d7:d2:bb: 45:cd:78:29:b6:ac:48:bd:ca:a3:4d:cf:ea:c8:21:29:16:d4: 0b:4c:08:61:37:6e:1f:91:df:03:9f:e3:0d:d7:9d:e3:e0:b7: 26:6b:69:d6:9e:f1:3d:8d:42:72:4f:76:6e:ef:9f:7e:2c:6c: d6:e7:f7:5f:85:48:8c:2b:b9:6d:4e:6a:c4:21:3e:c6:98:91: ab:4b:d1:64:bb:ac:a1:58:b6:2e:57:c1:80:2c:22:ed:98:f4: ca:6f:d7:3f:2e:ca:c7:bd:e0:7b:1b:71:65:cd:b8:b1:b5:28: f9:c0:cc:50:53:6a:f3:66:18:26:80:f4:12:41:54:fa:44:be: d3:1d:bf:13:c7:39:2a:9e:78:22:53:bb:55:4a:be:a7:c4:e7: 55:4e:d9:be:c5:4b:82:0a:84:e0:08:61:f6:dd:ab:4c:c7:2e: 94:71:ea:ba:57:f3:7a:1c:36:fa:4e:dd:70:91:e7:f7:0e:88: 30:de:98:60 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKhDwYYR5NO1y63C0dYgvT3C1NhYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKDRCODk0NDkzNkQwREE3RTdEMDA2Q0MyNTMwNEU0OUExRDFGQjA1REQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAuWPa43kUM2Sxc+UZpYEf5lbd ge6GpMzYrli99xF4DxPFi2o8Nob+ek/2who9BvsI7JPDNgPB6wiNcGXA8OfcJBSA pfMiA0Gw8UnuBNQ/+FK9jX6EuiAJ2tJS+yEp22mefxje+IN8eaFlW5f4rvzHjJY/ PWWAzMQ78/s7aCKXD9zq/Jvp+SCCquWVRA6fPR742nLS9Sro6IcsYVRnR9HfIkPx tiuLye3wWQ4BQU4HfIeeRuMxhF5GWlcwqFbHa7/6Oa+Iscb26Oszdcjq381ukkKz hFcl+vCjO0r+cYy0FB7X0n1F1GEO5npuc7ZePO6PgGh7bK3Zw8+3SkD/0igTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUS4lEk20Np+fQBswlME5JodH7Bd0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1MjQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUkwDQYJKoZIhvcNAQELBQADggEBAE8i ML5PuZQl0+GNPx8YttrhQMC0bwHHnXXxazoz+Y8OFQUbN7OOw6CLnoz5IQQYOfJf MZDnfgcVXNdbt+HotpMxMa8rP9fSu0XNeCm2rEi9yqNNz+rIISkW1AtMCGE3bh+R 3wOf4w3XnePgtyZradae8T2NQnJPdm7vn34sbNbn91+FSIwruW1OasQhPsaYkatL 0WS7rKFYti5XwYAsIu2Y9Mpv1z8uyse94HsbcWXNuLG1KPnAzFBTavNmGCaA9BJB VPpEvtMdvxPHOSqeeCJTu1VKvqfE51VO2b7FS4IKhOAIYfbdq0zHLpRx6rpX83oc NvpO3XCR5/cOiDDemGA= -----END CERTIFICATE-----Generated at Mon Aug 4 15:59:25 2025 by rpki-client