$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215918.roa File: AS215918.roa (raw, json) Hash identifier: DkvkKllSxeNj5OwGo5Z6lSLl5cr0Axq78OfC2c3xYAY= Subject key identifier: D1:E9:7E:70:32:94:27:C6:32:49:4A:32:8F:89:2F:C6:A2:FB:4B:B2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0A0EDD24E46B46DDA93217F9DA94FD6A83B6B651 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215918.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 215918 IP address blocks: 2a06:9f81:2400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:0e:dd:24:e4:6b:46:dd:a9:32:17:f9:da:94:fd:6a:83:b6:b6:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=D1E97E70329427C632494A328F892FC6A2FB4BB2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:32:a5:98:23:bf:91:60:a5:0e:6f:1d:59:2a: 96:e7:a0:da:4f:12:76:3f:53:07:fd:11:dc:e3:f3: fb:0f:6e:1e:2b:48:60:1d:5a:1e:7a:9e:14:76:2e: b3:c2:56:69:1d:33:ff:c1:89:6b:e1:e8:0a:0c:ad: 6e:87:3b:1b:ba:36:3b:3c:2a:08:30:17:66:97:51: 90:87:c9:a4:7f:2f:e1:a6:e4:55:78:19:00:e7:16: c9:f4:3b:6a:e4:1f:e0:c3:b9:61:66:fa:c3:39:d3: 47:d0:fe:39:0e:d2:c0:ba:4e:88:56:a5:f6:c1:5b: 55:c5:bb:b1:ba:3d:66:f2:c7:13:49:bc:6a:1e:d4: 7b:22:6a:f0:39:15:9f:d1:a7:b1:a9:ab:50:b0:82: c0:7d:61:5b:8c:65:2c:96:51:c4:df:17:05:48:14: 21:a7:33:5d:7f:d1:f1:f3:63:8e:68:d2:4a:62:f1: 38:e7:ee:ee:b5:79:00:a1:b8:e3:86:10:d3:ff:5d: 1c:0c:d5:01:c6:1e:86:bb:d1:b6:57:35:98:6d:25: 93:05:97:e8:c1:37:47:10:9b:49:92:42:cf:2b:9f: 7d:db:9a:31:63:e2:94:f2:ab:d9:8c:c3:18:cc:85: d3:3b:b7:e6:13:df:83:08:11:0f:48:e6:3a:3d:b5: b1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E9:7E:70:32:94:27:C6:32:49:4A:32:8F:89:2F:C6:A2:FB:4B:B2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215918.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2400::/40 Signature Algorithm: sha256WithRSAEncryption a7:cb:72:92:17:5c:bc:82:64:7c:8b:bb:f1:12:0d:a9:9d:86: 8d:23:4d:12:17:8a:d8:2b:c4:10:b6:b9:8b:db:c5:ab:79:6b: 3a:59:96:72:48:f8:72:22:24:0c:1e:55:2a:c9:f8:e8:ec:fb: be:23:b9:23:c8:e4:ff:82:f3:8e:6b:ad:74:7c:03:79:a4:a6: 21:9a:f0:b9:aa:0c:e5:b2:7e:5e:2b:63:b8:fe:55:a7:3f:c9: cc:93:40:aa:05:cd:f9:c7:18:4f:a9:f7:5b:79:92:76:76:90: 29:38:e9:87:32:9c:c4:3a:dc:ee:ae:55:43:61:fc:89:f0:45: ae:77:0c:74:a9:dc:7c:07:3a:0a:de:03:d3:27:e7:51:89:b7: 9f:1f:b3:24:6e:de:a3:5c:00:c6:8b:95:00:7f:26:b6:b5:61: 56:ef:51:2b:bb:72:4f:c9:be:b3:86:df:19:11:eb:df:e5:31: 40:45:00:31:43:88:aa:6d:7a:65:b2:2c:b9:9c:0b:4e:5d:ee: 80:9e:fe:bd:ee:7f:a7:05:2c:02:36:33:57:6e:e6:a8:80:ae: 49:46:1f:f3:0d:36:e1:0f:48:34:ff:f5:c0:cc:4c:3d:ec:73: c4:37:d1:d5:ca:54:30:31:36:88:c1:1f:bc:96:59:91:65:3c: 52:70:5c:67 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCg7dJORrRt2pMhf52pT9aoO2tlEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKEQxRTk3RTcwMzI5NDI3QzYzMjQ5NEEzMjhGODkyRkM2QTJGQjRCQjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnMqWYI7+RYKUObx1ZKpbnoNpP EnY/Uwf9Edzj8/sPbh4rSGAdWh56nhR2LrPCVmkdM//BiWvh6AoMrW6HOxu6Njs8 KggwF2aXUZCHyaR/L+Gm5FV4GQDnFsn0O2rkH+DDuWFm+sM500fQ/jkO0sC6TohW pfbBW1XFu7G6PWbyxxNJvGoe1HsiavA5FZ/Rp7Gpq1CwgsB9YVuMZSyWUcTfFwVI FCGnM11/0fHzY45o0kpi8Tjn7u61eQChuOOGENP/XRwM1QHGHoa70bZXNZhtJZMF l+jBN0cQm0mSQs8rn33bmjFj4pTyq9mMwxjMhdM7t+YT34MIEQ9I5jo9tbFRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU0el+cDKUJ8YySUoyj4kvxqL7S7IwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1OTE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSQwDQYJKoZIhvcNAQELBQADggEBAKfL cpIXXLyCZHyLu/ESDamdho0jTRIXitgrxBC2uYvbxat5azpZlnJI+HIiJAweVSrJ +Ojs+74juSPI5P+C845rrXR8A3mkpiGa8LmqDOWyfl4rY7j+Vac/ycyTQKoFzfnH GE+p91t5knZ2kCk46YcynMQ63O6uVUNh/InwRa53DHSp3HwHOgreA9Mn51GJt58f syRu3qNcAMaLlQB/Jra1YVbvUSu7ck/JvrOG3xkR69/lMUBFADFDiKptemWyLLmc C05d7oCe/r3uf6cFLAI2M1du5qiArklGH/MNNuEPSDT/9cDMTD3sc8Q30dXKVDAx NojBH7yWWZFlPFJwXGc= -----END CERTIFICATE-----Generated at Wed Nov 5 08:43:49 2025 by rpki-client