$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215918.roa File: AS215918.roa (raw, json) Hash identifier: ydN7bJwwnGyYWZT4op11cVtBtGfaqq9lgp4W+exYklw= Subject key identifier: BE:4F:D4:45:5F:13:97:5B:B8:B9:F8:3E:9D:E5:E7:21:ED:EE:BF:B4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3C8D145505AB04891666541411E60BD7AB5DDEF1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215918.roa Signing time: Fri 05 Jun 2026 07:12:20 +0000 ROA not before: Fri 05 Jun 2026 07:07:20 +0000 ROA not after: Fri 04 Jun 2027 07:12:20 +0000 asID: 215918 IP address blocks: 2a06:9f81:2400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:8d:14:55:05:ab:04:89:16:66:54:14:11:e6:0b:d7:ab:5d:de:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:20 2026 GMT Not After : Jun 4 07:12:20 2027 GMT Subject: CN=BE4FD4455F13975BB8B9F83E9DE5E721EDEEBFB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e9:af:22:dc:e0:3f:af:da:cb:88:6e:11:56: 53:13:2a:c7:6e:33:92:9c:6d:e4:5e:3b:02:f1:11: 34:26:2f:df:df:3f:5d:01:dd:0d:1a:b8:87:b6:f7: bc:46:ab:35:b3:71:91:3d:74:d7:99:d0:d4:a1:fb: c3:4f:86:c9:d4:6f:d0:54:34:ed:42:c1:b7:c1:17: 20:07:de:4d:a3:e9:1c:d5:a2:2e:5a:32:71:e4:51: 97:88:5b:1e:0b:f7:82:58:8e:7f:ab:d5:a1:24:29: 9c:58:14:04:ab:28:4f:d0:37:90:94:ee:f8:ab:4c: c0:26:95:6a:51:ba:b2:9c:7f:5b:f6:0e:99:d1:42: 3a:fd:62:35:be:22:18:a8:8a:64:12:ac:6a:b4:81: 08:3a:a1:65:f6:61:b4:e0:51:6f:40:e3:05:de:b1: 50:48:18:ca:cd:19:b7:a5:ec:d3:4b:37:5c:63:cc: b4:74:97:2a:08:f2:1a:c1:90:4e:49:6a:e4:8a:a7: ea:64:ce:39:5e:43:2f:fd:74:62:93:05:79:9f:1e: da:1b:22:c4:1c:64:87:61:cd:81:d4:a7:88:0d:50: 45:83:d4:98:e4:7e:97:c3:4f:99:f5:5b:8f:94:59: 52:e5:09:4f:4d:e8:5d:be:29:39:91:81:4e:8a:54: 31:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4F:D4:45:5F:13:97:5B:B8:B9:F8:3E:9D:E5:E7:21:ED:EE:BF:B4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215918.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2400::/40 Signature Algorithm: sha256WithRSAEncryption 18:5b:e8:c2:c3:5f:0b:c2:99:a8:8c:82:fb:fe:1d:cf:da:dd: 39:5a:f1:fa:d7:6e:40:b1:3c:57:0a:6f:e5:20:f9:05:dc:4f: da:b3:4e:27:e9:ea:5b:65:5b:f7:9b:79:04:1d:b4:24:d5:2e: 8a:1c:09:e6:23:81:37:ba:19:0f:8a:8d:df:0b:a0:5b:29:ce: 83:d4:02:52:30:bd:b4:42:2b:c6:41:eb:5e:cc:92:f1:2c:26: e8:b4:27:ac:6b:19:00:3e:69:ad:24:00:b1:10:37:88:ed:ce: 81:07:ff:45:42:f9:f0:75:b6:57:43:43:65:b9:a4:84:21:c1: 55:73:c7:f5:8d:75:0a:ff:35:5b:63:3c:85:17:e8:88:88:83: 70:28:9e:00:93:24:29:80:47:24:28:90:68:19:0f:51:bb:d0: f2:60:bf:97:d8:5d:3f:8e:80:31:2d:b7:60:98:4c:1d:2f:97: a6:4e:09:9c:b6:54:7b:78:68:c8:1f:35:6e:19:7c:bd:a3:0d: 9c:21:a2:f0:74:bf:23:f3:87:23:85:75:c3:4f:0e:08:b2:3f: a2:ef:75:b9:50:f6:99:ac:e7:b2:df:25:69:42:a0:49:0a:32: 72:3a:57:3c:4f:b4:49:d3:95:bf:34:a1:0d:1d:dc:eb:e2:60: 84:09:7b:89 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPI0UVQWrBIkWZlQUEeYL16td3vEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjBaFw0yNzA2MDQwNzEyMjBaMDMxMTAvBgNV BAMTKEJFNEZENDQ1NUYxMzk3NUJCOEI5RjgzRTlERTVFNzIxRURFRUJGQjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDe6a8i3OA/r9rLiG4RVlMTKsdu M5KcbeReOwLxETQmL9/fP10B3Q0auIe297xGqzWzcZE9dNeZ0NSh+8NPhsnUb9BU NO1CwbfBFyAH3k2j6RzVoi5aMnHkUZeIWx4L94JYjn+r1aEkKZxYFASrKE/QN5CU 7virTMAmlWpRurKcf1v2DpnRQjr9YjW+IhioimQSrGq0gQg6oWX2YbTgUW9A4wXe sVBIGMrNGbel7NNLN1xjzLR0lyoI8hrBkE5JauSKp+pkzjleQy/9dGKTBXmfHtob IsQcZIdhzYHUp4gNUEWD1JjkfpfDT5n1W4+UWVLlCU9N6F2+KTmRgU6KVDFfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvk/URV8Tl1u4ufg+neXnIe3uv7QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1OTE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSQwDQYJKoZIhvcNAQELBQADggEBABhb 6MLDXwvCmaiMgvv+Hc/a3Tla8frXbkCxPFcKb+Ug+QXcT9qzTifp6ltlW/ebeQQd tCTVLoocCeYjgTe6GQ+Kjd8LoFspzoPUAlIwvbRCK8ZB617MkvEsJui0J6xrGQA+ aa0kALEQN4jtzoEH/0VC+fB1tldDQ2W5pIQhwVVzx/WNdQr/NVtjPIUX6IiIg3Ao ngCTJCmARyQokGgZD1G70PJgv5fYXT+OgDEtt2CYTB0vl6ZOCZy2VHt4aMgfNW4Z fL2jDZwhovB0vyPzhyOFdcNPDgiyP6LvdblQ9pms57LfJWlCoEkKMnI6VzxPtEnT lb80oQ0d3OviYIQJe4k= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:26 2026 by rpki-client