$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216052.roa File: AS216052.roa (raw, json) Hash identifier: gPSpsMpdvM64KjbpAO5u7RwnRbWnsU/dF679SG+MAHo= Subject key identifier: A7:EF:91:3F:FD:6E:F8:A6:A0:40:79:28:67:45:66:3F:16:CF:B7:80 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 731B6EFECE8D5277BF5DD9EC1ABFEE1BBA03FC3C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216052.roa Signing time: Fri 05 Jun 2026 07:12:19 +0000 ROA not before: Fri 05 Jun 2026 07:07:19 +0000 ROA not after: Fri 04 Jun 2027 07:12:19 +0000 asID: 216052 IP address blocks: 2a06:9f81:2200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:1b:6e:fe:ce:8d:52:77:bf:5d:d9:ec:1a:bf:ee:1b:ba:03:fc:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:19 2026 GMT Not After : Jun 4 07:12:19 2027 GMT Subject: CN=A7EF913FFD6EF8A6A04079286745663F16CFB780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:17:56:23:51:73:a0:9e:90:64:28:76:a3:a2: 16:0e:c4:2f:ab:a1:f0:af:f5:06:11:c5:81:dc:31: 76:84:03:2e:74:10:c2:70:40:d7:32:a8:6d:66:ce: 07:37:98:9a:8d:76:2e:d7:42:c9:29:5c:10:e5:5f: ea:52:95:21:8b:e3:92:6f:8c:c5:7a:da:4b:43:84: d6:95:f3:bb:19:fe:d1:ff:e4:01:db:2b:9c:4e:45: 62:68:75:de:65:cd:e4:09:b1:67:25:a5:92:2a:a5: 8c:bf:29:43:4e:8b:a3:8c:11:80:22:61:d7:75:16: 13:b4:6f:ba:24:f0:87:ec:5e:e9:15:db:49:f5:43: ab:1d:5d:e1:cb:25:71:2e:b3:3b:c6:ba:bc:bc:f5: ad:58:5e:5c:5a:2b:54:2b:71:91:5a:8e:bb:2a:38: 25:d5:a3:88:97:a8:48:e1:24:28:63:de:3a:45:04: 16:ae:79:72:3e:d1:da:5a:ab:db:4e:87:9f:80:78: 60:f7:de:22:8f:df:7c:55:b2:2d:92:05:db:a7:1b: c6:03:fe:aa:49:3c:ce:1c:63:b9:18:81:0d:10:6a: bc:4d:7e:69:2a:58:f1:e1:c8:65:b8:b2:e6:7e:4c: 45:3e:a0:56:2e:77:6e:3e:83:a5:7a:27:1e:52:f3: f5:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:EF:91:3F:FD:6E:F8:A6:A0:40:79:28:67:45:66:3F:16:CF:B7:80 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216052.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:2200::/40 Signature Algorithm: sha256WithRSAEncryption 47:18:83:d5:12:cc:27:24:3f:6a:5b:98:d0:16:00:99:43:7e: f9:75:80:9c:25:d8:f8:b1:4d:63:73:49:a0:05:54:df:3f:be: 51:51:0d:e1:b3:e6:0d:0e:3c:d6:a1:a1:07:a1:bd:e3:04:58: 62:90:50:41:a7:cd:11:0b:ce:ae:43:ed:87:40:7e:8b:af:fb: 44:99:ac:09:bd:ec:c1:0c:35:ed:77:cb:95:38:fb:47:92:75: 5a:78:d3:0c:ba:58:74:b5:34:55:16:3d:a5:d5:3b:e7:f6:dd: 0c:86:93:fb:09:3f:72:f8:b9:a1:e3:c2:8e:e2:27:02:0a:c3: 9b:19:b2:2e:12:b7:e1:17:73:6d:33:c0:91:35:90:b8:4a:8c: 04:b8:52:27:d3:87:a2:81:6e:74:b7:12:8d:35:71:c4:bb:bc: 48:b0:09:f8:a9:5b:54:79:04:fb:72:e4:6a:99:00:20:52:02: b0:7a:d2:9c:45:27:f9:ab:d9:95:97:f0:d9:c7:52:d9:e4:4a: 24:28:41:92:b6:75:31:76:a2:ec:1d:b1:27:87:23:ff:06:94: 1b:47:e6:22:12:cf:dc:57:fa:a7:1f:0a:dc:05:3b:1e:e0:20: 79:2b:a3:62:c3:ff:ea:5d:f6:df:7a:25:af:ba:31:c8:bc:8e: fe:d9:92:4b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcxtu/s6NUne/XdnsGr/uG7oD/DwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTlaFw0yNzA2MDQwNzEyMTlaMDMxMTAvBgNV BAMTKEE3RUY5MTNGRkQ2RUY4QTZBMDQwNzkyODY3NDU2NjNGMTZDRkI3ODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTF1YjUXOgnpBkKHajohYOxC+r ofCv9QYRxYHcMXaEAy50EMJwQNcyqG1mzgc3mJqNdi7XQskpXBDlX+pSlSGL45Jv jMV62ktDhNaV87sZ/tH/5AHbK5xORWJodd5lzeQJsWclpZIqpYy/KUNOi6OMEYAi Ydd1FhO0b7ok8IfsXukV20n1Q6sdXeHLJXEuszvGury89a1YXlxaK1QrcZFajrsq OCXVo4iXqEjhJChj3jpFBBaueXI+0dpaq9tOh5+AeGD33iKP33xVsi2SBdunG8YD /qpJPM4cY7kYgQ0QarxNfmkqWPHhyGW4suZ+TEU+oFYud24+g6V6Jx5S8/WxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUp++RP/1u+KagQHkoZ0VmPxbPt4AwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDUyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgSIwDQYJKoZIhvcNAQELBQADggEBAEcY g9USzCckP2pbmNAWAJlDfvl1gJwl2PixTWNzSaAFVN8/vlFRDeGz5g0OPNahoQeh veMEWGKQUEGnzRELzq5D7YdAfouv+0SZrAm97MEMNe13y5U4+0eSdVp40wy6WHS1 NFUWPaXVO+f23QyGk/sJP3L4uaHjwo7iJwIKw5sZsi4St+EXc20zwJE1kLhKjAS4 UifTh6KBbnS3Eo01ccS7vEiwCfipW1R5BPty5GqZACBSArB60pxFJ/mr2ZWX8NnH UtnkSiQoQZK2dTF2ouwdsSeHI/8GlBtH5iISz9xX+qcfCtwFOx7gIHkro2LD/+pd 9t96Ja+6Mci8jv7Zkks= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:49 2026 by rpki-client