$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216089.roa File: AS216089.roa (raw, json) Hash identifier: MkUkY5aJcgo3gQMBzy3QwdLX6OcdC6qjdi/oh1jUnpI= Subject key identifier: D9:20:6B:7F:94:B6:54:59:90:78:77:69:18:D8:78:EA:C3:B9:BD:F9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 33B8F4751F3F9297EC861B7D9FC492567050488C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216089.roa Signing time: Fri 05 Jun 2026 07:12:27 +0000 ROA not before: Fri 05 Jun 2026 07:07:27 +0000 ROA not after: Fri 04 Jun 2027 07:12:27 +0000 asID: 216089 IP address blocks: 2a05:dfc1:a800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:b8:f4:75:1f:3f:92:97:ec:86:1b:7d:9f:c4:92:56:70:50:48:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:27 2026 GMT Not After : Jun 4 07:12:27 2027 GMT Subject: CN=D9206B7F94B654599078776918D878EAC3B9BDF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a3:2d:e2:fa:f6:e0:0c:28:84:8a:73:d5:46: 03:29:96:da:b8:30:6d:24:30:8c:df:40:79:5a:6e: cc:36:69:94:96:f8:a7:e7:fe:07:9c:2c:80:f5:e3: 21:66:66:e5:48:47:76:c7:00:c2:0e:61:81:75:58: 98:6c:7e:db:f1:cb:0a:55:35:47:46:f2:e6:1e:55: 67:2f:3c:b7:59:54:8b:e4:74:55:72:bd:70:f9:b3: 46:82:bb:3c:c5:08:9c:03:06:ad:15:57:cc:80:ef: 9b:0e:f4:21:df:58:10:ca:12:b5:5a:2b:d0:ec:3f: 1b:e0:15:47:bd:c1:d0:05:f0:76:af:69:d2:28:73: e9:4d:d5:b9:77:46:bf:f7:6f:fe:ae:ba:46:a1:28: 4d:5c:be:a2:d9:fe:ef:bb:0e:84:5a:4d:ec:dc:2e: bc:c7:5a:cc:f0:42:96:d3:91:c3:77:20:61:68:ee: 6a:fc:13:35:5c:5f:8c:ac:66:5e:6a:4d:8d:7c:64: b2:68:ea:f3:83:46:c9:e4:57:71:91:b6:ce:39:bc: b8:8e:4f:b3:27:32:f3:14:76:77:78:0e:19:72:c1: f4:8b:58:38:7b:9a:0e:37:6f:c5:df:ee:5e:ef:74: 42:5d:71:36:3f:a4:6f:5a:b0:f7:1c:4a:97:6b:40: 62:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:20:6B:7F:94:B6:54:59:90:78:77:69:18:D8:78:EA:C3:B9:BD:F9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216089.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a800::/40 Signature Algorithm: sha256WithRSAEncryption 4a:59:08:73:b0:26:fd:3f:72:ef:6f:ee:59:58:91:45:e0:f6: c5:a8:37:4a:55:8b:dc:08:b5:39:c0:72:3b:4e:81:33:0a:51: 6a:ba:8e:7a:d3:5d:45:40:e9:6b:fd:ab:d4:bd:c7:6f:8d:2b: 20:87:12:26:ba:78:99:41:8d:32:3d:3d:bc:ea:05:db:a7:f0: e6:7f:8a:74:7c:27:64:60:a6:f3:0c:5d:0c:82:6a:5b:ec:fb: da:31:09:67:46:bd:19:e9:0e:79:7c:02:77:b6:99:48:5a:d4: 3d:8e:bb:10:89:ab:4f:1f:e6:dc:e8:c5:0c:b8:e6:63:1c:af: c0:9e:fa:0d:68:bf:7e:ea:e6:3d:78:5d:4a:26:8f:6d:e0:d6: ab:81:db:99:23:40:10:1e:a4:8a:b4:47:6c:b5:e4:28:8c:d9: 7c:17:d4:4a:4e:a5:fa:59:10:55:06:6f:b9:9a:fa:d4:e8:b1: 76:80:cb:6a:d5:61:2f:4d:b9:53:a0:cd:d5:dc:3e:2e:49:b2: 5c:9f:ac:80:5b:e4:7a:67:f9:94:fd:a3:95:22:be:a8:e3:85: b2:94:f0:e9:03:50:e4:85:e8:e1:43:7b:d5:b0:b7:bd:f7:09: b2:06:f1:2f:4f:bc:ef:25:4a:d1:7e:c4:18:a3:53:a7:c0:ab: 23:bf:5b:32 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM7j0dR8/kpfshht9n8SSVnBQSIwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjdaFw0yNzA2MDQwNzEyMjdaMDMxMTAvBgNV BAMTKEQ5MjA2QjdGOTRCNjU0NTk5MDc4Nzc2OTE4RDg3OEVBQzNCOUJERjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChoy3i+vbgDCiEinPVRgMpltq4 MG0kMIzfQHlabsw2aZSW+Kfn/gecLID14yFmZuVIR3bHAMIOYYF1WJhsftvxywpV NUdG8uYeVWcvPLdZVIvkdFVyvXD5s0aCuzzFCJwDBq0VV8yA75sO9CHfWBDKErVa K9DsPxvgFUe9wdAF8HavadIoc+lN1bl3Rr/3b/6uukahKE1cvqLZ/u+7DoRaTezc LrzHWszwQpbTkcN3IGFo7mr8EzVcX4ysZl5qTY18ZLJo6vODRsnkV3GRts45vLiO T7MnMvMUdnd4DhlywfSLWDh7mg43b8Xf7l7vdEJdcTY/pG9asPccSpdrQGJbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2SBrf5S2VFmQeHdpGNh46sO5vfkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MDg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwagwDQYJKoZIhvcNAQELBQADggEBAEpZ CHOwJv0/cu9v7llYkUXg9sWoN0pVi9wItTnAcjtOgTMKUWq6jnrTXUVA6Wv9q9S9 x2+NKyCHEia6eJlBjTI9PbzqBdun8OZ/inR8J2RgpvMMXQyCalvs+9oxCWdGvRnp Dnl8Ane2mUha1D2OuxCJq08f5tzoxQy45mMcr8Ce+g1ov37q5j14XUomj23g1quB 25kjQBAepIq0R2y15CiM2XwX1EpOpfpZEFUGb7ma+tTosXaAy2rVYS9NuVOgzdXc Pi5JslyfrIBb5Hpn+ZT9o5UivqjjhbKU8OkDUOSF6OFDe9Wwt733CbIG8S9PvO8l StF+xBijU6fAqyO/WzI= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:51 2026 by rpki-client