$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216118.roa File: AS216118.roa (raw, json) Hash identifier: mdDCnUVFovZalWLNM2fSF7fuOBGQR3tkTxQn01ZnZiw= Subject key identifier: 3F:10:8B:B3:57:36:1A:85:60:25:61:0D:4C:59:07:22:DA:35:01:E5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3DC68A3F3C1B2EBF7EDDB43F77C2CE208F7E8F2F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216118.roa Signing time: Fri 04 Jul 2025 06:53:27 +0000 ROA not before: Fri 04 Jul 2025 06:48:27 +0000 ROA not after: Fri 03 Jul 2026 06:53:27 +0000 asID: 216118 IP address blocks: 2a05:dfc1:b200::/40 maxlen: 48 2a05:dfc1:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c6:8a:3f:3c:1b:2e:bf:7e:dd:b4:3f:77:c2:ce:20:8f:7e:8f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:27 2025 GMT Not After : Jul 3 06:53:27 2026 GMT Subject: CN=3F108BB357361A856025610D4C590722DA3501E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6f:23:b7:3b:11:58:df:40:ac:ed:63:34:c3: c2:7a:f7:1e:33:42:e7:ac:21:b0:5b:78:4e:05:8e: af:c1:9e:66:e1:7d:94:aa:9e:ec:d4:47:26:3b:c3: 21:d8:1a:14:bd:87:59:21:4a:ac:ee:16:26:ac:c2: 0e:76:4d:c2:c1:69:d7:99:05:7b:df:c4:3f:8f:dc: 2c:f7:23:33:a6:d5:7c:d5:37:7b:39:4a:13:9f:81: f2:cb:df:b8:06:71:50:e7:cd:51:62:62:23:50:00: e7:b1:1e:31:f6:c0:f6:c2:29:66:c2:05:48:7e:79: 85:bd:1f:db:e5:cb:a8:28:de:23:c2:2d:b8:09:f9: 4a:54:85:60:3f:91:88:a8:0d:7b:b5:89:32:67:c4: 54:26:a8:4e:50:54:05:f2:a3:91:89:4e:2c:b0:55: 9d:a0:b3:65:74:ad:7a:1f:d8:12:05:1b:d2:2e:55: d9:0e:78:7e:09:79:8b:b3:7e:22:8a:8a:9a:88:35: 97:46:87:ca:77:c0:03:c3:a7:4d:43:3a:48:cf:74: eb:dd:56:15:89:4b:94:15:be:71:18:51:73:63:26: f8:6a:1e:69:80:cc:48:c2:45:b2:d1:b2:2c:82:ed: 61:4f:73:f7:60:1c:15:34:b9:cd:49:91:93:94:ba: 83:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:10:8B:B3:57:36:1A:85:60:25:61:0D:4C:59:07:22:DA:35:01:E5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216118.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b200::/39 Signature Algorithm: sha256WithRSAEncryption 66:1b:2d:70:5c:92:28:e9:ba:01:4a:f1:ad:2e:6b:48:bb:ef: 4f:83:6f:27:2c:f7:b8:49:ef:fa:9d:67:e9:39:fa:3e:58:05: ab:f5:e1:91:a0:37:27:55:37:34:9e:7a:89:20:d9:f8:42:1c: fd:6f:64:d2:44:2a:70:7a:a1:80:0d:ac:3e:95:f4:a9:b4:60: 3a:de:52:00:15:ec:6a:9e:4b:3f:93:64:2d:cb:dd:f6:12:4c: de:b8:51:fd:b1:77:3c:5f:5f:78:6a:c6:63:0b:d3:0e:b4:1c: d5:7b:b1:2f:27:60:fd:77:0b:54:75:04:b4:b5:1f:7c:55:6d: e6:d1:3a:59:c9:1c:b7:2b:52:d2:3e:9e:23:b4:ba:45:cb:23: 99:86:06:79:cd:46:1d:51:93:37:b9:0c:18:86:4e:a3:1a:f3: 3f:7b:b0:86:20:50:09:ea:c6:b1:6e:63:6a:1e:d6:48:d6:3c: 26:d4:20:11:22:ff:3a:0a:d3:dd:2a:7e:73:f1:ab:7b:ec:b8: eb:5e:18:e9:da:ca:ed:43:f2:49:db:e8:11:96:5c:33:01:82: 46:70:16:6c:fc:d0:ad:78:07:e9:bf:70:e6:fb:b0:68:7f:68: 7f:dd:03:d5:1a:5a:ac:50:d8:03:0f:72:9d:f4:45:c2:56:e5: d2:30:7a:41 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPcaKPzwbLr9+3bQ/d8LOII9+jy8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjdaFw0yNjA3MDMwNjUzMjdaMDMxMTAvBgNV BAMTKDNGMTA4QkIzNTczNjFBODU2MDI1NjEwRDRDNTkwNzIyREEzNTAxRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcbyO3OxFY30Cs7WM0w8J69x4z QuesIbBbeE4Fjq/BnmbhfZSqnuzURyY7wyHYGhS9h1khSqzuFiaswg52TcLBadeZ BXvfxD+P3Cz3IzOm1XzVN3s5ShOfgfLL37gGcVDnzVFiYiNQAOexHjH2wPbCKWbC BUh+eYW9H9vly6go3iPCLbgJ+UpUhWA/kYioDXu1iTJnxFQmqE5QVAXyo5GJTiyw VZ2gs2V0rXof2BIFG9IuVdkOeH4JeYuzfiKKipqINZdGh8p3wAPDp01DOkjPdOvd VhWJS5QVvnEYUXNjJvhqHmmAzEjCRbLRsiyC7WFPc/dgHBU0uc1JkZOUuoP9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPxCLs1c2GoVgJWENTFkHIto1AeUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbIwDQYJKoZIhvcNAQELBQADggEBAGYb LXBckijpugFK8a0ua0i770+Dbycs97hJ7/qdZ+k5+j5YBav14ZGgNydVNzSeeokg 2fhCHP1vZNJEKnB6oYANrD6V9Km0YDreUgAV7GqeSz+TZC3L3fYSTN64Uf2xdzxf X3hqxmML0w60HNV7sS8nYP13C1R1BLS1H3xVbebROlnJHLcrUtI+niO0ukXLI5mG BnnNRh1Rkze5DBiGTqMa8z97sIYgUAnqxrFuY2oe1kjWPCbUIBEi/zoK090qfnPx q3vsuOteGOnayu1D8knb6BGWXDMBgkZwFmz80K14B+m/cOb7sGh/aH/dA9UaWqxQ 2AMPcp30RcJW5dIwekE= -----END CERTIFICATE-----Generated at Wed Nov 5 08:43:41 2025 by rpki-client