$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216118.roa File: AS216118.roa (raw, json) Hash identifier: TTyFgwhUNEBQ/8nY2Z0YfGr8IKIV8L+ePyGECkZvbLE= Subject key identifier: 3F:54:75:C0:AD:9A:D9:04:6D:DE:25:EE:B3:DB:7E:04:9D:B4:A2:58 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4877083C57551FBBDEBF4F7EACD7644A52D179E3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216118.roa Signing time: Fri 05 Jun 2026 07:12:26 +0000 ROA not before: Fri 05 Jun 2026 07:07:26 +0000 ROA not after: Fri 04 Jun 2027 07:12:26 +0000 asID: 216118 IP address blocks: 2a05:dfc1:b200::/40 maxlen: 48 2a05:dfc1:b300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:77:08:3c:57:55:1f:bb:de:bf:4f:7e:ac:d7:64:4a:52:d1:79:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:26 2026 GMT Not After : Jun 4 07:12:26 2027 GMT Subject: CN=3F5475C0AD9AD9046DDE25EEB3DB7E049DB4A258 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5f:63:bd:bd:8e:f6:bb:3e:35:bc:91:40:7d: 44:27:73:a1:87:f2:20:58:7e:29:bb:7f:b5:39:11: d7:65:08:01:bd:f0:b9:7b:6b:37:59:c4:40:99:64: f7:e7:51:69:a7:1b:7f:d4:3b:43:31:98:14:76:32: 58:a7:75:f8:d4:d6:53:46:e5:48:37:f1:ba:d4:58: d5:b8:4e:43:5d:b6:13:f6:2f:94:41:dd:b5:54:6a: 86:f8:5a:17:2a:ac:97:8c:d6:9f:e3:2a:f6:b8:5e: e9:21:c1:d5:d6:e2:45:ac:9a:8b:1b:61:3a:36:81: a9:2e:08:c6:b7:3f:cc:59:69:2e:13:4f:69:38:87: 25:ed:39:a3:de:7d:f0:4c:00:9c:87:be:42:bd:40: ce:e0:ed:42:38:6d:2f:73:d7:37:50:0e:f9:3d:89: c1:10:1f:6c:8b:4d:62:e9:43:66:00:a0:95:48:69: da:fb:8c:56:d9:1e:4f:4a:ca:2c:3f:aa:99:08:5c: 53:20:a7:3b:d7:7a:49:14:a9:41:06:75:f3:da:4e: 10:91:79:2e:22:b8:26:9b:7b:c5:ef:45:c8:41:52: 36:af:f1:6e:f1:19:48:68:78:82:f3:f5:79:d4:f1: c7:d5:14:d1:3c:08:7a:57:ca:bf:c1:d3:ad:d1:18: cb:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:54:75:C0:AD:9A:D9:04:6D:DE:25:EE:B3:DB:7E:04:9D:B4:A2:58 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216118.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:b200::/39 Signature Algorithm: sha256WithRSAEncryption 0f:21:93:23:1f:c3:c6:82:b5:b3:92:17:8f:6a:58:2c:fe:0b: 03:fe:2a:9a:62:54:48:c0:20:c5:95:34:cb:ea:c9:cc:bb:fc: f4:21:35:7c:00:c4:bd:8f:4f:3b:e5:4b:f8:48:71:b6:a7:32: c6:7e:1f:58:bb:0a:b4:4b:87:b4:d4:09:f8:ed:dc:fc:bf:f6: f4:4d:d0:31:92:e5:45:f3:7e:b5:df:4b:09:cd:10:d9:d0:76: e1:6a:ad:af:4e:87:41:91:6c:63:c5:2d:bf:5f:d5:d1:3a:51: d6:b7:4e:32:89:34:bf:13:d9:4b:da:43:f7:8c:33:75:42:8d: 22:f9:94:67:aa:51:84:2c:ad:66:65:00:d4:17:bd:4a:a2:6a: 3c:26:fd:4a:3d:81:f6:ce:8d:bb:bf:87:31:5d:4f:40:9c:a9: 1a:1f:84:16:3a:36:f4:4d:8b:51:14:76:61:fb:bd:94:03:3b: df:85:47:01:fe:37:c7:6e:9c:a4:90:ed:d0:8f:a1:72:df:d4: 7b:03:e0:29:14:e7:35:28:8f:41:3b:c4:2d:cf:af:59:ed:1e: a2:2a:ca:28:a3:0c:7e:68:e2:71:e4:9a:a6:a6:d6:a8:c2:b0: b0:9c:c2:a1:c8:ba:7d:c4:18:20:ad:2b:9c:cb:a1:f7:c0:52: 9f:3d:11:92 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSHcIPFdVH7vev09+rNdkSlLReeMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjZaFw0yNzA2MDQwNzEyMjZaMDMxMTAvBgNV BAMTKDNGNTQ3NUMwQUQ5QUQ5MDQ2RERFMjVFRUIzREI3RTA0OURCNEEyNTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3X2O9vY72uz41vJFAfUQnc6GH 8iBYfim7f7U5EddlCAG98Ll7azdZxECZZPfnUWmnG3/UO0MxmBR2MlindfjU1lNG 5Ug38brUWNW4TkNdthP2L5RB3bVUaob4WhcqrJeM1p/jKva4XukhwdXW4kWsmosb YTo2gakuCMa3P8xZaS4TT2k4hyXtOaPeffBMAJyHvkK9QM7g7UI4bS9z1zdQDvk9 icEQH2yLTWLpQ2YAoJVIadr7jFbZHk9Kyiw/qpkIXFMgpzvXekkUqUEGdfPaThCR eS4iuCabe8XvRchBUjav8W7xGUhoeILz9XnU8cfVFNE8CHpXyr/B063RGMvDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUP1R1wK2a2QRt3iXus9t+BJ20olgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTE4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYBKgXfwbIwDQYJKoZIhvcNAQELBQADggEBAA8h kyMfw8aCtbOSF49qWCz+CwP+KppiVEjAIMWVNMvqycy7/PQhNXwAxL2PTzvlS/hI cbanMsZ+H1i7CrRLh7TUCfjt3Py/9vRN0DGS5UXzfrXfSwnNENnQduFqra9Oh0GR bGPFLb9f1dE6Uda3TjKJNL8T2UvaQ/eMM3VCjSL5lGeqUYQsrWZlANQXvUqiajwm /Uo9gfbOjbu/hzFdT0CcqRofhBY6NvRNi1EUdmH7vZQDO9+FRwH+N8dunKSQ7dCP oXLf1HsD4CkU5zUoj0E7xC3Pr1ntHqIqyiijDH5o4nHkmqam1qjCsLCcwqHIun3E GCCtK5zLoffAUp89EZI= -----END CERTIFICATE-----Generated at Sat Jun 13 10:23:59 2026 by rpki-client