$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216123.roa File: AS216123.roa (raw, json) Hash identifier: QOFfGDzz01GRZVOIvtu6nKqyBzFqaAaQmLSyLNu2mvs= Subject key identifier: 0D:F2:DB:F3:AE:6B:74:08:D4:38:BA:B7:44:BE:5B:46:D5:3A:99:DC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 26BCC000B0596118FB06983ACAF06A3B2F1626C6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216123.roa Signing time: Fri 05 Jun 2026 07:12:44 +0000 ROA not before: Fri 05 Jun 2026 07:07:44 +0000 ROA not after: Fri 04 Jun 2027 07:12:44 +0000 asID: 216123 IP address blocks: 2a05:dfc1:a900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:bc:c0:00:b0:59:61:18:fb:06:98:3a:ca:f0:6a:3b:2f:16:26:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:44 2026 GMT Not After : Jun 4 07:12:44 2027 GMT Subject: CN=0DF2DBF3AE6B7408D438BAB744BE5B46D53A99DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3b:d0:d0:5b:dd:e6:bb:34:07:89:7b:ad:3c: 36:87:06:6d:ac:e5:64:c3:af:21:ec:ce:a4:da:45: e6:73:27:e7:5a:a1:b5:a1:c9:03:e8:cf:19:02:73: e0:b7:b5:72:4c:38:78:15:78:45:91:61:a7:d3:0d: e2:18:26:48:3e:d5:26:d8:d4:ff:a6:f7:a9:b2:e6: 69:e1:d7:f8:cc:d5:4f:1e:1e:b5:5f:ce:dd:3b:f6: c6:33:fc:f5:d8:d3:e3:40:ca:52:ac:49:6a:97:2f: 12:2f:3a:e5:b7:0b:15:bc:e4:4b:2f:ab:ba:f3:41: ef:46:09:c9:b6:54:1c:db:d8:56:e5:9c:93:75:3e: ee:e5:76:80:57:0e:e1:7c:5a:c8:9c:f8:b9:19:46: c3:7f:6a:55:35:41:46:38:11:1b:60:86:62:49:35: e9:b3:a0:e8:20:da:6e:ba:8e:c2:49:2a:5f:1a:5d: f7:f1:65:d3:a0:a8:f5:6d:8f:0e:9d:97:63:6d:68: f6:29:56:bf:76:ce:53:ab:ce:01:3f:23:5e:76:3d: 09:0c:92:9d:bd:4a:38:cb:b0:be:02:c3:2a:58:fc: 9c:78:46:32:d4:c7:74:8e:59:26:4a:03:f4:f5:69: a4:cd:14:23:a6:36:11:d4:3e:e4:8b:66:b0:87:82: 4a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F2:DB:F3:AE:6B:74:08:D4:38:BA:B7:44:BE:5B:46:D5:3A:99:DC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216123.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:a900::/40 Signature Algorithm: sha256WithRSAEncryption 00:72:80:ab:93:14:02:03:ef:42:05:63:1c:d2:75:13:8b:db: cd:31:b7:26:07:28:cf:cc:b3:4e:91:3d:07:7c:ce:27:90:6b: 83:d5:80:84:6f:a1:ed:c1:24:0f:f6:27:0f:8d:f8:fb:d9:f2: 74:9b:fc:52:a8:cf:d1:c7:26:6d:18:4e:bb:b3:86:b0:ce:91: 7b:db:89:21:3e:5b:a5:cb:06:5a:a8:68:f0:f4:8b:25:05:76: 70:52:f5:d9:93:05:91:77:aa:31:29:19:96:b2:27:42:6f:79: 4b:72:82:13:a0:08:eb:0a:72:d0:ca:26:8e:32:98:96:cb:b3: f1:4f:b1:95:b3:97:18:d7:a2:71:cb:a0:02:89:9c:c4:c1:36: 59:04:1c:1e:4d:b9:19:9a:1f:d2:03:00:57:f5:b6:04:7c:1a: 20:26:27:a0:73:e5:0b:54:46:a1:b7:68:80:ec:d8:a6:03:fe: 1a:d0:74:f6:96:32:c6:3c:5b:d7:1d:fb:1e:23:3a:2c:b6:2f: c5:05:be:5a:49:26:67:92:59:e7:d2:b6:45:7b:02:ab:3d:2b: 58:7b:3f:09:08:b2:9a:d5:97:de:93:ef:22:18:ee:9c:5d:2a: 35:ee:d9:50:86:bc:b6:a4:76:72:64:f0:08:99:92:86:a4:d3: 1a:7a:06:33 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJrzAALBZYRj7Bpg6yvBqOy8WJsYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDRaFw0yNzA2MDQwNzEyNDRaMDMxMTAvBgNV BAMTKDBERjJEQkYzQUU2Qjc0MDhENDM4QkFCNzQ0QkU1QjQ2RDUzQTk5REMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPO9DQW93muzQHiXutPDaHBm2s 5WTDryHszqTaReZzJ+daobWhyQPozxkCc+C3tXJMOHgVeEWRYafTDeIYJkg+1SbY 1P+m96my5mnh1/jM1U8eHrVfzt079sYz/PXY0+NAylKsSWqXLxIvOuW3CxW85Esv q7rzQe9GCcm2VBzb2FblnJN1Pu7ldoBXDuF8Wsic+LkZRsN/alU1QUY4ERtghmJJ NemzoOgg2m66jsJJKl8aXffxZdOgqPVtjw6dl2NtaPYpVr92zlOrzgE/I152PQkM kp29SjjLsL4CwypY/Jx4RjLUx3SOWSZKA/T1aaTNFCOmNhHUPuSLZrCHgkrBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUDfLb865rdAjUOLq3RL5bRtU6mdwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwakwDQYJKoZIhvcNAQELBQADggEBAABy gKuTFAID70IFYxzSdROL280xtyYHKM/Ms06RPQd8zieQa4PVgIRvoe3BJA/2Jw+N +PvZ8nSb/FKoz9HHJm0YTruzhrDOkXvbiSE+W6XLBlqoaPD0iyUFdnBS9dmTBZF3 qjEpGZayJ0JveUtyghOgCOsKctDKJo4ymJbLs/FPsZWzlxjXonHLoAKJnMTBNlkE HB5NuRmaH9IDAFf1tgR8GiAmJ6Bz5QtURqG3aIDs2KYD/hrQdPaWMsY8W9cd+x4j Oiy2L8UFvlpJJmeSWefStkV7Aqs9K1h7PwkIsprVl96T7yIY7pxdKjXu2VCGvLak dnJk8AiZkoak0xp6BjM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:44 2026 by rpki-client