$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216157.roa File: AS216157.roa (raw, json) Hash identifier: 9nw7JzVkf6wGtQqcxH3QcylUYUq3LdLMKj0Pb0yFBwM= Subject key identifier: 79:46:F2:47:4E:19:E0:D9:C1:96:8F:48:44:26:6E:CF:65:F0:3E:10 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 67485FE609BDE93F13C7230CE2B33EE6B098B37C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216157.roa Signing time: Fri 04 Jul 2025 06:53:21 +0000 ROA not before: Fri 04 Jul 2025 06:48:21 +0000 ROA not after: Fri 03 Jul 2026 06:53:21 +0000 asID: 216157 IP address blocks: 2a06:9f81:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:48:5f:e6:09:bd:e9:3f:13:c7:23:0c:e2:b3:3e:e6:b0:98:b3:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:21 2025 GMT Not After : Jul 3 06:53:21 2026 GMT Subject: CN=7946F2474E19E0D9C1968F4844266ECF65F03E10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:53:bc:c7:5c:a0:70:d5:17:79:25:32:40:cd: 15:4f:71:21:7e:bf:c1:ef:21:db:32:d8:de:5b:f2: 96:35:cb:c2:ce:08:7a:05:9b:fb:18:99:62:2b:52: 36:30:56:b5:91:11:54:36:fd:f7:91:c7:e8:5e:5d: f0:03:d9:2e:d0:b0:98:f7:1b:9c:2e:a6:96:9e:2c: 31:44:8d:67:e7:a3:3a:30:0a:21:92:01:a1:5d:01: 34:04:b1:84:97:18:ac:1c:05:4a:5f:d1:a8:e5:af: bb:e9:0b:e3:9c:90:a1:a5:10:07:9a:85:86:57:f5: 00:f0:b0:0c:ca:8f:1c:14:e0:a6:e9:87:b7:34:3f: 64:c3:ee:19:09:6a:9f:55:06:ca:26:e3:d1:72:15: aa:f1:32:dd:2e:3f:52:ea:8d:0d:ff:62:16:48:f3: f0:59:d7:ec:e7:2f:0f:a1:1d:ff:0d:26:0f:5d:de: 50:88:17:b5:cf:d2:71:fa:ff:36:a7:41:d8:d5:21: 6f:ad:48:50:c9:b9:2f:3c:c8:df:93:28:48:3a:8a: 91:d8:9f:5d:59:c2:c9:75:65:56:ec:79:42:b1:c2: 5f:a7:a1:45:ce:f4:08:be:8c:63:5e:86:04:e5:44: bf:ca:11:79:17:18:11:db:d0:03:59:74:3f:77:16: 8e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:46:F2:47:4E:19:E0:D9:C1:96:8F:48:44:26:6E:CF:65:F0:3E:10 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216157.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1100::/40 Signature Algorithm: sha256WithRSAEncryption 0e:b5:e4:ac:57:41:a1:a9:d4:4e:28:9a:a9:7d:b8:66:28:05: 33:d6:a1:cc:f2:4e:33:95:31:4a:1e:8b:38:f2:b1:db:d1:97: e4:cd:1d:bd:62:fe:71:f7:75:ab:ae:35:5f:89:c2:ab:87:c6: 78:67:fd:b8:18:ff:b0:72:74:8a:35:b4:5a:99:04:10:d5:7e: 47:b8:d5:a5:32:14:46:01:3a:19:9d:7e:18:57:3e:7c:3c:3b: 7e:a6:27:e4:52:37:5e:69:46:74:7b:8d:a0:1a:f1:79:1d:ba: 1b:09:59:c6:c6:a3:70:96:03:0f:b6:12:89:45:b6:63:9d:88: 93:16:9b:81:1f:bd:ef:ee:3e:12:34:3b:83:fe:a6:dc:e2:31: c4:06:1b:1c:2d:62:e8:92:08:31:75:ca:bb:22:c9:a3:56:e9: 80:65:4a:4f:e7:b4:ce:54:ac:9c:f5:c1:0f:a2:9f:e6:89:7e: 3b:43:99:71:05:74:6e:03:aa:5d:dd:b5:fd:fd:fc:f9:e6:08: b4:9e:23:de:fa:f2:ae:f7:7a:ac:d9:fe:0e:71:f7:db:9f:76: 2b:b8:0d:5f:b6:1f:e2:5e:8d:f2:1b:41:43:04:21:b6:0e:7e: 87:de:de:76:1e:33:e4:50:30:fa:f9:a3:86:f1:c4:b9:08:26: 51:20:3b:32 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZ0hf5gm96T8TxyMM4rM+5rCYs3wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjFaFw0yNjA3MDMwNjUzMjFaMDMxMTAvBgNV BAMTKDc5NDZGMjQ3NEUxOUUwRDlDMTk2OEY0ODQ0MjY2RUNGNjVGMDNFMTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDU7zHXKBw1Rd5JTJAzRVPcSF+ v8HvIdsy2N5b8pY1y8LOCHoFm/sYmWIrUjYwVrWREVQ2/feRx+heXfAD2S7QsJj3 G5wuppaeLDFEjWfnozowCiGSAaFdATQEsYSXGKwcBUpf0ajlr7vpC+OckKGlEAea hYZX9QDwsAzKjxwU4Kbph7c0P2TD7hkJap9VBsom49FyFarxMt0uP1LqjQ3/YhZI 8/BZ1+znLw+hHf8NJg9d3lCIF7XP0nH6/zanQdjVIW+tSFDJuS88yN+TKEg6ipHY n11Zwsl1ZVbseUKxwl+noUXO9Ai+jGNehgTlRL/KEXkXGBHb0ANZdD93Fo5vAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUeUbyR04Z4NnBlo9IRCZuz2XwPhAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgREwDQYJKoZIhvcNAQELBQADggEBAA61 5KxXQaGp1E4omql9uGYoBTPWoczyTjOVMUoeizjysdvRl+TNHb1i/nH3dauuNV+J wquHxnhn/bgY/7BydIo1tFqZBBDVfke41aUyFEYBOhmdfhhXPnw8O36mJ+RSN15p RnR7jaAa8XkduhsJWcbGo3CWAw+2EolFtmOdiJMWm4Efve/uPhI0O4P+ptziMcQG GxwtYuiSCDF1yrsiyaNW6YBlSk/ntM5UrJz1wQ+in+aJfjtDmXEFdG4Dql3dtf39 /PnmCLSeI9768q73eqzZ/g5x99ufdiu4DV+2H+JejfIbQUMEIbYOfofe3nYeM+RQ MPr5o4bxxLkIJlEgOzI= -----END CERTIFICATE-----Generated at Wed Nov 5 07:14:34 2025 by rpki-client