$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216157.roa File: AS216157.roa (raw, json) Hash identifier: GvA/P93e49qDy0njZjO4cO0oCmD9CRy59cDH9+TaGUI= Subject key identifier: 96:57:D1:A3:52:00:6C:63:B9:83:3D:8B:A6:F9:74:D7:4A:90:74:6B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3095F8108023A153435618C48AC31A2232CFA539 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216157.roa Signing time: Fri 05 Jun 2026 07:12:14 +0000 ROA not before: Fri 05 Jun 2026 07:07:14 +0000 ROA not after: Fri 04 Jun 2027 07:12:14 +0000 asID: 216157 IP address blocks: 2a06:9f81:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:95:f8:10:80:23:a1:53:43:56:18:c4:8a:c3:1a:22:32:cf:a5:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:14 2026 GMT Not After : Jun 4 07:12:14 2027 GMT Subject: CN=9657D1A352006C63B9833D8BA6F974D74A90746B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e4:9e:1d:5d:9b:ec:5f:9c:80:d2:89:24:ce: 4a:8f:1b:33:2b:7e:90:86:94:4b:71:26:c5:e2:98: 8a:5b:9d:6e:75:3a:5d:af:14:f0:79:c2:1c:3e:63: ab:28:8a:f5:1c:9c:f5:b7:5e:18:4c:60:86:b6:5a: 97:c5:7f:18:ea:d3:33:1a:49:e2:50:3e:3c:bd:fa: 2b:48:ff:c3:ad:86:da:aa:64:07:54:53:2f:59:ca: e1:30:6d:58:2d:0d:77:0e:77:ba:e3:e9:45:99:84: 58:0a:34:3a:bb:89:8d:07:62:09:db:da:f2:bc:e8: bb:80:35:f3:de:9f:d2:cf:4e:0c:fd:90:71:f1:12: c8:7d:67:7d:8e:1b:47:b8:03:b7:4c:04:be:3a:db: 72:2b:bc:44:19:93:86:bc:a5:06:2a:97:ed:28:01: 5c:cc:d8:6b:fc:0c:a0:55:b0:01:8f:9a:71:da:d3: ce:b4:7f:b3:47:22:0f:52:fa:a1:59:4f:7c:1e:a8: 9f:2d:3b:90:dc:4a:4f:fc:e6:af:76:81:fa:03:60: 9a:36:5c:ee:cd:6c:f9:17:5c:f7:15:5b:23:55:b2: f8:16:e3:8e:2e:45:ba:7d:80:55:6c:e9:81:31:7e: bb:d6:c4:e8:66:1f:04:a5:00:b8:84:ee:75:fe:de: bb:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:57:D1:A3:52:00:6C:63:B9:83:3D:8B:A6:F9:74:D7:4A:90:74:6B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216157.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1100::/40 Signature Algorithm: sha256WithRSAEncryption 5e:c0:c7:ed:34:0e:20:74:5f:02:c8:2c:93:7d:e4:2b:f1:ba: e8:8d:8d:5f:9c:e1:50:0b:c1:d9:d8:e7:ef:52:88:9c:2d:28: 33:ea:40:09:f7:d5:37:63:a7:e1:fe:bd:6f:af:36:10:d9:05: d9:9c:fd:b6:c0:b8:c5:ee:46:f7:7e:2f:40:14:36:c5:2a:f1: 21:ba:22:7a:51:e7:09:01:83:3a:66:49:4c:06:59:35:c2:3a: d3:1a:c3:6f:56:91:a7:17:0b:01:df:f2:2e:bd:dd:84:03:6f: d2:4c:8a:0f:9c:f3:55:d3:34:a9:56:77:9b:b9:22:05:fd:4e: 10:5a:c5:82:f1:e3:10:b7:e7:83:12:03:dd:a5:ee:5e:04:39: 53:49:ee:28:b8:f0:41:42:be:2e:7e:47:ee:a0:00:24:4a:f9: fd:b9:0b:64:80:ff:33:9d:9a:55:28:92:40:81:4e:44:ef:a7: d4:cb:6b:e9:b7:57:94:a6:74:6f:88:d2:80:43:c3:68:39:aa: 01:31:0a:2d:1c:b2:01:95:39:39:31:51:51:5a:97:fe:c6:37: 6d:5b:fa:6b:ad:5e:7d:4a:69:11:d8:b2:1c:c9:a9:04:81:d5: cd:aa:9e:4e:0d:f5:04:d6:84:5d:a5:5d:15:dd:4a:1f:4c:fc: fb:cd:d5:41 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMJX4EIAjoVNDVhjEisMaIjLPpTkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTRaFw0yNzA2MDQwNzEyMTRaMDMxMTAvBgNV BAMTKDk2NTdEMUEzNTIwMDZDNjNCOTgzM0Q4QkE2Rjk3NEQ3NEE5MDc0NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy5J4dXZvsX5yA0okkzkqPGzMr fpCGlEtxJsXimIpbnW51Ol2vFPB5whw+Y6soivUcnPW3XhhMYIa2WpfFfxjq0zMa SeJQPjy9+itI/8OthtqqZAdUUy9ZyuEwbVgtDXcOd7rj6UWZhFgKNDq7iY0HYgnb 2vK86LuANfPen9LPTgz9kHHxEsh9Z32OG0e4A7dMBL4623IrvEQZk4a8pQYql+0o AVzM2Gv8DKBVsAGPmnHa0860f7NHIg9S+qFZT3weqJ8tO5DcSk/85q92gfoDYJo2 XO7NbPkXXPcVWyNVsvgW444uRbp9gFVs6YExfrvWxOhmHwSlALiE7nX+3rvfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUllfRo1IAbGO5gz2Lpvl010qQdGswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2MTU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgREwDQYJKoZIhvcNAQELBQADggEBAF7A x+00DiB0XwLILJN95CvxuuiNjV+c4VALwdnY5+9SiJwtKDPqQAn31Tdjp+H+vW+v NhDZBdmc/bbAuMXuRvd+L0AUNsUq8SG6InpR5wkBgzpmSUwGWTXCOtMaw29WkacX CwHf8i693YQDb9JMig+c81XTNKlWd5u5IgX9ThBaxYLx4xC354MSA92l7l4EOVNJ 7ii48EFCvi5+R+6gACRK+f25C2SA/zOdmlUokkCBTkTvp9TLa+m3V5SmdG+I0oBD w2g5qgExCi0csgGVOTkxUVFal/7GN21b+mutXn1KaRHYshzJqQSB1c2qnk4N9QTW hF2lXRXdSh9M/PvN1UE= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:46 2026 by rpki-client