$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216454.roa File: AS216454.roa (raw, json) Hash identifier: E3QhziKmRv5UhexSxji8JajaNgL981NrCQj0omYTnkE= Subject key identifier: 8E:D8:94:C2:1A:E4:42:FD:B6:24:AA:B6:ED:03:44:F1:3A:95:0B:EB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 77ECEF71A0F6A06D5919B00D3EA7E1ACCED627C1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216454.roa Signing time: Fri 05 Jun 2026 07:12:13 +0000 ROA not before: Fri 05 Jun 2026 07:07:13 +0000 ROA not after: Fri 04 Jun 2027 07:12:13 +0000 asID: 216454 IP address blocks: 2a05:dfc1:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ec:ef:71:a0:f6:a0:6d:59:19:b0:0d:3e:a7:e1:ac:ce:d6:27:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:13 2026 GMT Not After : Jun 4 07:12:13 2027 GMT Subject: CN=8ED894C21AE442FDB624AAB6ED0344F13A950BEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b1:26:4f:1e:72:b7:d2:b3:e6:fd:95:87:cf: 8e:87:1c:bb:ab:a2:60:c4:cf:29:85:33:f8:17:ea: ca:13:8a:4c:fe:30:75:d7:d2:38:f7:04:84:ae:54: ee:9b:e0:5e:15:65:68:c5:15:9a:7f:b2:7c:a0:bd: 52:55:eb:d6:1f:41:7c:fd:18:86:24:7e:f4:2d:2d: 4e:05:fa:08:d3:f9:80:08:34:00:7b:9f:0c:63:99: d2:51:d0:42:13:5b:5d:8a:d8:3a:8f:f3:0a:d1:c3: 30:aa:f3:d3:e2:f1:1b:34:c0:24:35:c9:1b:2c:e3: ef:7d:87:50:00:4f:87:8d:70:ca:39:34:ea:d7:70: cd:a0:62:a5:dd:18:5d:a5:cc:74:a6:72:2c:dc:54: 20:60:da:cd:35:6b:89:af:5c:b3:ca:ab:eb:3c:44: 93:92:fc:22:cc:9a:fd:00:4c:97:ed:66:a2:07:82: 61:cd:2f:17:d1:8d:f9:b9:17:a9:05:69:e6:f5:e6: f2:9e:bc:4c:0f:da:e1:f3:97:16:3b:41:a5:a8:0a: 87:a7:7f:de:61:df:da:a8:6b:cb:fc:73:2d:3b:b4: 51:4d:b8:f3:6f:15:00:28:cd:40:3d:4a:a9:da:88: 27:98:80:76:f1:f1:4b:70:2e:25:9e:17:f3:dc:ed: b0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D8:94:C2:1A:E4:42:FD:B6:24:AA:B6:ED:03:44:F1:3A:95:0B:EB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS216454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8300::/40 Signature Algorithm: sha256WithRSAEncryption 8d:c6:ce:80:f3:9d:2e:55:db:0b:85:40:83:de:c7:1a:2d:f1: 31:ef:80:36:53:81:f4:b3:69:c1:5c:dd:f8:18:49:5b:56:bc: 87:29:4d:93:f7:05:16:40:5f:50:da:dc:d7:4b:ab:e8:44:a0: 6c:8b:06:44:25:50:ef:05:3f:8f:60:3f:9a:0b:c4:96:f4:96: 74:2d:fb:42:d7:49:a6:9c:e2:08:a6:5b:a0:78:cd:3b:3c:67: be:e9:24:60:01:87:f9:61:ae:fa:56:6e:9d:0b:33:c6:b1:d4: d4:14:d0:ec:a7:91:d6:ee:b8:c0:fd:13:0f:d2:fe:b7:a6:e1: 6b:d5:28:41:77:f8:07:07:7c:03:17:81:94:d5:bf:e4:a6:fe: fc:ba:9f:b6:9f:b7:48:19:cf:ba:bc:11:c2:65:3b:70:7f:d0: dc:75:f2:70:05:14:5f:62:33:26:87:0b:a5:4d:79:c6:7b:d5: ee:d5:49:d3:0b:88:cd:d2:1b:07:6a:57:cf:4d:89:f5:ac:d0: 04:18:f1:20:1d:b0:4c:8f:fe:39:e2:a2:84:ef:74:ee:5c:92: 27:47:27:57:26:3c:02:a2:32:e4:2e:31:78:f6:3d:47:47:48: f8:b3:d2:8c:e7:b1:ee:a5:5f:34:d3:ea:f5:5a:40:85:05:ca: 50:60:99:54 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd+zvcaD2oG1ZGbANPqfhrM7WJ8EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTNaFw0yNzA2MDQwNzEyMTNaMDMxMTAvBgNV BAMTKDhFRDg5NEMyMUFFNDQyRkRCNjI0QUFCNkVEMDM0NEYxM0E5NTBCRUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDusSZPHnK30rPm/ZWHz46HHLur omDEzymFM/gX6soTikz+MHXX0jj3BISuVO6b4F4VZWjFFZp/snygvVJV69YfQXz9 GIYkfvQtLU4F+gjT+YAINAB7nwxjmdJR0EITW12K2DqP8wrRwzCq89Pi8Rs0wCQ1 yRss4+99h1AAT4eNcMo5NOrXcM2gYqXdGF2lzHSmcizcVCBg2s01a4mvXLPKq+s8 RJOS/CLMmv0ATJftZqIHgmHNLxfRjfm5F6kFaeb15vKevEwP2uHzlxY7QaWoCoen f95h39qoa8v8cy07tFFNuPNvFQAozUA9SqnaiCeYgHbx8UtwLiWeF/Pc7bDNAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjtiUwhrkQv22JKq27QNE8TqVC+swHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE2NDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYMwDQYJKoZIhvcNAQELBQADggEBAI3G zoDznS5V2wuFQIPexxot8THvgDZTgfSzacFc3fgYSVtWvIcpTZP3BRZAX1Da3NdL q+hEoGyLBkQlUO8FP49gP5oLxJb0lnQt+0LXSaac4gimW6B4zTs8Z77pJGABh/lh rvpWbp0LM8ax1NQU0OynkdbuuMD9Ew/S/rem4WvVKEF3+AcHfAMXgZTVv+Sm/vy6 n7aft0gZz7q8EcJlO3B/0Nx18nAFFF9iMyaHC6VNecZ71e7VSdMLiM3SGwdqV89N ifWs0AQY8SAdsEyP/jniooTvdO5ckidHJ1cmPAKiMuQuMXj2PUdHSPiz0oznse6l XzTT6vVaQIUFylBgmVQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:42 2026 by rpki-client