$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS36791.roa File: AS36791.roa (raw, json) Hash identifier: Px4rmf74x53hMLa3BuMTtLzuc6zMjojkMbZ5RgIJrjU= Subject key identifier: B4:58:5C:CC:3D:BB:5E:1F:D5:3C:F9:7A:C3:54:68:B9:8E:CF:1D:B6 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 70922F39D7D6C6C027A344C467E9ABC34DE7C90B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS36791.roa Signing time: Fri 04 Jul 2025 06:53:04 +0000 ROA not before: Fri 04 Jul 2025 06:48:04 +0000 ROA not after: Fri 03 Jul 2026 06:53:04 +0000 asID: 36791 IP address blocks: 2a05:dfc1:1e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:92:2f:39:d7:d6:c6:c0:27:a3:44:c4:67:e9:ab:c3:4d:e7:c9:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:04 2025 GMT Not After : Jul 3 06:53:04 2026 GMT Subject: CN=B4585CCC3DBB5E1FD53CF97AC35468B98ECF1DB6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:56:d5:e2:af:85:36:5c:04:92:64:3d:b2:c1: 9a:28:f1:d2:65:9e:e2:f2:f6:12:ae:16:e7:d3:25: 06:5d:3b:ec:35:19:9b:c9:8a:18:16:c4:0c:27:c3: 5e:c4:2b:d2:7a:bf:a6:f2:99:c2:b6:0b:85:37:54: 07:cc:7b:db:2f:3f:90:67:68:86:97:d9:0a:4d:30: fe:90:2f:e4:33:24:3a:de:92:59:7e:01:49:00:b8: 46:a6:9a:f9:bc:99:c1:12:4a:ca:6f:bc:a2:30:2c: c1:e9:fc:0c:b0:63:7d:39:11:29:10:7f:ba:3c:a9: af:ec:e0:c7:94:9b:dc:f8:9a:1c:fa:43:00:92:85: 1e:00:47:8f:1f:1a:d1:35:fe:f1:9f:55:c9:7f:17: 85:84:5a:af:95:33:48:9b:20:6f:84:68:b0:6e:53: 33:c8:95:be:14:91:ad:71:f8:0d:d7:14:1f:91:17: b8:3f:f6:ce:e3:17:68:21:b1:22:08:c7:bc:30:6d: 6c:8f:00:11:43:6b:2b:5a:f9:90:42:e2:eb:7c:16: 1d:d6:af:32:9c:23:04:23:79:85:33:82:b0:f9:ed: 73:ef:91:70:7d:97:a2:da:4e:42:86:55:ca:4e:e3: 48:71:c6:a9:5e:a4:4f:c2:45:8b:54:73:f1:19:c5: 63:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:58:5C:CC:3D:BB:5E:1F:D5:3C:F9:7A:C3:54:68:B9:8E:CF:1D:B6 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS36791.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1e00::/40 Signature Algorithm: sha256WithRSAEncryption 39:8a:91:6a:a5:5d:98:4a:5e:02:74:6f:29:d2:71:a3:40:f5: a4:8a:d6:51:af:9f:af:d6:aa:56:07:dc:26:0e:b2:91:c9:55: aa:7f:13:95:dd:42:45:8a:76:d3:1d:bc:72:86:9f:43:5f:65: 51:07:fc:95:87:ac:b8:ba:a9:31:e6:63:d8:aa:96:1d:12:51: 25:c9:27:90:5c:41:a5:41:7e:46:ef:38:ed:a8:17:5e:46:1c: 64:ab:90:56:bf:1e:f4:f9:f1:03:23:3e:22:f2:fa:90:14:a9: 1c:99:0f:8a:58:ce:c2:14:57:df:f8:f0:73:d6:ca:80:a8:33: 0d:7d:e0:68:0c:5a:5d:5e:c5:2e:ea:e5:e1:24:85:98:e8:a4: 37:c5:8b:bd:25:c0:3b:20:2e:76:36:d5:74:b3:fb:8c:2b:01: 03:fe:00:2b:dd:53:39:9d:e2:2d:0f:28:6b:fe:19:74:f6:d9: aa:16:7e:0a:6e:84:b2:59:45:d4:15:f7:ee:9d:74:81:66:0e: 86:fa:4c:43:5b:55:0d:ef:5d:33:2e:b4:96:db:3a:ff:b5:49: e7:88:86:f0:d3:d9:22:ff:1b:a9:bd:80:a9:76:40:f9:1d:c0: 2b:85:3b:83:be:a5:d8:8e:e7:d1:ee:ec:ec:55:24:61:de:a8: 17:d5:53:b7 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUcJIvOdfWxsAno0TEZ+mrw03nyQswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDRaFw0yNjA3MDMwNjUzMDRaMDMxMTAvBgNV BAMTKEI0NTg1Q0NDM0RCQjVFMUZENTNDRjk3QUMzNTQ2OEI5OEVDRjFEQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMVtXir4U2XASSZD2ywZoo8dJl nuLy9hKuFufTJQZdO+w1GZvJihgWxAwnw17EK9J6v6bymcK2C4U3VAfMe9svP5Bn aIaX2QpNMP6QL+QzJDrekll+AUkAuEammvm8mcESSspvvKIwLMHp/AywY305ESkQ f7o8qa/s4MeUm9z4mhz6QwCShR4AR48fGtE1/vGfVcl/F4WEWq+VM0ibIG+EaLBu UzPIlb4Uka1x+A3XFB+RF7g/9s7jF2ghsSIIx7wwbWyPABFDayta+ZBC4ut8Fh3W rzKcIwQjeYUzgrD57XPvkXB9l6LaTkKGVcpO40hxxqlepE/CRYtUc/EZxWPZAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUtFhczD27Xh/VPPl6w1RouY7PHbYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMzY3OTEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BHjANBgkqhkiG9w0BAQsFAAOCAQEAOYqR aqVdmEpeAnRvKdJxo0D1pIrWUa+fr9aqVgfcJg6ykclVqn8Tld1CRYp20x28coaf Q19lUQf8lYesuLqpMeZj2KqWHRJRJcknkFxBpUF+Ru847agXXkYcZKuQVr8e9Pnx AyM+IvL6kBSpHJkPiljOwhRX3/jwc9bKgKgzDX3gaAxaXV7FLurl4SSFmOikN8WL vSXAOyAudjbVdLP7jCsBA/4AK91TOZ3iLQ8oa/4ZdPbZqhZ+Cm6EsllF1BX37p10 gWYOhvpMQ1tVDe9dMy60lts6/7VJ54iG8NPZIv8bqb2AqXZA+R3AK4U7g76l2I7n 0e7s7FUkYd6oF9VTtw== -----END CERTIFICATE-----Generated at Wed Nov 5 08:35:09 2025 by rpki-client