$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS396998.roa File: AS396998.roa (raw, json) Hash identifier: ZRysI5BwdrBrg8LlYdT5ZcIUhuRZyO9eo6CpEub3npY= Subject key identifier: 97:08:85:62:0C:94:1F:6A:8E:78:1A:DF:34:FF:5E:D5:77:30:A4:C1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 725474E2370B5682F333A17D42BB23A222E40A2C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS396998.roa Signing time: Fri 05 Jun 2026 07:12:21 +0000 ROA not before: Fri 05 Jun 2026 07:07:21 +0000 ROA not after: Fri 04 Jun 2027 07:12:21 +0000 asID: 396998 IP address blocks: 2a0a:6040:fa00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:54:74:e2:37:0b:56:82:f3:33:a1:7d:42:bb:23:a2:22:e4:0a:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:21 2026 GMT Not After : Jun 4 07:12:21 2027 GMT Subject: CN=970885620C941F6A8E781ADF34FF5ED57730A4C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:27:d9:03:96:78:e2:77:45:78:b6:9d:7f:32: 91:47:5b:fa:d4:4a:82:77:d8:b5:ac:41:8f:0b:57: 9d:2b:2e:2f:39:77:2c:df:54:f0:f5:31:7c:7f:d6: 6c:af:58:b6:b0:d4:f7:a6:97:83:12:ae:8b:5c:02: 51:02:cf:5d:fe:f7:01:7d:83:b8:9d:8d:79:78:34: ba:d4:af:99:33:04:21:bc:cf:b9:b1:c5:50:8a:b2: e9:34:2d:d2:70:5d:6a:ee:5a:67:d9:0d:6d:c3:30: f3:3e:ac:7b:4a:24:50:53:52:cc:1f:a6:e4:88:78: 09:bd:91:56:a9:38:4c:96:2c:34:fc:15:56:33:2e: 33:86:cb:2b:9a:85:1d:ae:5f:e9:6f:6f:df:8b:a5: fe:16:8d:49:ae:18:bf:af:5f:19:74:00:db:d0:35: 47:6e:44:6e:7f:c9:bd:0e:17:27:14:d3:a3:cc:0b: a8:78:ee:7a:ca:b1:8e:e4:e2:74:1a:13:3b:f2:f2: 79:4f:b1:6b:ef:f3:ec:21:bd:af:00:6b:25:7b:d9: 53:d9:03:4a:92:ce:73:73:de:c3:88:66:54:d9:ce: 17:21:fb:82:e0:f4:d9:a3:03:b6:94:eb:a4:76:bb: a4:93:89:c6:b6:9f:98:38:3e:41:f0:5b:12:16:6d: ba:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:08:85:62:0C:94:1F:6A:8E:78:1A:DF:34:FF:5E:D5:77:30:A4:C1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS396998.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:fa00::/40 Signature Algorithm: sha256WithRSAEncryption 2a:40:ee:e1:91:1d:29:86:06:23:8e:3c:51:31:cc:c8:92:4c: 6f:9d:86:87:c8:dd:5b:54:e2:d6:43:81:eb:d5:ef:28:3b:f7: 5f:b6:b7:29:58:8a:8f:6f:85:9c:66:43:ba:f2:a9:de:e5:28: 6a:5d:eb:8c:de:9a:aa:4f:d1:ae:af:91:9d:d3:2e:b7:ae:3b: 56:51:f4:b6:2b:78:9e:07:5c:f1:fb:e8:ff:3b:c1:e9:6a:0f: 60:43:49:7c:75:25:8f:cc:a2:e7:89:93:3f:d4:7d:0b:c5:cb: b9:65:1a:43:c3:8b:11:0c:ff:3c:50:78:8c:52:38:6b:40:29: a3:cf:c2:b0:7e:80:3b:1d:ca:44:05:1b:9f:e3:6e:d6:f6:ce: 16:f6:04:da:ca:99:2c:23:53:0e:85:4d:6f:d3:43:0d:ed:68: 6b:9e:c0:ed:79:cd:f1:81:8e:c1:08:82:e4:fc:cb:45:41:9f: 90:13:3f:73:bb:22:b2:54:e4:30:02:40:2d:71:40:56:6a:b1: b8:26:e4:1c:99:31:5f:b3:a9:ea:5b:a8:1d:38:64:d3:fa:24: 3c:1a:74:60:1d:55:87:d2:6f:44:ef:71:4d:fc:a1:b8:9e:0a: af:de:78:8d:20:43:2f:87:f9:2d:a5:65:9f:52:7d:7c:ab:e5: 8f:1f:2a:51 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUclR04jcLVoLzM6F9QrsjoiLkCiwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjFaFw0yNzA2MDQwNzEyMjFaMDMxMTAvBgNV BAMTKDk3MDg4NTYyMEM5NDFGNkE4RTc4MUFERjM0RkY1RUQ1NzczMEE0QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTJ9kDlnjid0V4tp1/MpFHW/rU SoJ32LWsQY8LV50rLi85dyzfVPD1MXx/1myvWLaw1Peml4MSrotcAlECz13+9wF9 g7idjXl4NLrUr5kzBCG8z7mxxVCKsuk0LdJwXWruWmfZDW3DMPM+rHtKJFBTUswf puSIeAm9kVapOEyWLDT8FVYzLjOGyyuahR2uX+lvb9+Lpf4WjUmuGL+vXxl0ANvQ NUduRG5/yb0OFycU06PMC6h47nrKsY7k4nQaEzvy8nlPsWvv8+whva8AayV72VPZ A0qSznNz3sOIZlTZzhch+4Lg9NmjA7aU66R2u6STica2n5g4PkHwWxIWbbr5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlwiFYgyUH2qOeBrfNP9e1XcwpMEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMzk2OTk4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQPowDQYJKoZIhvcNAQELBQADggEBACpA 7uGRHSmGBiOOPFExzMiSTG+dhofI3VtU4tZDgevV7yg791+2tylYio9vhZxmQ7ry qd7lKGpd64zemqpP0a6vkZ3TLreuO1ZR9LYreJ4HXPH76P87welqD2BDSXx1JY/M oueJkz/UfQvFy7llGkPDixEM/zxQeIxSOGtAKaPPwrB+gDsdykQFG5/jbtb2zhb2 BNrKmSwjUw6FTW/TQw3taGuewO15zfGBjsEIguT8y0VBn5ATP3O7IrJU5DACQC1x QFZqsbgm5ByZMV+zqepbqB04ZNP6JDwadGAdVYfSb0TvcU38obieCq/eeI0gQy+H +S2lZZ9SfXyr5Y8fKlE= -----END CERTIFICATE-----Generated at Sat Jun 13 06:43:20 2026 by rpki-client