$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS47272.roa File: AS47272.roa (raw, json) Hash identifier: cy9AZ/jrTUKTyg63ulHZ0BNDtyYEO2/k9kSXAIDwZCc= Subject key identifier: 68:7E:58:83:46:E0:3A:1F:AF:53:20:7D:AE:3B:D3:DB:0D:E3:9C:F1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1A4C7C1DF16D42F5FFF5B0D8F3F4A91FED65C099 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS47272.roa Signing time: Fri 05 Jun 2026 07:12:30 +0000 ROA not before: Fri 05 Jun 2026 07:07:30 +0000 ROA not after: Fri 04 Jun 2027 07:12:30 +0000 asID: 47272 IP address blocks: 2a06:9f81:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:4c:7c:1d:f1:6d:42:f5:ff:f5:b0:d8:f3:f4:a9:1f:ed:65:c0:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:30 2026 GMT Not After : Jun 4 07:12:30 2027 GMT Subject: CN=687E588346E03A1FAF53207DAE3BD3DB0DE39CF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:51:06:6b:54:1d:1d:ba:a6:89:bb:89:31:13: 50:c0:62:65:0f:2d:02:87:1e:53:ad:be:24:d7:b1: 07:ce:fa:8f:34:92:2f:34:da:63:0f:44:ec:d7:d8: 1b:8d:5a:48:af:3c:06:0c:be:ed:36:64:ce:bc:77: d2:d2:aa:24:28:ac:8f:59:3f:d0:d7:a2:df:1b:74: 1f:5e:de:92:b4:f4:4a:25:44:c1:6d:b9:67:d3:38: 56:8d:ed:b7:68:4c:de:02:4f:10:03:10:8f:d4:c5: cd:ff:9f:09:ea:95:26:69:b8:e2:21:b9:92:92:3d: e0:ca:d5:11:19:85:e5:bb:b9:d6:80:2a:16:42:61: 99:76:2f:c5:40:8b:e1:37:be:e5:5d:df:cc:e7:29: be:fb:2e:0b:77:72:25:06:c9:95:6e:68:ad:76:cb: 28:65:6b:1b:1f:60:1f:64:09:38:fa:15:05:18:95: 5c:da:f9:4f:2a:ba:15:c9:c8:70:93:3a:65:54:cb: 13:1d:27:90:f1:e3:3d:ca:bf:6d:c7:03:6c:f6:55: bd:6d:b0:2e:99:29:8f:3a:71:9b:32:05:57:ef:b0: d9:86:2a:b0:11:15:29:0c:c8:a3:14:c1:1c:fa:97: dd:11:0c:a1:96:13:1f:18:50:38:30:d7:11:06:06: 9b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7E:58:83:46:E0:3A:1F:AF:53:20:7D:AE:3B:D3:DB:0D:E3:9C:F1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS47272.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1000::/40 Signature Algorithm: sha256WithRSAEncryption b3:3c:98:c5:c9:7a:b7:40:74:09:54:a1:4d:2c:8c:68:49:3e: 21:52:bc:0f:f4:4f:f8:d8:0b:1a:87:d5:73:cc:63:5f:a0:2f: f4:e7:e2:0f:31:d5:a0:2c:b6:0a:c6:f0:b2:d4:13:2d:99:50: 11:8d:de:eb:60:32:6a:6c:ac:77:13:c3:95:01:7a:4d:a0:5a: 4e:fe:59:9b:90:83:52:ac:78:34:ca:f9:08:c4:e7:d7:4a:1b: 08:ef:92:01:42:1d:19:67:58:e6:96:c7:3a:eb:1f:df:98:3a: 3d:12:c0:9e:3d:2f:27:77:f2:46:97:2e:e5:11:da:f9:82:33: 32:a7:80:67:47:93:df:62:2c:a8:c0:df:2c:53:52:e2:8e:26: 68:07:82:18:f4:a9:0f:09:67:3a:0b:88:89:a0:d9:f4:b2:40: 4d:d2:b7:06:e6:35:e8:5f:03:0a:2a:04:f6:45:f9:8d:0d:ae: 6a:cc:28:b0:bd:ed:5c:74:bc:ed:93:f1:b9:20:9c:63:46:57: 8a:d2:6d:31:77:0a:88:c0:8c:97:78:c4:ac:51:e9:d7:2b:2b: de:6f:76:34:be:34:4e:58:a1:77:97:0d:81:49:e3:2d:ac:d8: b6:76:f8:bc:e3:b7:db:02:17:88:dd:a6:15:b6:06:af:32:f4: 01:36:1c:47 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUGkx8HfFtQvX/9bDY8/SpH+1lwJkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzBaFw0yNzA2MDQwNzEyMzBaMDMxMTAvBgNV BAMTKDY4N0U1ODgzNDZFMDNBMUZBRjUzMjA3REFFM0JEM0RCMERFMzlDRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuUQZrVB0duqaJu4kxE1DAYmUP LQKHHlOtviTXsQfO+o80ki802mMPROzX2BuNWkivPAYMvu02ZM68d9LSqiQorI9Z P9DXot8bdB9e3pK09EolRMFtuWfTOFaN7bdoTN4CTxADEI/Uxc3/nwnqlSZpuOIh uZKSPeDK1REZheW7udaAKhZCYZl2L8VAi+E3vuVd38znKb77Lgt3ciUGyZVuaK12 yyhlaxsfYB9kCTj6FQUYlVza+U8quhXJyHCTOmVUyxMdJ5Dx4z3Kv23HA2z2Vb1t sC6ZKY86cZsyBVfvsNmGKrARFSkMyKMUwRz6l90RDKGWEx8YUDgw1xEGBpv3AgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUaH5Yg0bgOh+vUyB9rjvT2w3jnPEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNDcyNzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBp+BEDANBgkqhkiG9w0BAQsFAAOCAQEAszyY xcl6t0B0CVShTSyMaEk+IVK8D/RP+NgLGofVc8xjX6Av9OfiDzHVoCy2CsbwstQT LZlQEY3e62AyamysdxPDlQF6TaBaTv5Zm5CDUqx4NMr5CMTn10obCO+SAUIdGWdY 5pbHOusf35g6PRLAnj0vJ3fyRpcu5RHa+YIzMqeAZ0eT32IsqMDfLFNS4o4maAeC GPSpDwlnOguIiaDZ9LJATdK3BuY16F8DCioE9kX5jQ2uaswosL3tXHS87ZPxuSCc Y0ZXitJtMXcKiMCMl3jErFHp1ysr3m92NL40Tlihd5cNgUnjLazYtnb4vOO32wIX iN2mFbYGrzL0ATYcRw== -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:16 2026 by rpki-client