$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60431.roa File: AS60431.roa (raw, json) Hash identifier: Qa4VU99+Egzs/4PAbstLGllxd4ZlpiBkF15cHmC6Gsk= Subject key identifier: DB:18:74:C2:3B:CE:5C:71:76:E0:E3:37:52:B1:E9:12:2D:A6:29:7E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6B86F88E1AA1B12B33B593011430231832E7D6F9 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60431.roa Signing time: Fri 05 Jun 2026 07:12:45 +0000 ROA not before: Fri 05 Jun 2026 07:07:45 +0000 ROA not after: Fri 04 Jun 2027 07:12:45 +0000 asID: 60431 IP address blocks: 2a05:dfc1:4c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:86:f8:8e:1a:a1:b1:2b:33:b5:93:01:14:30:23:18:32:e7:d6:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:45 2026 GMT Not After : Jun 4 07:12:45 2027 GMT Subject: CN=DB1874C23BCE5C7176E0E33752B1E9122DA6297E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ef:5a:39:8f:f1:b2:cc:94:92:b7:f7:73:c8: 12:62:e5:af:9e:7e:fb:8e:7d:05:11:5c:c5:19:02: 8e:b5:df:9c:37:45:da:a1:44:f4:2b:9c:10:2d:21: f4:c6:65:a5:a6:7b:28:00:36:3c:91:63:8e:78:7b: fb:dd:17:7b:bf:6d:1d:8e:59:e5:63:2d:33:a7:07: c3:d9:28:04:3e:6f:a0:7a:f6:6c:bd:57:05:d6:7b: e2:83:65:79:28:a8:b1:d6:f5:96:e2:44:47:5a:b0: bc:87:ff:cc:3b:64:02:1a:ec:c6:a1:16:ad:0d:4a: 6a:2a:ec:6f:ca:66:25:e7:8b:77:f4:87:14:4f:e1: a8:85:62:68:c1:9e:20:35:18:f3:88:29:f1:94:e5: 41:7e:ef:24:b9:6d:f1:34:b6:02:3c:77:dd:82:4a: 62:ed:4d:1f:fe:ec:e6:4e:ec:eb:c4:c0:83:68:56: 11:4a:0f:95:3c:f7:bc:4f:10:a2:12:c8:21:69:f7: b3:ca:91:88:b8:d1:5b:52:af:4f:c7:ed:19:77:bc: 77:48:81:69:aa:08:f5:52:b1:c9:c7:5b:e6:48:7f: ab:86:98:83:c6:69:59:41:5b:ba:22:2b:fd:47:22: 90:c3:71:01:16:84:87:43:e2:de:a5:69:dd:1b:74: 71:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:18:74:C2:3B:CE:5C:71:76:E0:E3:37:52:B1:E9:12:2D:A6:29:7E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS60431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4c00::/40 Signature Algorithm: sha256WithRSAEncryption b1:c6:5b:89:f5:ee:76:71:34:7f:8b:66:62:7f:f0:89:63:f5: 95:e9:2b:81:78:97:0e:b4:2e:d2:1f:7c:84:cf:16:6d:8e:f6: 34:89:24:10:18:3e:a9:39:97:b0:94:00:ec:99:d0:5b:de:b3: 07:7f:ff:93:e3:f0:41:03:d5:75:e8:7a:da:1a:76:9b:78:6e: 84:08:69:92:f3:80:27:94:07:8a:8c:f4:98:70:66:04:d3:70: 40:87:e9:a0:c4:59:8c:b4:05:b6:83:92:ef:1e:d6:76:17:2a: 5d:bc:e5:5f:45:3c:fd:5a:7e:9f:8a:e5:93:7b:e1:2e:22:7f: 4a:30:b7:85:75:6d:0f:8f:57:da:81:93:1c:c9:6c:79:35:20: b7:c4:9d:3f:79:f1:8b:c5:c0:61:10:01:36:a3:69:4f:60:82: 0d:54:96:80:ba:44:2f:cb:5a:f7:e7:4c:92:69:b1:09:42:c4: 6a:b2:64:ed:61:7b:76:ca:08:98:18:e8:4d:33:07:84:a1:31: f2:bc:05:6b:cf:74:72:b0:7f:cd:d0:72:e3:6a:81:85:b0:e4: 17:98:e3:86:f9:cd:41:8a:34:91:01:22:c2:4c:e7:eb:cf:61: d8:88:e3:5a:8e:58:d9:55:54:22:0b:b1:c9:3f:4f:68:f8:8e: c8:93:3d:22 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUa4b4jhqhsSsztZMBFDAjGDLn1vkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDVaFw0yNzA2MDQwNzEyNDVaMDMxMTAvBgNV BAMTKERCMTg3NEMyM0JDRTVDNzE3NkUwRTMzNzUyQjFFOTEyMkRBNjI5N0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC671o5j/GyzJSSt/dzyBJi5a+e fvuOfQURXMUZAo6135w3RdqhRPQrnBAtIfTGZaWmeygANjyRY454e/vdF3u/bR2O WeVjLTOnB8PZKAQ+b6B69my9VwXWe+KDZXkoqLHW9ZbiREdasLyH/8w7ZAIa7Mah Fq0NSmoq7G/KZiXni3f0hxRP4aiFYmjBniA1GPOIKfGU5UF+7yS5bfE0tgI8d92C SmLtTR/+7OZO7OvEwINoVhFKD5U897xPEKISyCFp97PKkYi40VtSr0/H7Rl3vHdI gWmqCPVSscnHW+ZIf6uGmIPGaVlBW7oiK/1HIpDDcQEWhIdD4t6lad0bdHGNAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQU2xh0wjvOXHF24OM3UrHpEi2mKX4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTNjA0MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BTDANBgkqhkiG9w0BAQsFAAOCAQEAscZb ifXudnE0f4tmYn/wiWP1lekrgXiXDrQu0h98hM8WbY72NIkkEBg+qTmXsJQA7JnQ W96zB3//k+PwQQPVdeh62hp2m3huhAhpkvOAJ5QHioz0mHBmBNNwQIfpoMRZjLQF toOS7x7WdhcqXbzlX0U8/Vp+n4rlk3vhLiJ/SjC3hXVtD49X2oGTHMlseTUgt8Sd P3nxi8XAYRABNqNpT2CCDVSWgLpEL8ta9+dMkmmxCULEarJk7WF7dsoImBjoTTMH hKEx8rwFa890crB/zdBy42qBhbDkF5jjhvnNQYo0kQEiwkzn689h2IjjWo5Y2VVU IguxyT9PaPiOyJM9Ig== -----END CERTIFICATE-----Generated at Sat Jun 13 06:43:26 2026 by rpki-client