$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214847.roa File: AS214847.roa (raw, json) Hash identifier: OxgqTmNfv2tiXhxKxmSiUAhRjGtNbfoTCu5Ok7SIL4U= Subject key identifier: 59:20:D6:2B:F4:AD:3F:03:75:D8:46:52:8B:21:E0:29:95:48:B8:F4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 58D99AE878D819AA1A85747D608D8A07BEF9A8FA Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214847.roa Signing time: Sat 26 Apr 2025 12:46:16 +0000 ROA not before: Sat 26 Apr 2025 12:41:16 +0000 ROA not after: Sat 25 Apr 2026 12:46:16 +0000 asID: 214847 IP address blocks: 2a06:9f81:4300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 11:26:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d9:9a:e8:78:d8:19:aa:1a:85:74:7d:60:8d:8a:07:be:f9:a8:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 26 12:41:16 2025 GMT Not After : Apr 25 12:46:16 2026 GMT Subject: CN=5920D62BF4AD3F0375D846528B21E0299548B8F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ab:68:2f:86:bb:6b:c2:91:4c:17:74:7a:5d: 5b:b9:4c:0c:88:2a:82:fe:78:56:77:a4:8c:36:67: a2:55:fe:48:a3:2c:34:ea:99:82:7a:58:a0:d0:d4: 2f:37:77:cd:f9:a9:12:b5:92:3a:82:cc:d3:43:a4: b9:00:27:f5:a8:df:cf:8c:69:13:38:5d:cc:87:e8: b1:91:93:89:6e:4c:11:30:f8:40:95:c6:85:5c:b2: 81:52:b2:43:d9:65:77:31:46:9f:23:be:d2:ff:63: ae:8c:7f:74:e8:ea:52:bc:7d:42:7e:26:8d:4b:44: ae:08:dd:87:17:8d:e2:6a:89:1f:38:6a:ce:b0:2e: 1e:f5:e2:1a:bf:39:65:58:33:15:b1:ec:e9:22:7c: 69:83:59:b2:6d:e8:85:03:86:95:70:20:4a:5a:ba: 3f:25:74:be:c0:bc:05:92:6b:a6:df:bf:04:76:c8: 47:41:8e:c3:f6:35:c7:0f:a9:99:c4:52:31:d9:16: 15:20:a7:31:20:06:ee:b9:71:98:26:60:9f:8c:dc: ea:1d:0e:e2:6f:44:71:40:47:00:15:3d:1a:89:bd: b8:f5:03:23:5b:14:98:c8:c6:7a:fa:4b:aa:0c:e0: b1:8b:75:5d:af:78:69:38:85:54:5e:31:58:fb:92: 4a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:20:D6:2B:F4:AD:3F:03:75:D8:46:52:8B:21:E0:29:95:48:B8:F4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS214847.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:4300::/40 Signature Algorithm: sha256WithRSAEncryption 44:cf:7d:8b:31:00:b7:9c:ce:b0:d8:9c:04:c7:95:8e:b0:cd: de:2f:ae:d9:19:2b:6a:c3:0a:78:bc:91:7e:c0:57:b4:f8:c9: ea:74:36:7a:e6:b0:cf:f4:e4:6f:28:ce:85:f8:87:1e:ac:e6: 16:fd:1b:da:4b:49:83:05:f0:53:b3:29:fb:2c:cb:13:68:ba: 7e:1d:23:ec:cc:c4:aa:35:51:a1:0a:a9:fd:04:62:2f:12:ef: fa:58:53:a5:87:29:2e:cb:8a:bd:21:8e:61:e8:2f:86:a1:3b: ff:e0:fe:a7:f7:c0:55:f2:a0:13:0f:6b:6c:77:35:16:f6:bd: 41:12:62:69:ce:4e:a9:cc:53:35:c9:cf:e5:3c:25:9c:2c:89: d2:bf:43:fe:33:0a:4b:e5:5d:be:4a:a0:82:e3:a9:4b:e0:67: 00:7c:50:d8:d3:9f:b8:f1:40:19:f9:6b:ea:74:32:b2:d0:c7: 46:35:10:78:c0:98:11:ff:6b:86:c8:35:15:89:8f:92:d5:be: af:e6:14:4b:6e:82:b7:8e:80:63:df:27:77:7b:8c:49:4e:4b: 76:3e:1c:18:50:8d:8d:d3:e0:d0:b4:c7:39:91:87:ae:37:f3: ac:71:e6:88:80:44:28:91:81:d9:60:69:53:7a:af:c7:f0:b8: f9:c7:f9:87 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWNma6HjYGaoahXR9YI2KB775qPowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA0MjYxMjQxMTZaFw0yNjA0MjUxMjQ2MTZaMDMxMTAvBgNV BAMTKDU5MjBENjJCRjRBRDNGMDM3NUQ4NDY1MjhCMjFFMDI5OTU0OEI4RjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjq2gvhrtrwpFMF3R6XVu5TAyI KoL+eFZ3pIw2Z6JV/kijLDTqmYJ6WKDQ1C83d835qRK1kjqCzNNDpLkAJ/Wo38+M aRM4XcyH6LGRk4luTBEw+ECVxoVcsoFSskPZZXcxRp8jvtL/Y66Mf3To6lK8fUJ+ Jo1LRK4I3YcXjeJqiR84as6wLh714hq/OWVYMxWx7OkifGmDWbJt6IUDhpVwIEpa uj8ldL7AvAWSa6bfvwR2yEdBjsP2NccPqZnEUjHZFhUgpzEgBu65cZgmYJ+M3Ood DuJvRHFARwAVPRqJvbj1AyNbFJjIxnr6S6oM4LGLdV2veGk4hVReMVj7kkqvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWSDWK/StPwN12EZSiyHgKZVIuPQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE0ODQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgUMwDQYJKoZIhvcNAQELBQADggEBAETP fYsxALeczrDYnATHlY6wzd4vrtkZK2rDCni8kX7AV7T4yep0NnrmsM/05G8ozoX4 hx6s5hb9G9pLSYMF8FOzKfssyxNoun4dI+zMxKo1UaEKqf0EYi8S7/pYU6WHKS7L ir0hjmHoL4ahO//g/qf3wFXyoBMPa2x3NRb2vUESYmnOTqnMUzXJz+U8JZwsidK/ Q/4zCkvlXb5KoILjqUvgZwB8UNjTn7jxQBn5a+p0MrLQx0Y1EHjAmBH/a4bINRWJ j5LVvq/mFEtugreOgGPfJ3d7jElOS3Y+HBhQjY3T4NC0xzmRh64386xx5oiARCiR gdlgaVN6r8fwuPnH+Yc= -----END CERTIFICATE-----Generated at Wed May 7 02:03:27 2025 by rpki-client