$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216305.roa File: AS216305.roa (raw, json) Hash identifier: TNmmTJEb6VLAaQy4iSvdp3yGLeQQTA5sDXdSveY2F0Q= Subject key identifier: 16:DE:AD:C6:6F:C8:0F:1F:A4:00:28:84:87:D4:54:21:C0:7E:30:C4 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 28D3756E0B9AB3EB2726C19990AA63A0AACCC904 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216305.roa Signing time: Fri 27 Jun 2025 00:46:41 +0000 ROA not before: Fri 27 Jun 2025 00:41:41 +0000 ROA not after: Fri 26 Jun 2026 00:46:41 +0000 asID: 216305 IP address blocks: 2a06:9f81:5900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 23:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:d3:75:6e:0b:9a:b3:eb:27:26:c1:99:90:aa:63:a0:aa:cc:c9:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 27 00:41:41 2025 GMT Not After : Jun 26 00:46:41 2026 GMT Subject: CN=16DEADC66FC80F1FA400288487D45421C07E30C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:43:aa:9c:a5:05:65:01:19:cd:fe:34:ef:29: e6:db:5c:df:3f:70:da:01:b7:b8:c4:b8:b0:0a:36: 8f:2a:9a:ba:0d:6a:a8:e3:dd:fb:6c:35:67:49:8c: e4:9d:a2:51:80:7c:a2:b9:02:cc:ae:8c:71:f5:4f: 3a:67:7f:b4:45:d3:4f:2b:6a:62:f5:b8:57:6d:55: 83:e0:3b:d8:93:78:6f:07:4e:9b:62:49:bc:bc:4f: 5d:2c:bf:2c:23:07:8d:80:4e:3a:fc:91:d9:ef:f7: 4b:ae:50:94:d3:48:69:bd:64:59:fe:92:ec:b6:66: 73:ae:b8:95:6d:f8:61:5c:fc:b7:52:7f:a9:09:c2: f6:b3:7a:1c:1e:4f:51:b5:c6:5a:20:b8:82:3e:36: 68:0e:3a:1d:bc:95:af:dd:53:02:c9:70:f9:08:66: ff:64:69:f9:d5:89:35:37:2d:69:fd:5f:ef:ff:80: 59:bf:f3:4b:0b:c9:67:be:79:17:94:d4:73:ab:f4: 53:d9:4c:50:96:c3:16:89:e3:c6:be:3a:03:f4:03: e2:9f:23:11:c9:41:48:4b:1c:cc:49:12:60:8e:09: 0c:2b:21:fc:45:86:f5:70:0a:26:29:86:16:3c:7f: b4:c6:f3:58:28:12:b6:3c:06:0a:4f:36:b6:28:56: f2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DE:AD:C6:6F:C8:0F:1F:A4:00:28:84:87:D4:54:21:C0:7E:30:C4 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216305.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:5900::/40 Signature Algorithm: sha256WithRSAEncryption 0d:8a:4c:0a:17:57:58:24:db:1b:f6:b9:c0:7f:5f:3e:04:79: 66:5c:18:5a:bf:70:bb:88:93:e2:77:df:4b:44:6d:85:d9:3a: c6:a4:ed:7c:5f:20:6e:50:b8:91:1f:1f:d1:2a:be:f0:e6:ff: 28:c6:60:a5:cb:ad:1a:8c:39:47:7b:8f:aa:f2:0d:0a:f5:3b: b8:28:c9:f0:1c:f3:ef:ce:57:00:d6:01:78:15:f8:24:98:03: 56:68:d5:a8:2a:9c:cd:15:e1:21:18:57:ab:ba:a2:e3:e0:5f: 78:8f:48:75:30:67:b1:10:20:46:90:a0:bc:e9:6c:ae:a4:5c: 10:10:47:07:43:80:4f:4c:26:75:b2:be:1b:ad:17:f1:9c:e7: b9:f9:8e:d0:0b:98:5d:bd:3a:d2:3c:85:ba:68:95:dc:7b:67: d0:2c:a9:08:13:f9:bc:35:6d:4e:12:40:2c:ef:1f:5d:28:8c: 44:36:d3:e5:ff:08:7a:36:5a:8b:94:b3:17:77:03:c1:59:0b: ab:56:83:bc:55:20:be:fe:4b:4f:79:cd:bc:0a:ad:aa:7d:7b: 16:bd:0c:1d:db:a1:00:66:69:39:01:83:52:36:fd:d0:79:ce: b4:a9:57:55:c4:87:d9:2a:2e:36:d5:0d:9a:8c:a9:44:47:85: 3c:72:ee:e6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKNN1bguas+snJsGZkKpjoKrMyQQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MjcwMDQxNDFaFw0yNjA2MjYwMDQ2NDFaMDMxMTAvBgNV BAMTKDE2REVBREM2NkZDODBGMUZBNDAwMjg4NDg3RDQ1NDIxQzA3RTMwQzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEQ6qcpQVlARnN/jTvKebbXN8/ cNoBt7jEuLAKNo8qmroNaqjj3ftsNWdJjOSdolGAfKK5AsyujHH1Tzpnf7RF008r amL1uFdtVYPgO9iTeG8HTptiSby8T10svywjB42ATjr8kdnv90uuUJTTSGm9ZFn+ kuy2ZnOuuJVt+GFc/LdSf6kJwvazehweT1G1xloguII+NmgOOh28la/dUwLJcPkI Zv9kafnViTU3LWn9X+//gFm/80sLyWe+eReU1HOr9FPZTFCWwxaJ48a+OgP0A+Kf IxHJQUhLHMxJEmCOCQwrIfxFhvVwCiYphhY8f7TG81goErY8BgpPNrYoVvIpAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFt6txm/IDx+kACiEh9RUIcB+MMQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2MzA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgVkwDQYJKoZIhvcNAQELBQADggEBAA2K TAoXV1gk2xv2ucB/Xz4EeWZcGFq/cLuIk+J330tEbYXZOsak7XxfIG5QuJEfH9Eq vvDm/yjGYKXLrRqMOUd7j6ryDQr1O7goyfAc8+/OVwDWAXgV+CSYA1Zo1agqnM0V 4SEYV6u6ouPgX3iPSHUwZ7EQIEaQoLzpbK6kXBAQRwdDgE9MJnWyvhutF/Gc57n5 jtALmF29OtI8hbpoldx7Z9AsqQgT+bw1bU4SQCzvH10ojEQ20+X/CHo2WouUsxd3 A8FZC6tWg7xVIL7+S095zbwKrap9exa9DB3boQBmaTkBg1I2/dB5zrSpV1XEh9kq LjbVDZqMqURHhTxy7uY= -----END CERTIFICATE-----Generated at Sun Jun 29 09:39:08 2025 by rpki-client