$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa File: AS216429.roa (raw, json) Hash identifier: I7wZ/BbOUAMju36fz4LApFmRvnbOOIvnPlSu5EE895c= Subject key identifier: A8:9F:B1:51:92:98:DC:B4:3E:F6:41:96:6C:75:89:D6:1D:7B:A7:6D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 5FE5A943699C633580CD09FD7AF5818587DE5535 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa Signing time: Mon 23 Jun 2025 23:46:38 +0000 ROA not before: Mon 23 Jun 2025 23:41:38 +0000 ROA not after: Mon 22 Jun 2026 23:46:38 +0000 asID: 216429 IP address blocks: 2a05:dfc1:8700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 23:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e5:a9:43:69:9c:63:35:80:cd:09:fd:7a:f5:81:85:87:de:55:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 23 23:41:38 2025 GMT Not After : Jun 22 23:46:38 2026 GMT Subject: CN=A89FB1519298DCB43EF641966C7589D61D7BA76D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:50:ff:13:a0:da:4b:78:8f:08:20:b0:04:67: 16:6e:63:0d:0c:66:8f:2d:75:84:c6:95:e8:4d:bb: 37:0e:54:29:16:60:39:96:c8:c4:71:6c:07:c6:30: 67:c7:af:73:14:3c:69:17:83:cd:1a:f8:f2:94:32: a1:95:5d:ed:df:73:ac:39:b4:ee:2d:4d:13:a7:e6: e8:81:8e:81:3a:8f:dc:e6:55:6f:c5:8b:df:8c:d3: db:f6:1d:f8:2d:32:40:54:77:63:aa:09:7c:69:c4: d1:95:c4:8d:79:26:61:8e:83:34:81:3e:bf:d6:5a: c3:ec:32:91:ce:15:78:cd:f3:cb:ee:d1:ec:c6:84: 5c:0f:f5:80:dc:8f:60:ab:34:68:1b:93:b0:04:ac: a3:bc:05:7b:87:cc:11:4e:9c:fd:d6:39:d5:b4:44: 42:03:25:3c:11:ca:d6:ef:77:41:62:31:7b:38:e2: 08:8d:78:87:67:da:9f:f6:9d:01:c6:cf:7c:fe:86: 52:c5:51:ad:1a:e9:1c:14:3b:1c:0f:d5:63:81:08: 8e:18:4b:83:49:ad:3b:3a:48:31:1d:96:e6:7d:fb: b4:8b:3c:3f:7f:4b:64:a0:5d:cc:51:e8:91:53:d7: fb:17:d6:57:0a:23:24:cf:61:9e:a2:4d:6b:70:da: 0e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:9F:B1:51:92:98:DC:B4:3E:F6:41:96:6C:75:89:D6:1D:7B:A7:6D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216429.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8700::/40 Signature Algorithm: sha256WithRSAEncryption 34:99:d8:76:c4:a4:05:c3:cd:43:6f:67:1f:07:b1:db:79:d5: 58:bc:cb:19:08:90:72:e1:9d:1d:a9:20:b8:9b:e2:ee:76:4f: 5a:e8:f1:05:17:ef:07:bb:c5:4f:f3:dc:6c:27:32:f9:b9:b4: b2:97:25:f7:d3:a4:2a:8b:b3:7f:e1:b4:8f:c1:9c:79:0c:fc: 8b:27:26:25:60:5a:3d:fb:d9:46:57:b0:a4:ed:ac:56:82:1a: 5c:6b:cc:04:c3:b6:51:f3:c5:75:d9:14:08:95:9e:8b:10:02: a8:8b:97:c2:bf:fc:98:6b:38:d3:23:47:bc:97:99:cd:97:35: 84:2f:26:11:26:90:0c:04:2b:78:78:54:b9:f3:7a:6b:2d:ab: 83:63:e4:a1:9b:cd:0d:a2:ab:f7:24:ad:ad:21:66:d1:98:b3: 29:e0:9c:7c:54:82:9c:df:05:95:a8:20:e2:d9:29:1f:f5:c7: f6:0f:a5:78:63:dd:8b:7c:05:bd:b0:f4:49:73:42:c0:2b:8f: 2e:9c:b9:c9:d5:6f:8f:c8:23:0f:61:fa:4b:38:7e:bd:0f:94: 72:67:65:3f:42:32:5a:60:ff:77:27:04:7a:39:69:ea:60:72: 6e:d6:27:e6:65:a0:6d:96:cd:17:b1:24:80:ae:f5:55:ec:65: 35:7f:54:d8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUX+WpQ2mcYzWAzQn9evWBhYfeVTUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MjMyMzQxMzhaFw0yNjA2MjIyMzQ2MzhaMDMxMTAvBgNV BAMTKEE4OUZCMTUxOTI5OERDQjQzRUY2NDE5NjZDNzU4OUQ2MUQ3QkE3NkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQUP8ToNpLeI8IILAEZxZuYw0M Zo8tdYTGlehNuzcOVCkWYDmWyMRxbAfGMGfHr3MUPGkXg80a+PKUMqGVXe3fc6w5 tO4tTROn5uiBjoE6j9zmVW/Fi9+M09v2HfgtMkBUd2OqCXxpxNGVxI15JmGOgzSB Pr/WWsPsMpHOFXjN88vu0ezGhFwP9YDcj2CrNGgbk7AErKO8BXuHzBFOnP3WOdW0 REIDJTwRytbvd0FiMXs44giNeIdn2p/2nQHGz3z+hlLFUa0a6RwUOxwP1WOBCI4Y S4NJrTs6SDEdluZ9+7SLPD9/S2SgXcxR6JFT1/sX1lcKIyTPYZ6iTWtw2g4BAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUqJ+xUZKY3LQ+9kGWbHWJ1h17p20wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYcwDQYJKoZIhvcNAQELBQADggEBADSZ 2HbEpAXDzUNvZx8Hsdt51Vi8yxkIkHLhnR2pILib4u52T1ro8QUX7we7xU/z3Gwn Mvm5tLKXJffTpCqLs3/htI/BnHkM/IsnJiVgWj372UZXsKTtrFaCGlxrzATDtlHz xXXZFAiVnosQAqiLl8K//JhrONMjR7yXmc2XNYQvJhEmkAwEK3h4VLnzemstq4Nj 5KGbzQ2iq/ckra0hZtGYsyngnHxUgpzfBZWoIOLZKR/1x/YPpXhj3Yt8Bb2w9Elz QsArjy6cucnVb4/IIw9h+ks4fr0PlHJnZT9CMlpg/3cnBHo5aepgcm7WJ+ZloG2W zRexJICu9VXsZTV/VNg= -----END CERTIFICATE-----Generated at Sun Jun 29 09:39:11 2025 by rpki-client