$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa File: AS216454.roa (raw, json) Hash identifier: xhDw4QKLpe0kt3/mKOB9tkz9W5S7drh45cxIISzpN4k= Subject key identifier: D5:6A:9A:F3:14:C6:46:2F:E6:35:3D:61:7F:31:9D:E4:C4:88:F6:14 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 409241CFAABAF155CE729DC0EC7CFB12E2047502 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa Signing time: Wed 18 Jun 2025 23:46:37 +0000 ROA not before: Wed 18 Jun 2025 23:41:37 +0000 ROA not after: Wed 17 Jun 2026 23:46:37 +0000 asID: 216454 IP address blocks: 2a05:dfc1:8300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 23:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:92:41:cf:aa:ba:f1:55:ce:72:9d:c0:ec:7c:fb:12:e2:04:75:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 18 23:41:37 2025 GMT Not After : Jun 17 23:46:37 2026 GMT Subject: CN=D56A9AF314C6462FE6353D617F319DE4C488F614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9b:c0:43:2a:7f:83:ad:92:a9:d5:6b:b9:ac: 70:96:a4:8d:33:19:58:c1:0f:ec:60:8d:7e:ea:c7: d9:dd:8f:d3:37:19:22:50:dc:d8:05:b9:96:92:45: 86:df:dc:cf:b0:38:3f:89:c3:ab:10:cf:bc:b0:07: fb:c2:36:b1:93:7f:37:7f:fa:57:d9:e8:b3:22:19: f5:f5:dc:63:a8:9f:80:e7:f6:6b:65:79:eb:f9:c5: eb:13:3d:c4:ed:c2:4f:1d:92:08:4c:5d:da:3f:c1: 31:b2:67:a8:e6:36:04:bf:f1:09:6f:b6:d1:fd:12: 8a:55:a5:08:f8:69:fb:63:73:00:47:79:23:60:41: bc:c8:34:25:90:95:04:96:78:0f:72:21:f4:25:ab: 20:7a:78:de:d8:20:c7:40:91:9e:e7:47:61:e7:c5: d9:83:fc:a6:29:77:30:5e:c8:66:00:93:10:9a:01: 58:a4:3e:ad:f1:82:b3:45:d1:e0:60:1d:4b:68:88: e4:dc:9d:09:6d:0c:5c:90:ff:17:36:6d:ba:d4:f1: b3:79:8d:68:28:ea:69:00:00:bd:5d:2a:14:d5:68: d9:08:a3:0a:c0:90:17:94:a0:75:63:e5:3d:f9:85: fd:8b:96:b7:31:7b:b1:8a:c3:31:c0:b5:92:93:ce: 79:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:6A:9A:F3:14:C6:46:2F:E6:35:3D:61:7F:31:9D:E4:C4:88:F6:14 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS216454.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8300::/40 Signature Algorithm: sha256WithRSAEncryption 3a:d2:8c:ff:50:6a:5a:c9:e1:c9:89:cb:57:e0:92:5c:d4:8d: bb:37:f1:53:6b:7b:5c:63:94:82:7a:3a:d9:36:ec:6f:d0:1f: 13:5d:84:2c:f4:2f:83:b6:ee:ba:b9:2b:19:41:3d:20:c2:7c: dd:e5:6a:34:61:08:20:b9:bc:ac:8c:ff:ba:4e:93:dc:77:9e: e3:7c:e4:c0:8c:4c:37:af:ca:69:4f:92:e3:d9:38:c7:9d:09: fe:a8:a7:20:ad:20:8b:d6:54:7f:e8:34:a3:a5:af:7d:03:c1: 74:c8:4e:44:a6:b7:aa:b4:28:5f:7e:14:40:a7:4f:c0:ad:cf: 89:f8:ed:c9:db:76:b6:10:cf:2c:18:5d:48:45:cd:fb:9d:5f: c1:c4:3d:a0:a5:a5:81:48:2c:85:82:08:86:38:bb:cf:fb:4e: cc:47:3c:92:f8:37:b1:0f:78:0b:d5:e5:84:89:44:34:d4:b6: c9:71:61:5d:6c:b5:fb:ce:f4:06:a5:75:6c:6e:3b:ca:84:2b: b7:04:b1:e5:71:fc:dc:8e:1c:fb:bf:ce:f3:ad:6a:00:71:0b: b0:60:42:d0:57:fa:a8:86:f0:c3:18:2a:92:54:cb:fc:b9:2c: c4:fb:bb:df:ab:12:c1:23:63:16:74:dd:76:73:f9:54:7c:56: 1d:30:37:b8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQJJBz6q68VXOcp3A7Hz7EuIEdQIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MTgyMzQxMzdaFw0yNjA2MTcyMzQ2MzdaMDMxMTAvBgNV BAMTKEQ1NkE5QUYzMTRDNjQ2MkZFNjM1M0Q2MTdGMzE5REU0QzQ4OEY2MTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEm8BDKn+DrZKp1Wu5rHCWpI0z GVjBD+xgjX7qx9ndj9M3GSJQ3NgFuZaSRYbf3M+wOD+Jw6sQz7ywB/vCNrGTfzd/ +lfZ6LMiGfX13GOon4Dn9mtleev5xesTPcTtwk8dkghMXdo/wTGyZ6jmNgS/8Qlv ttH9EopVpQj4aftjcwBHeSNgQbzINCWQlQSWeA9yIfQlqyB6eN7YIMdAkZ7nR2Hn xdmD/KYpdzBeyGYAkxCaAVikPq3xgrNF0eBgHUtoiOTcnQltDFyQ/xc2bbrU8bN5 jWgo6mkAAL1dKhTVaNkIowrAkBeUoHVj5T35hf2Llrcxe7GKwzHAtZKTznlvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1Wqa8xTGRi/mNT1hfzGd5MSI9hQwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMjE2NDU0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYMwDQYJKoZIhvcNAQELBQADggEBADrS jP9QalrJ4cmJy1fgklzUjbs38VNre1xjlIJ6Otk27G/QHxNdhCz0L4O27rq5KxlB PSDCfN3lajRhCCC5vKyM/7pOk9x3nuN85MCMTDevymlPkuPZOMedCf6opyCtIIvW VH/oNKOlr30DwXTITkSmt6q0KF9+FECnT8Ctz4n47cnbdrYQzywYXUhFzfudX8HE PaClpYFILIWCCIY4u8/7TsxHPJL4N7EPeAvV5YSJRDTUtslxYV1stfvO9AaldWxu O8qEK7cEseVx/NyOHPu/zvOtagBxC7BgQtBX+qiG8MMYKpJUy/y5LMT7u9+rEsEj YxZ03XZz+VR8Vh0wN7g= -----END CERTIFICATE-----Generated at Sun Jun 29 09:38:46 2025 by rpki-client