$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa File: AS48231.roa (raw, json) Hash identifier: YfSTzzUkDxaHXJRcGLgQdJ8bxxdQp7sqOr/ac50vRSc= Subject key identifier: C7:E7:2B:29:67:B7:5B:E4:EF:EA:0C:C7:BD:F6:1A:5B:2C:B6:AA:BC Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 48D1FF88F7DEB72AF897F7493C267CF70152E3E1 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa Signing time: Tue 24 Jun 2025 10:46:40 +0000 ROA not before: Tue 24 Jun 2025 10:41:40 +0000 ROA not after: Tue 23 Jun 2026 10:46:40 +0000 asID: 48231 IP address blocks: 2a05:dfc1:5e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 29 Jun 2025 23:34:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:d1:ff:88:f7:de:b7:2a:f8:97:f7:49:3c:26:7c:f7:01:52:e3:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 24 10:41:40 2025 GMT Not After : Jun 23 10:46:40 2026 GMT Subject: CN=C7E72B2967B75BE4EFEA0CC7BDF61A5B2CB6AABC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:11:be:2e:55:87:c0:d3:0d:03:a3:9f:8e:00: 4c:f7:f0:cd:f3:2b:5b:f1:8b:1c:2d:dc:40:c6:f0: 70:13:91:75:cb:fb:ba:75:91:6a:ab:69:7f:e3:b6: d8:1d:92:be:69:b9:b3:1b:27:41:76:53:bb:1b:82: e2:72:cb:3d:c2:80:5a:17:18:c3:1a:8b:02:36:42: 0c:91:3c:d9:d2:ba:d8:5c:ca:b8:74:a7:90:b4:94: 6c:c0:a1:5c:bc:3b:64:4c:0c:86:44:bd:96:a6:b2: e6:19:a5:18:e8:41:28:ad:4e:97:9a:bf:23:2c:18: fd:b1:56:c6:4d:d6:4c:15:2f:15:c7:50:01:90:ff: f8:a1:b2:82:66:0c:7b:2e:b7:76:c4:03:01:73:bd: a4:dc:61:1f:ff:76:12:49:54:48:de:c6:90:9d:82: c8:45:7f:8c:f9:c4:3a:c4:cf:0d:bc:da:40:a6:83: 85:76:8a:57:15:2a:5e:2f:1c:c3:3c:df:5f:4c:64: 1e:7b:55:fa:86:d3:47:75:a1:23:b9:bd:55:82:c1: 39:84:8c:c4:81:0e:a7:53:1b:65:d0:ff:6c:3f:85: de:bd:85:82:ef:af:04:60:53:3a:1b:ad:da:47:47: 0d:a5:24:01:c4:6d:2e:62:27:a2:1c:74:82:58:68: 5c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E7:2B:29:67:B7:5B:E4:EF:EA:0C:C7:BD:F6:1A:5B:2C:B6:AA:BC X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS48231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5e00::/40 Signature Algorithm: sha256WithRSAEncryption 81:44:a8:79:43:09:43:8e:c5:3f:9a:d8:c9:bb:9a:05:d3:ac: 22:03:1f:e6:e2:06:d4:ba:d4:c1:ee:fc:3f:4a:f0:79:ca:20: 59:b8:cc:7e:ef:4b:bf:1d:73:3e:c2:d2:89:34:94:de:31:4f: d7:c7:94:f8:81:31:6e:79:5f:ea:14:92:e0:f2:f3:4e:eb:1a: 24:92:93:5d:88:35:2c:51:24:ba:fb:57:a9:89:44:75:89:33: de:64:e4:b4:8c:24:f3:21:48:d7:9e:f2:94:e0:a6:8d:51:89: 58:0f:fd:0d:46:98:96:81:b3:e8:88:b0:40:82:99:7b:18:64: a0:85:86:b7:b6:15:5e:bf:40:4c:89:1d:d1:44:05:2a:65:76: 65:1c:4b:44:4c:e0:42:52:2b:fc:55:60:f4:c6:2b:83:1a:c7: 09:0c:5f:3d:03:23:3d:e6:f9:02:eb:53:a7:74:da:4c:7c:d2: f3:a2:b2:05:62:0f:40:61:0c:02:7e:18:7c:1d:7f:1a:ff:f0: 67:63:71:1f:aa:23:42:41:d8:5c:63:fc:19:c9:09:02:44:ee: c9:3b:73:2b:2b:8d:77:43:3a:31:08:e6:39:e5:52:c7:b2:95: 73:63:0c:5e:91:f4:6a:a6:7a:c8:d3:d9:29:1c:f3:49:79:55: a1:51:eb:69 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgIUSNH/iPfetyr4l/dJPCZ89wFS4+EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MjQxMDQxNDBaFw0yNjA2MjMxMDQ2NDBaMDMxMTAvBgNV BAMTKEM3RTcyQjI5NjdCNzVCRTRFRkVBMENDN0JERjYxQTVCMkNCNkFBQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeEb4uVYfA0w0Do5+OAEz38M3z K1vxixwt3EDG8HATkXXL+7p1kWqraX/jttgdkr5pubMbJ0F2U7sbguJyyz3CgFoX GMMaiwI2QgyRPNnSuthcyrh0p5C0lGzAoVy8O2RMDIZEvZamsuYZpRjoQSitTpea vyMsGP2xVsZN1kwVLxXHUAGQ//ihsoJmDHsut3bEAwFzvaTcYR//dhJJVEjexpCd gshFf4z5xDrEzw282kCmg4V2ilcVKl4vHMM8319MZB57VfqG00d1oSO5vVWCwTmE jMSBDqdTG2XQ/2w/hd69hYLvrwRgUzobrdpHRw2lJAHEbS5iJ6IcdIJYaFxlAgMB AAGjggHzMIIB7zAdBgNVHQ4EFgQUx+crKWe3W+Tv6gzHvfYaWyy2qrwwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWQYIKwYBBQUHAQsETTBLMEkGCCsGAQUFBzALhj1y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTNDgyMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUH AQcBAf8EEjAQMA4EAgACMAgDBgAqBd/BXjANBgkqhkiG9w0BAQsFAAOCAQEAgUSo eUMJQ47FP5rYybuaBdOsIgMf5uIG1LrUwe78P0rwecogWbjMfu9Lvx1zPsLSiTSU 3jFP18eU+IExbnlf6hSS4PLzTusaJJKTXYg1LFEkuvtXqYlEdYkz3mTktIwk8yFI 157ylOCmjVGJWA/9DUaYloGz6IiwQIKZexhkoIWGt7YVXr9ATIkd0UQFKmV2ZRxL REzgQlIr/FVg9MYrgxrHCQxfPQMjPeb5AutTp3TaTHzS86KyBWIPQGEMAn4YfB1/ Gv/wZ2NxH6ojQkHYXGP8GckJAkTuyTtzKyuNd0M6MQjmOeVSx7KVc2MMXpH0aqZ6 yNPZKRzzSXlVoVHraQ== -----END CERTIFICATE-----Generated at Sun Jun 29 09:38:15 2025 by rpki-client