$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa File: AS197434.roa (raw, json) Hash identifier: T+r253Qef3n4a4+UPisioamKXD5vGl/6vmk2o44NOAs= Subject key identifier: C7:16:FC:FA:41:1B:53:E5:C1:2E:0D:05:0B:4F:80:8E:12:7C:2F:27 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 4E29CB50BE4D4A658BDD0222A8F0DA9C12A4A40D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa Signing time: Tue 03 Jun 2025 13:46:30 +0000 ROA not before: Tue 03 Jun 2025 13:41:30 +0000 ROA not after: Tue 02 Jun 2026 13:46:30 +0000 asID: 197434 IP address blocks: 2a05:dfc1:7900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:29:cb:50:be:4d:4a:65:8b:dd:02:22:a8:f0:da:9c:12:a4:a4:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jun 3 13:41:30 2025 GMT Not After : Jun 2 13:46:30 2026 GMT Subject: CN=C716FCFA411B53E5C12E0D050B4F808E127C2F27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bd:4a:02:ed:a0:77:63:5a:83:3c:41:9a:0c: 76:cc:42:c4:ee:db:71:f2:56:68:01:6d:5d:5d:51: 81:76:9d:e9:dc:b7:92:a3:e3:aa:7b:2b:3c:8c:db: b5:73:3c:4d:74:0d:a6:4d:5c:ba:23:17:e9:fb:1e: 5a:84:ba:b7:6b:7b:1f:3e:d3:40:78:e5:05:72:43: f7:fa:a8:9a:9f:5c:7f:ea:04:d7:a2:38:50:11:dc: 60:93:5d:9b:36:cd:74:b4:06:ed:4e:19:79:17:ae: 85:87:46:d9:1a:6d:a1:ef:5f:75:6c:98:95:b8:91: 2a:9e:6d:b1:a6:bb:7f:0c:8d:34:0a:c8:ba:8f:4c: fd:1c:5c:06:27:b0:94:51:d7:2f:25:02:35:85:b3: 4e:b6:a2:f6:08:b0:43:28:cb:08:b5:79:8b:ba:4c: 07:ed:e2:65:e4:23:6e:3b:ca:e6:6a:a8:8b:46:cb: 5d:b9:97:b5:9a:95:10:6f:96:ad:06:75:15:54:26: 1c:40:c3:c3:6e:f8:c6:ab:1d:e4:98:61:dc:83:b6: dc:83:c6:f2:8d:b6:17:52:92:bc:4b:2a:97:6a:db: c1:41:42:7a:54:6d:a9:a4:c9:89:e6:85:ea:b2:32: dc:f6:33:27:e9:da:20:2f:82:f8:fb:9d:00:09:a9: d3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:16:FC:FA:41:1B:53:E5:C1:2E:0D:05:0B:4F:80:8E:12:7C:2F:27 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7900::/40 Signature Algorithm: sha256WithRSAEncryption 06:4d:11:90:05:9b:1b:cc:1b:4f:6e:c5:fb:5b:13:22:39:66: 44:d0:e8:42:94:cc:c6:35:12:e3:88:90:4c:9e:88:21:e2:97: 5b:ef:f3:e4:ff:7c:45:3e:47:2a:f2:39:33:82:af:1a:21:6e: 3c:f6:3b:68:27:c1:cb:c2:bc:10:30:83:38:a7:94:31:a0:ae: c0:1c:19:c1:17:e0:4b:ad:0b:ff:ed:f7:ef:5d:61:a0:56:37: 25:1a:3f:38:1d:24:b6:42:a6:0d:3d:0f:d4:fb:25:56:b6:54: 57:a5:da:93:75:c4:3f:11:db:a5:ff:bc:7d:0d:8f:b8:f1:65: 51:c2:58:50:90:71:dd:72:97:0d:44:4e:6a:d6:b0:bf:36:22: 7e:cd:df:ed:bc:4e:60:65:c0:f7:aa:7d:02:7b:43:cb:16:e8: 37:f9:37:58:13:4b:61:0a:d5:b4:d3:c6:15:f8:db:e4:39:3c: db:05:56:59:b5:e9:43:44:70:c0:8f:9c:3d:52:b6:ba:58:d6: 1f:62:09:d4:c8:ef:50:f1:73:af:c8:9f:08:a6:da:39:a6:98: 89:64:08:88:d6:ff:4f:0f:9e:32:21:72:3a:5f:8b:d2:9d:6d: 6d:90:89:75:c2:66:90:59:9f:29:0d:4b:84:11:b1:97:31:ea: d0:bf:07:71 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTinLUL5NSmWL3QIiqPDanBKkpA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA2MDMxMzQxMzBaFw0yNjA2MDIxMzQ2MzBaMDMxMTAvBgNV BAMTKEM3MTZGQ0ZBNDExQjUzRTVDMTJFMEQwNTBCNEY4MDhFMTI3QzJGMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCvUoC7aB3Y1qDPEGaDHbMQsTu 23HyVmgBbV1dUYF2nenct5Kj46p7KzyM27VzPE10DaZNXLojF+n7HlqEurdrex8+ 00B45QVyQ/f6qJqfXH/qBNeiOFAR3GCTXZs2zXS0Bu1OGXkXroWHRtkabaHvX3Vs mJW4kSqebbGmu38MjTQKyLqPTP0cXAYnsJRR1y8lAjWFs062ovYIsEMoywi1eYu6 TAft4mXkI247yuZqqItGy125l7WalRBvlq0GdRVUJhxAw8Nu+MarHeSYYdyDttyD xvKNthdSkrxLKpdq28FBQnpUbamkyYnmheqyMtz2Myfp2iAvgvj7nQAJqdOJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUxxb8+kEbU+XBLg0FC0+AjhJ8LycwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXkwDQYJKoZIhvcNAQELBQADggEBAAZN EZAFmxvMG09uxftbEyI5ZkTQ6EKUzMY1EuOIkEyeiCHil1vv8+T/fEU+RyryOTOC rxohbjz2O2gnwcvCvBAwgzinlDGgrsAcGcEX4EutC//t9+9dYaBWNyUaPzgdJLZC pg09D9T7JVa2VFel2pN1xD8R26X/vH0Nj7jxZVHCWFCQcd1ylw1ETmrWsL82In7N 3+28TmBlwPeqfQJ7Q8sW6Df5N1gTS2EK1bTTxhX42+Q5PNsFVlm16UNEcMCPnD1S trpY1h9iCdTI71Dxc6/Inwim2jmmmIlkCIjW/08PnjIhcjpfi9KdbW2QiXXCZpBZ nykNS4QRsZcx6tC/B3E= -----END CERTIFICATE-----Generated at Sat Jun 7 23:39:03 2025 by rpki-client