$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa File: AS197622.roa (raw, json) Hash identifier: 3Q6C7Z8XjNwd0JRGMv9/gChqQ192NLKBZpLk4qzMtH8= Subject key identifier: 4A:09:96:1D:6D:7E:31:40:66:C0:82:8C:F7:7E:B3:A0:7F:83:30:A8 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 574D0136A4A8EE30937FA05CC1D8BEF3CC7BEEA5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa Signing time: Mon 26 May 2025 23:46:24 +0000 ROA not before: Mon 26 May 2025 23:41:24 +0000 ROA not after: Mon 25 May 2026 23:46:24 +0000 asID: 197622 IP address blocks: 2a05:dfc1:7500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:4d:01:36:a4:a8:ee:30:93:7f:a0:5c:c1:d8:be:f3:cc:7b:ee:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 26 23:41:24 2025 GMT Not After : May 25 23:46:24 2026 GMT Subject: CN=4A09961D6D7E314066C0828CF77EB3A07F8330A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:6b:d2:dc:7e:be:46:a7:8c:a6:71:ce:6c: 2b:f4:74:00:79:7c:e0:9c:a1:ac:32:7c:9b:47:10: 47:ea:13:c0:02:a4:f1:9f:e5:ca:1e:26:7d:24:54: fe:0d:de:1a:1e:72:6b:e0:6c:da:71:aa:48:b4:3e: 0f:e0:8c:e5:e3:72:12:ac:76:2a:59:18:eb:e7:c7: 32:fc:2e:c0:e4:62:aa:53:15:50:4a:6d:e2:ad:bf: 86:fc:f4:9a:88:e3:34:13:d6:50:25:63:74:e5:ed: 79:2e:e2:f4:1b:30:4e:88:fc:56:98:25:b2:22:f6: c7:ed:c8:c7:63:35:1f:7b:41:b5:2e:36:31:c9:d0: 00:c9:a4:da:43:fc:bc:5a:be:98:32:c6:b4:d6:f5: 74:63:2e:e4:50:f5:ac:d2:ba:12:58:4c:c8:9d:6e: 96:aa:17:44:3f:db:af:c2:a2:07:29:bd:77:c2:5e: 22:3e:3d:6f:06:94:cf:3b:a1:a0:62:1c:7b:5a:74: e3:42:a2:79:b2:ce:25:ce:86:6c:35:ea:5e:74:5a: 35:0e:4c:ae:d5:4b:a8:e6:47:39:3f:68:1c:b2:3d: 7a:2b:17:55:1e:ce:3b:66:74:91:14:34:fa:d7:3f: 52:14:ee:38:83:5d:5f:41:af:9f:8c:90:2a:e5:b7: 50:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:09:96:1D:6D:7E:31:40:66:C0:82:8C:F7:7E:B3:A0:7F:83:30:A8 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197622.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7500::/40 Signature Algorithm: sha256WithRSAEncryption 9e:98:23:39:20:02:89:ae:9c:93:33:7c:ba:9b:fd:79:ec:59: 2f:0a:dd:a6:22:25:87:53:90:ff:77:51:78:a1:72:9d:97:f8: 63:f3:21:c7:4a:65:ee:01:c5:74:59:b2:54:25:ff:70:59:d4: c4:a4:57:ab:30:0d:b4:49:73:ba:20:00:6f:73:da:22:34:35: da:e6:f5:61:0f:b0:51:28:3a:8b:c6:ee:6a:90:99:fc:a4:00: 8e:24:9b:ad:12:4f:fb:80:78:68:06:bc:b3:ba:9e:1d:26:8e: 9b:ae:d9:68:47:8a:2e:37:47:a7:31:51:05:9b:59:77:95:ed: fa:e1:e5:04:c5:6b:c6:e6:4c:ef:7b:8c:41:d4:cc:6b:2c:99: f7:7d:8b:d5:36:da:46:79:9d:a9:4a:3a:aa:85:f7:6c:47:b5: 62:cb:0e:6c:cf:26:ca:5a:cc:02:96:02:24:b1:d3:78:18:b3: cb:83:79:63:7d:25:87:42:a9:5f:fd:81:41:17:88:bc:99:50: 87:f6:bc:ed:11:63:98:09:b9:b0:08:35:66:18:b6:f4:4e:69: ba:d2:29:6f:c5:4f:67:0e:4e:06:80:46:2f:92:c3:07:c8:05: 36:85:7c:33:5b:7d:a5:06:e2:a0:63:05:9e:dc:21:25:86:09: ae:23:8f:31 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUV00BNqSo7jCTf6Bcwdi+88x77qUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjYyMzQxMjRaFw0yNjA1MjUyMzQ2MjRaMDMxMTAvBgNV BAMTKDRBMDk5NjFENkQ3RTMxNDA2NkMwODI4Q0Y3N0VCM0EwN0Y4MzMwQTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpS2vS3H6+RqeMpnHObCv0dAB5 fOCcoawyfJtHEEfqE8ACpPGf5coeJn0kVP4N3hoecmvgbNpxqki0Pg/gjOXjchKs dipZGOvnxzL8LsDkYqpTFVBKbeKtv4b89JqI4zQT1lAlY3Tl7Xku4vQbME6I/FaY JbIi9sftyMdjNR97QbUuNjHJ0ADJpNpD/LxavpgyxrTW9XRjLuRQ9azSuhJYTMid bpaqF0Q/26/CogcpvXfCXiI+PW8GlM87oaBiHHtadONConmyziXOhmw16l50WjUO TK7VS6jmRzk/aByyPXorF1UezjtmdJEUNPrXP1IU7jiDXV9Br5+MkCrlt1CbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUSgmWHW1+MUBmwIKM936zoH+DMKgwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NjIyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXUwDQYJKoZIhvcNAQELBQADggEBAJ6Y IzkgAomunJMzfLqb/XnsWS8K3aYiJYdTkP93UXihcp2X+GPzIcdKZe4BxXRZslQl /3BZ1MSkV6swDbRJc7ogAG9z2iI0Ndrm9WEPsFEoOovG7mqQmfykAI4km60ST/uA eGgGvLO6nh0mjpuu2WhHii43R6cxUQWbWXeV7frh5QTFa8bmTO97jEHUzGssmfd9 i9U22kZ5nalKOqqF92xHtWLLDmzPJspazAKWAiSx03gYs8uDeWN9JYdCqV/9gUEX iLyZUIf2vO0RY5gJubAINWYYtvROabrSKW/FT2cOTgaARi+SwwfIBTaFfDNbfaUG 4qBjBZ7cISWGCa4jjzE= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:35 2025 by rpki-client