$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa File: AS197624.roa (raw, json) Hash identifier: dBM1pU3bpTJeo2IblhLF7xwOWapC9NJnyMf/lCQtKsY= Subject key identifier: 6B:8B:92:9E:D2:03:BC:7D:7A:BB:5A:E4:05:97:48:B9:E1:88:84:B0 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3EC290B763F3803CB30BC264A55FBB9256AAB70D Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa Signing time: Mon 26 May 2025 23:46:24 +0000 ROA not before: Mon 26 May 2025 23:41:24 +0000 ROA not after: Mon 25 May 2026 23:46:24 +0000 asID: 197624 IP address blocks: 2a05:dfc1:7300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c2:90:b7:63:f3:80:3c:b3:0b:c2:64:a5:5f:bb:92:56:aa:b7:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 26 23:41:24 2025 GMT Not After : May 25 23:46:24 2026 GMT Subject: CN=6B8B929ED203BC7D7ABB5AE4059748B9E18884B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:23:ab:4a:f2:0b:2f:49:61:b9:6b:33:fe:3a: 9b:59:e3:49:47:55:3f:04:08:65:df:7d:be:d7:51: a1:ce:15:25:ff:79:dc:d6:7a:f4:64:43:57:44:5f: 8f:30:55:7f:d7:96:33:dd:e7:14:f4:f4:8b:ea:8a: e9:7e:20:78:76:01:38:d5:6e:70:c9:d0:7c:63:dd: a4:8a:a9:4a:41:5f:6d:ed:8e:bc:d7:1d:03:f7:6d: 3f:d7:40:20:77:0d:12:76:3a:b2:6f:7a:11:fd:e0: 1b:83:e5:76:f5:a3:54:6b:3a:fd:a1:96:ad:b6:3a: 6b:70:a5:ea:24:6e:34:35:eb:dc:b7:dd:5d:36:8a: 5d:62:60:7c:ff:b7:d8:87:21:95:ec:3e:d6:12:8f: 4b:bc:ca:19:38:dd:9b:f1:92:85:0b:53:d3:46:ae: b3:85:aa:5e:8d:1a:4e:60:3c:9b:7a:bb:a9:b1:af: ba:c8:c1:9b:f3:17:79:6a:4d:5b:ce:f4:34:64:93: 37:31:f3:98:da:82:97:2f:2b:44:db:a5:37:da:42: 89:e5:49:24:d2:3d:84:13:eb:14:51:ce:25:ba:5a: b5:71:f6:10:9a:7e:20:8a:39:f8:d2:ad:8f:bc:44: 96:5b:73:65:a4:2a:01:f9:bf:7e:4d:1c:73:35:f8: 0f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:8B:92:9E:D2:03:BC:7D:7A:BB:5A:E4:05:97:48:B9:E1:88:84:B0 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197624.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7300::/40 Signature Algorithm: sha256WithRSAEncryption 4a:b3:26:7f:a0:c7:33:61:c3:96:8e:d7:6f:99:e3:42:19:d7: 14:0a:4e:f9:d4:5a:66:c8:d7:3c:82:4f:4e:60:d4:43:1e:9a: d3:9b:2d:f6:64:73:44:25:79:1f:2e:b2:5b:bb:6d:e5:3c:c4: 4f:7c:c0:e1:11:cc:b9:cb:2e:54:cf:9a:4c:e2:c5:78:6b:e9: d6:cb:12:8f:37:16:3a:48:91:7b:d6:76:f1:97:d2:66:d6:22: b0:17:b7:d6:dc:e9:af:07:7f:74:61:cd:84:cc:46:ec:ed:a6: 6a:cc:2e:f2:e4:12:23:5b:ad:e7:09:50:50:73:b9:b3:f4:e3: 5b:ea:60:01:75:23:28:be:aa:18:a3:33:4e:2c:a2:f8:38:35: f5:1e:65:ec:bb:d0:9a:70:61:3c:0e:b1:aa:1b:c8:80:50:e0: 13:ab:b6:d1:bf:7e:42:12:58:60:2f:28:1b:50:9f:2f:24:4e: 6d:0a:7e:8e:fe:ac:26:62:88:0b:6f:4d:34:a3:fa:9e:67:83: f2:95:e9:30:5c:76:27:a1:62:df:48:60:28:e5:6e:f3:53:e8: e0:00:42:31:81:69:c0:24:1a:b1:dd:cf:24:90:65:ba:39:f6: bf:aa:b9:71:b4:76:09:11:a8:18:50:97:fd:a6:9a:ec:7f:35: 28:97:2d:f2 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPsKQt2PzgDyzC8JkpV+7klaqtw0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjYyMzQxMjRaFw0yNjA1MjUyMzQ2MjRaMDMxMTAvBgNV BAMTKDZCOEI5MjlFRDIwM0JDN0Q3QUJCNUFFNDA1OTc0OEI5RTE4ODg0QjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4I6tK8gsvSWG5azP+OptZ40lH VT8ECGXffb7XUaHOFSX/edzWevRkQ1dEX48wVX/XljPd5xT09Ivqiul+IHh2ATjV bnDJ0Hxj3aSKqUpBX23tjrzXHQP3bT/XQCB3DRJ2OrJvehH94BuD5Xb1o1RrOv2h lq22OmtwpeokbjQ169y33V02il1iYHz/t9iHIZXsPtYSj0u8yhk43ZvxkoULU9NG rrOFql6NGk5gPJt6u6mxr7rIwZvzF3lqTVvO9DRkkzcx85jagpcvK0TbpTfaQonl SSTSPYQT6xRRziW6WrVx9hCafiCKOfjSrY+8RJZbc2WkKgH5v35NHHM1+A+vAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUa4uSntIDvH16u1rkBZdIueGIhLAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NjI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXMwDQYJKoZIhvcNAQELBQADggEBAEqz Jn+gxzNhw5aO12+Z40IZ1xQKTvnUWmbI1zyCT05g1EMemtObLfZkc0QleR8uslu7 beU8xE98wOERzLnLLlTPmkzixXhr6dbLEo83FjpIkXvWdvGX0mbWIrAXt9bc6a8H f3RhzYTMRuztpmrMLvLkEiNbrecJUFBzubP041vqYAF1Iyi+qhijM04sovg4NfUe Zey70JpwYTwOsaobyIBQ4BOrttG/fkISWGAvKBtQny8kTm0Kfo7+rCZiiAtvTTSj +p5ng/KV6TBcdiehYt9IYCjlbvNT6OAAQjGBacAkGrHdzySQZbo59r+quXG0dgkR qBhQl/2mmux/NSiXLfI= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:25 2025 by rpki-client