$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197723.roa File: AS197723.roa (raw, json) Hash identifier: JBDpfFtkR5SCcPmqBAhLyFm7iJWPXOD70FpW0tw93Hc= Subject key identifier: E6:C1:D5:01:56:D5:C6:A6:A1:7C:D7:B1:F1:F4:85:1A:64:0A:2A:4D Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 02A1BB7123B5F9F75CAC2CA05DBD11288D882CE7 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197723.roa Signing time: Wed 21 May 2025 00:46:22 +0000 ROA not before: Wed 21 May 2025 00:41:22 +0000 ROA not after: Wed 20 May 2026 00:46:22 +0000 asID: 197723 IP address blocks: 2a05:dfc1:6a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:a1:bb:71:23:b5:f9:f7:5c:ac:2c:a0:5d:bd:11:28:8d:88:2c:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 21 00:41:22 2025 GMT Not After : May 20 00:46:22 2026 GMT Subject: CN=E6C1D50156D5C6A6A17CD7B1F1F4851A640A2A4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f1:1b:9e:cd:a8:21:22:10:1e:90:a9:a6:20: 50:19:6e:30:26:1c:2e:4d:ff:96:bb:e4:a0:77:46: eb:95:33:53:6e:80:6a:03:28:b7:4f:d7:45:27:fe: 50:35:09:62:45:f2:9c:a6:65:be:9d:76:7f:b9:52: e2:3f:b2:ce:b0:bc:e5:87:ec:b2:73:bd:74:c9:70: d0:26:52:b2:d8:65:95:4c:76:7c:24:d9:9f:e0:27: 3e:80:5c:66:4f:71:36:a1:85:9d:39:f4:28:fa:6b: 70:c4:bb:d1:c4:a8:2b:55:46:aa:1f:49:36:a3:4c: fd:89:f0:c2:74:85:78:7c:e4:99:de:bf:3a:55:7f: 05:82:2d:0c:77:2d:fd:02:81:b7:25:18:49:ef:cb: 65:1c:c6:0d:a4:ac:f1:58:fc:b3:df:b6:55:ee:a6: 8a:a5:89:a6:5d:b8:98:7c:7c:e9:6a:a6:dd:e0:b7: e3:f5:28:fa:be:33:76:c4:f7:0f:75:8b:e3:3d:f5: fa:fd:11:d4:60:53:2a:3b:7d:7e:0d:39:66:ce:23: f6:a4:37:ef:17:8d:05:00:d4:fd:dd:97:4e:43:0b: db:57:ec:79:bf:4c:b5:01:be:95:3f:30:9e:f9:32: 88:52:8f:6d:7a:9c:88:e4:41:33:42:bb:c2:0b:f7: 89:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:C1:D5:01:56:D5:C6:A6:A1:7C:D7:B1:F1:F4:85:1A:64:0A:2A:4D X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197723.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6a00::/40 Signature Algorithm: sha256WithRSAEncryption 22:fb:df:3c:1a:95:e5:45:d6:e6:07:81:00:4b:f4:b4:59:a6: 02:6b:16:16:22:c9:b6:10:6e:17:dd:6f:28:ad:35:18:82:d2: 2d:16:66:90:eb:9e:b2:a0:a8:b4:8e:0d:45:96:45:e7:29:83: 33:61:16:a1:66:e4:ab:46:af:28:3b:70:18:b5:00:8a:98:36: e9:f6:77:ff:6a:da:18:5c:04:8c:98:2f:5d:81:36:6f:4f:41: a4:8c:b7:53:d6:40:95:b2:ba:f4:5d:40:66:82:4b:f3:2a:0b: 10:63:eb:26:d0:d1:3e:b2:9f:f4:dd:a2:1e:96:a9:6d:91:49: 26:b3:94:d5:b9:40:6f:c4:3f:ce:ed:a9:b9:f0:e7:33:8a:92: 58:b4:7b:1f:b2:f0:c2:07:71:7b:ba:26:bb:4c:66:37:b8:99: 9a:a2:c9:d8:c2:4b:ad:08:31:b7:32:f0:ca:2a:f6:ec:ad:a6: eb:d9:77:d5:bc:8e:d8:2d:08:a2:92:4c:d9:24:b8:bc:0f:b0: 43:d6:a5:4c:e7:a3:1f:e9:b3:01:ba:b7:fa:f6:14:a9:b9:ed: 8c:a1:8a:c6:6b:66:48:6a:cb:33:f9:25:a9:64:b5:b3:a3:3c: ad:f4:2a:90:dc:e6:30:29:44:1d:76:10:e4:0e:ac:e9:08:3b: 89:69:0d:22 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAqG7cSO1+fdcrCygXb0RKI2ILOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjEwMDQxMjJaFw0yNjA1MjAwMDQ2MjJaMDMxMTAvBgNV BAMTKEU2QzFENTAxNTZENUM2QTZBMTdDRDdCMUYxRjQ4NTFBNjQwQTJBNEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD08RuezaghIhAekKmmIFAZbjAm HC5N/5a75KB3RuuVM1NugGoDKLdP10Un/lA1CWJF8pymZb6ddn+5UuI/ss6wvOWH 7LJzvXTJcNAmUrLYZZVMdnwk2Z/gJz6AXGZPcTahhZ059Cj6a3DEu9HEqCtVRqof STajTP2J8MJ0hXh85JnevzpVfwWCLQx3Lf0CgbclGEnvy2Ucxg2krPFY/LPftlXu poqliaZduJh8fOlqpt3gt+P1KPq+M3bE9w91i+M99fr9EdRgUyo7fX4NOWbOI/ak N+8XjQUA1P3dl05DC9tX7Hm/TLUBvpU/MJ75MohSj216nIjkQTNCu8IL94nvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5sHVAVbVxqahfNex8fSFGmQKKk0wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NzIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWowDQYJKoZIhvcNAQELBQADggEBACL7 3zwaleVF1uYHgQBL9LRZpgJrFhYiybYQbhfdbyitNRiC0i0WZpDrnrKgqLSODUWW RecpgzNhFqFm5KtGryg7cBi1AIqYNun2d/9q2hhcBIyYL12BNm9PQaSMt1PWQJWy uvRdQGaCS/MqCxBj6ybQ0T6yn/Tdoh6WqW2RSSazlNW5QG/EP87tqbnw5zOKkli0 ex+y8MIHcXu6JrtMZje4mZqiydjCS60IMbcy8Moq9uytpuvZd9W8jtgtCKKSTNkk uLwPsEPWpUznox/pswG6t/r2FKm57YyhisZrZkhqyzP5JalktbOjPK30KpDc5jAp RB12EOQOrOkIO4lpDSI= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:32 2025 by rpki-client