$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa File: AS197737.roa (raw, json) Hash identifier: KeMYGxGtJ7dkvoJEEjrDAaVKTp1ouUT/q2HJw/w5KWA= Subject key identifier: B9:87:2F:46:FE:CA:77:22:A5:0E:B0:28:E9:0A:26:EB:2A:24:16:E1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 0C474ED564B43F2025AD535405CF716042ABB9C3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa Signing time: Tue 20 May 2025 12:46:21 +0000 ROA not before: Tue 20 May 2025 12:41:21 +0000 ROA not after: Tue 19 May 2026 12:46:21 +0000 asID: 197737 IP address blocks: 2a05:dfc1:6e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:47:4e:d5:64:b4:3f:20:25:ad:53:54:05:cf:71:60:42:ab:b9:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 20 12:41:21 2025 GMT Not After : May 19 12:46:21 2026 GMT Subject: CN=B9872F46FECA7722A50EB028E90A26EB2A2416E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:ee:f0:81:5b:81:b4:66:31:a7:53:3e:53: 96:f1:9a:79:0e:33:2a:85:a6:69:48:37:df:c2:15: cc:d3:8a:fd:79:7c:db:ee:e8:2b:e2:a4:69:a9:6b: 1d:47:82:47:d5:74:b1:38:e3:52:10:2c:2c:ca:cd: 07:ff:3d:25:f0:d6:b7:47:3b:eb:53:98:7f:de:e5: be:fd:dc:fa:d2:57:bf:ad:7d:02:b7:aa:e8:ba:e5: d3:ee:84:33:42:83:7b:c3:43:43:dd:b6:12:91:ca: b4:1e:6c:f6:b8:ea:a8:33:60:07:b4:cf:6a:2f:63: 5f:d2:d8:06:14:49:b9:ec:e6:49:25:67:55:93:e5: fa:7a:12:97:2a:37:72:b2:45:d7:f2:20:bf:c1:b1: 96:6f:3c:54:2f:48:85:aa:72:b5:cd:6d:07:65:2a: fe:97:f1:b0:4e:8f:93:f0:6a:57:29:21:f4:e0:ff: 26:2d:b6:28:da:70:a1:96:74:ce:45:60:16:fc:82: 81:1a:e1:82:c5:1c:35:fc:7d:76:44:65:8b:24:14: 2a:2a:e0:a2:8a:ba:b0:0e:7f:66:ac:bf:39:c4:f4: 54:40:3f:97:77:a6:c3:08:79:f0:4b:e3:57:aa:5c: 7b:2b:af:58:78:9c:82:07:05:88:f9:a3:23:4f:1a: 8c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:87:2F:46:FE:CA:77:22:A5:0E:B0:28:E9:0A:26:EB:2A:24:16:E1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6e00::/40 Signature Algorithm: sha256WithRSAEncryption 11:0b:86:8f:d5:6f:c5:f7:db:f0:e3:8f:98:e3:84:28:94:75: bb:cf:33:24:0a:d0:02:d9:a7:3b:7a:c0:9a:9d:07:50:e1:52: 31:28:ec:ee:4c:39:a3:bb:a7:08:45:87:f5:2b:33:dc:c7:20: a5:1e:72:9f:d4:b3:17:19:7e:9a:0e:eb:4d:4c:3e:c9:fb:f2: d0:fe:9c:1b:07:98:08:f1:6b:7a:80:26:7a:bb:21:85:58:6a: 42:f4:03:6d:3d:96:18:fa:d5:67:62:9d:88:ef:5f:91:a3:0f: 22:3e:05:19:4b:d1:7e:fc:c5:40:05:7a:a0:1f:7e:26:2b:3e: ed:e0:ad:b6:c0:45:4c:b2:91:ad:7a:bf:42:91:19:8b:18:b9: 5a:21:ac:6b:71:33:62:74:18:3b:97:28:36:0c:c4:fa:9f:03: a6:f5:19:37:e3:18:65:c1:b3:58:e3:f7:59:2a:f4:e4:98:ad: 6f:1e:b9:3c:d5:80:d0:fa:6f:f2:c5:fc:d9:6f:1f:bb:94:dd: 40:40:72:b0:7f:3d:e5:8b:4e:0b:5e:12:9e:48:33:80:7c:66: fe:24:d3:b1:75:c2:42:32:54:e9:65:45:99:5c:d3:fb:8f:ef: 57:0f:0d:c7:99:77:d5:a0:17:67:6f:da:15:c0:e2:bd:e8:77: 86:61:00:9e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDEdO1WS0PyAlrVNUBc9xYEKrucMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjAxMjQxMjFaFw0yNjA1MTkxMjQ2MjFaMDMxMTAvBgNV BAMTKEI5ODcyRjQ2RkVDQTc3MjJBNTBFQjAyOEU5MEEyNkVCMkEyNDE2RTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsge7wgVuBtGYxp1M+U5bxmnkO MyqFpmlIN9/CFczTiv15fNvu6CvipGmpax1HgkfVdLE441IQLCzKzQf/PSXw1rdH O+tTmH/e5b793PrSV7+tfQK3qui65dPuhDNCg3vDQ0PdthKRyrQebPa46qgzYAe0 z2ovY1/S2AYUSbns5kklZ1WT5fp6EpcqN3KyRdfyIL/BsZZvPFQvSIWqcrXNbQdl Kv6X8bBOj5PwalcpIfTg/yYttijacKGWdM5FYBb8goEa4YLFHDX8fXZEZYskFCoq 4KKKurAOf2asvznE9FRAP5d3psMIefBL41eqXHsrr1h4nIIHBYj5oyNPGoyLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUuYcvRv7KdyKlDrAo6Qom6yokFuEwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwW4wDQYJKoZIhvcNAQELBQADggEBABEL ho/Vb8X32/Djj5jjhCiUdbvPMyQK0ALZpzt6wJqdB1DhUjEo7O5MOaO7pwhFh/Ur M9zHIKUecp/UsxcZfpoO601MPsn78tD+nBsHmAjxa3qAJnq7IYVYakL0A209lhj6 1WdinYjvX5GjDyI+BRlL0X78xUAFeqAffiYrPu3grbbARUyyka16v0KRGYsYuVoh rGtxM2J0GDuXKDYMxPqfA6b1GTfjGGXBs1jj91kq9OSYrW8euTzVgND6b/LF/Nlv H7uU3UBAcrB/PeWLTgteEp5IM4B8Zv4k07F1wkIyVOllRZlc0/uP71cPDceZd9Wg F2dv2hXA4r3od4ZhAJ4= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:37 2025 by rpki-client