$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa File: AS197815.roa (raw, json) Hash identifier: 5sDs7BenvPuxqjnbxM10Hhglw5NZj4oFcEzOV+G0u/c= Subject key identifier: 57:0D:FC:62:6E:E4:80:80:86:3E:BE:26:BE:6D:11:67:F8:C4:AB:E3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 6959B746B921A356C973EC7C73437A955F1A856E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa Signing time: Tue 13 May 2025 15:46:20 +0000 ROA not before: Tue 13 May 2025 15:41:20 +0000 ROA not after: Tue 12 May 2026 15:46:20 +0000 asID: 197815 IP address blocks: 2a05:dfc1:6800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:59:b7:46:b9:21:a3:56:c9:73:ec:7c:73:43:7a:95:5f:1a:85:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 13 15:41:20 2025 GMT Not After : May 12 15:46:20 2026 GMT Subject: CN=570DFC626EE48080863EBE26BE6D1167F8C4ABE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:24:c3:9e:f0:9d:a5:84:20:18:8f:94:24:ac: f1:7a:c2:65:96:fc:7d:e2:8b:58:86:74:75:5f:47: b4:94:a8:bb:00:fb:2f:9b:79:44:f3:79:0d:cd:81: b5:4f:59:0e:38:91:e0:fa:b6:4c:65:a9:a1:48:40: d0:9d:3b:b6:81:d7:86:0b:7d:f4:7a:06:eb:66:f3: cf:75:ba:31:99:f8:52:a9:e5:9c:70:53:9b:db:26: 28:3a:b0:19:a6:be:94:81:dc:13:3a:cc:fe:a1:1a: 70:59:0b:56:7b:93:50:47:46:71:9f:78:43:e8:87: 8c:b9:df:e5:22:72:5a:d2:07:c4:ed:a2:73:b3:1c: b0:df:54:36:bf:36:ad:ce:5d:3b:7f:86:70:fd:63: 64:54:4c:f2:8f:a4:30:bb:d4:5d:87:0e:21:e9:56: e6:27:a7:5e:fa:eb:8e:1d:a6:56:8f:b4:43:ac:9a: fb:43:6b:38:50:95:35:74:9a:77:a2:ef:5f:f5:34: 22:d8:6d:97:c7:db:56:57:d8:3d:b1:61:0c:7a:a0: f0:6d:29:bc:c1:b9:26:a3:1c:13:92:53:d0:60:83: 44:af:99:95:9e:58:9a:eb:4f:1a:ac:a8:c1:d1:36: 01:55:7e:ed:df:2a:81:b2:1f:0b:57:93:0a:54:c6: 94:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:0D:FC:62:6E:E4:80:80:86:3E:BE:26:BE:6D:11:67:F8:C4:AB:E3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197815.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6800::/40 Signature Algorithm: sha256WithRSAEncryption 40:55:7e:e8:ef:62:54:86:37:fd:c4:16:31:bb:f3:51:71:92: 44:c0:05:7f:4c:51:b8:60:3a:da:ba:f6:c6:bb:76:94:14:eb: c4:c4:71:a2:d2:0b:17:1d:ce:65:bc:10:84:97:79:5d:1b:36: a9:6a:e5:3a:fe:1f:78:b6:9f:ce:f4:f9:04:83:1a:4d:8b:0c: fe:1d:cc:9c:f1:6d:83:a6:1d:e2:ea:9b:d9:be:60:b1:84:42: 96:a0:f5:29:4f:8a:ed:f7:2b:b4:ba:51:af:d0:63:4a:9a:87: 6b:6f:8b:91:64:61:5a:ac:a2:5a:9f:25:e5:a9:13:51:a9:d3: f1:e8:fe:8e:92:09:66:b8:10:3b:b8:7e:32:b8:d7:ac:4d:e4: 87:34:bd:85:d9:77:07:a0:ba:7b:93:7a:06:ea:f3:fb:18:61: 50:05:86:c4:bd:16:94:78:2b:9c:70:8d:84:a2:b0:23:91:fc: 43:a8:2e:74:d8:d0:8b:be:32:49:54:0c:f5:45:85:12:2a:ea: 10:c8:bb:40:fa:e0:50:37:00:40:92:f8:81:17:ca:cb:c6:98: ee:82:ab:73:cc:b1:00:2e:0f:1b:08:ad:ba:df:56:33:d7:29: e4:38:fd:af:70:b0:aa:12:c1:79:b8:a0:13:8a:0f:73:38:0f: 6e:44:40:a8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaVm3Rrkho1bJc+x8c0N6lV8ahW4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MTMxNTQxMjBaFw0yNjA1MTIxNTQ2MjBaMDMxMTAvBgNV BAMTKDU3MERGQzYyNkVFNDgwODA4NjNFQkUyNkJFNkQxMTY3RjhDNEFCRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHJMOe8J2lhCAYj5QkrPF6wmWW /H3ii1iGdHVfR7SUqLsA+y+beUTzeQ3NgbVPWQ44keD6tkxlqaFIQNCdO7aB14YL ffR6Butm8891ujGZ+FKp5ZxwU5vbJig6sBmmvpSB3BM6zP6hGnBZC1Z7k1BHRnGf eEPoh4y53+UiclrSB8TtonOzHLDfVDa/Nq3OXTt/hnD9Y2RUTPKPpDC71F2HDiHp VuYnp176644dplaPtEOsmvtDazhQlTV0mnei71/1NCLYbZfH21ZX2D2xYQx6oPBt KbzBuSajHBOSU9Bgg0SvmZWeWJrrTxqsqMHRNgFVfu3fKoGyHwtXkwpUxpSBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUVw38Ym7kgICGPr4mvm0RZ/jEq+MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODE1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWgwDQYJKoZIhvcNAQELBQADggEBAEBV fujvYlSGN/3EFjG781FxkkTABX9MUbhgOtq69sa7dpQU68TEcaLSCxcdzmW8EISX eV0bNqlq5Tr+H3i2n870+QSDGk2LDP4dzJzxbYOmHeLqm9m+YLGEQpag9SlPiu33 K7S6Ua/QY0qah2tvi5FkYVqsolqfJeWpE1Gp0/Ho/o6SCWa4EDu4fjK416xN5Ic0 vYXZdwegunuTegbq8/sYYVAFhsS9FpR4K5xwjYSisCOR/EOoLnTY0Iu+MklUDPVF hRIq6hDIu0D64FA3AECS+IEXysvGmO6Cq3PMsQAuDxsIrbrfVjPXKeQ4/a9wsKoS wXm4oBOKD3M4D25EQKg= -----END CERTIFICATE-----Generated at Sat Jun 7 23:36:56 2025 by rpki-client