$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa File: AS197817.roa (raw, json) Hash identifier: X7UwrG1Dw4VzpwxEWkTopnjewxiWHdZrZxFWOR4KpDs= Subject key identifier: 89:6B:7E:2A:77:07:C2:06:3B:9A:00:FC:B3:8B:CE:63:7A:2D:13:C1 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 09D0C3A434DEA033A5065C6D8DFF2C465A1AFEB3 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa Signing time: Tue 13 May 2025 15:46:20 +0000 ROA not before: Tue 13 May 2025 15:41:20 +0000 ROA not after: Tue 12 May 2026 15:46:20 +0000 asID: 197817 IP address blocks: 2a05:dfc1:6900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d0:c3:a4:34:de:a0:33:a5:06:5c:6d:8d:ff:2c:46:5a:1a:fe:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 13 15:41:20 2025 GMT Not After : May 12 15:46:20 2026 GMT Subject: CN=896B7E2A7707C2063B9A00FCB38BCE637A2D13C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b3:7f:1d:ff:92:72:9a:a3:22:ab:01:2c:ac: 70:0b:d0:94:1d:96:da:10:01:1a:f2:09:92:5a:69: 5c:9f:e2:65:64:fc:c5:94:1b:4d:90:86:6e:7c:9b: 1b:68:5c:c9:95:30:72:35:20:f5:3f:63:d4:b5:18: 7c:da:26:54:08:71:16:1e:27:65:b4:94:82:2e:49: 7c:7d:f3:89:3b:63:d5:17:59:be:6b:d6:73:a7:59: 8c:2c:84:9c:52:bf:05:56:8e:94:d6:db:38:ac:9a: e5:4b:bd:38:2f:59:37:fe:a9:6d:8d:65:72:ed:aa: e5:da:9b:9f:ed:d1:c6:e7:3f:0b:8f:a2:4d:3c:2c: 95:0a:b8:ad:22:c6:50:ae:fd:dc:9d:bf:2a:59:ee: 01:dd:b2:68:8f:96:28:fe:3b:72:fc:d9:90:71:34: 11:46:5d:87:60:d5:ed:5b:fa:25:b9:e3:e4:65:9b: a4:e1:c5:b3:01:57:56:7e:61:8f:ba:5b:06:2a:bf: ab:78:42:c2:0b:a3:58:ff:c1:ea:81:09:d4:9c:62: 0b:48:ff:8a:e2:a7:2e:49:75:ee:bd:38:87:29:8b: 23:19:fc:71:cc:65:4e:d2:dd:61:b4:8a:3f:7f:f0: 15:28:de:99:e1:2e:12:70:ca:0a:fb:47:c4:ed:3b: 19:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:6B:7E:2A:77:07:C2:06:3B:9A:00:FC:B3:8B:CE:63:7A:2D:13:C1 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197817.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6900::/40 Signature Algorithm: sha256WithRSAEncryption a8:99:d5:23:4c:99:36:1b:b7:45:f0:fe:7d:83:17:a6:f2:8f: 8d:0c:3d:0c:f8:3c:72:d2:04:56:01:9a:21:fd:38:9d:47:a1: d9:55:5b:70:a1:c5:fb:6a:96:3d:e2:46:a7:5d:ab:0c:37:6b: 68:ef:ba:73:ef:95:5d:da:e3:92:cc:c5:05:39:5a:ca:20:78: 93:75:2a:6f:ef:5e:4b:7b:bb:98:83:75:d0:ce:c3:15:ee:a0: 03:2d:7f:5e:4a:78:96:03:1b:0a:e6:87:00:a3:f7:37:86:6f: 68:a7:f7:99:9b:7e:25:bd:82:c8:49:68:30:8d:46:2c:44:cb: 57:9e:b6:0f:bc:4e:72:95:40:b2:6b:ac:c1:22:19:9b:29:27: 95:4a:fd:cc:80:b6:1d:b9:0e:20:ef:4b:f3:9e:ad:01:f2:1e: 7c:ea:83:dd:50:e3:f1:86:3a:24:37:ff:4f:5d:7c:62:38:c8: 26:c9:71:d0:12:fa:29:ea:f2:d4:be:63:f9:da:67:06:dd:e8: 91:a5:47:03:46:70:19:78:76:19:8b:ab:2b:d7:de:18:90:86: c2:04:8d:cc:f0:79:f8:8a:6c:05:37:0a:ce:e3:5e:7b:9e:ac: 79:a1:6e:ba:dc:12:1b:41:af:57:08:9b:4d:cc:74:a8:20:57: b1:54:4c:14 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCdDDpDTeoDOlBlxtjf8sRloa/rMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MTMxNTQxMjBaFw0yNjA1MTIxNTQ2MjBaMDMxMTAvBgNV BAMTKDg5NkI3RTJBNzcwN0MyMDYzQjlBMDBGQ0IzOEJDRTYzN0EyRDEzQzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCs38d/5JymqMiqwEsrHAL0JQd ltoQARryCZJaaVyf4mVk/MWUG02Qhm58mxtoXMmVMHI1IPU/Y9S1GHzaJlQIcRYe J2W0lIIuSXx984k7Y9UXWb5r1nOnWYwshJxSvwVWjpTW2zismuVLvTgvWTf+qW2N ZXLtquXam5/t0cbnPwuPok08LJUKuK0ixlCu/dydvypZ7gHdsmiPlij+O3L82ZBx NBFGXYdg1e1b+iW54+Rlm6ThxbMBV1Z+YY+6WwYqv6t4QsILo1j/weqBCdScYgtI /4ripy5Jde69OIcpiyMZ/HHMZU7S3WG0ij9/8BUo3pnhLhJwygr7R8TtOxknAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUiWt+KncHwgY7mgD8s4vOY3otE8EwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODE3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWkwDQYJKoZIhvcNAQELBQADggEBAKiZ 1SNMmTYbt0Xw/n2DF6byj40MPQz4PHLSBFYBmiH9OJ1HodlVW3Chxftqlj3iRqdd qww3a2jvunPvlV3a45LMxQU5WsogeJN1Km/vXkt7u5iDddDOwxXuoAMtf15KeJYD GwrmhwCj9zeGb2in95mbfiW9gshJaDCNRixEy1eetg+8TnKVQLJrrMEiGZspJ5VK /cyAth25DiDvS/OerQHyHnzqg91Q4/GGOiQ3/09dfGI4yCbJcdAS+inq8tS+Y/na Zwbd6JGlRwNGcBl4dhmLqyvX3hiQhsIEjczwefiKbAU3Cs7jXnuerHmhbrrcEhtB r1cIm03MdKggV7FUTBQ= -----END CERTIFICATE-----Generated at Sat Jun 7 23:36:49 2025 by rpki-client