$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa File: AS197866.roa (raw, json) Hash identifier: 2MT+++KpBKINTNSyCBhvIAOEywNRS9BYQc0idOarwi4= Subject key identifier: D9:F1:82:91:50:1D:2E:7D:35:BD:67:87:5E:09:A6:9B:DE:36:83:CB Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 518E25C5A7388092587BF22159A8F0D43056F6B9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa Signing time: Fri 09 May 2025 12:46:20 +0000 ROA not before: Fri 09 May 2025 12:41:20 +0000 ROA not after: Fri 08 May 2026 12:46:20 +0000 asID: 197866 IP address blocks: 2a05:dfc1:6600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:8e:25:c5:a7:38:80:92:58:7b:f2:21:59:a8:f0:d4:30:56:f6:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 9 12:41:20 2025 GMT Not After : May 8 12:46:20 2026 GMT Subject: CN=D9F18291501D2E7D35BD67875E09A69BDE3683CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6d:5c:eb:6c:ae:20:8d:77:95:6e:ab:8d:55: 89:a7:f8:27:3e:78:26:6d:dc:fa:fa:e0:fa:d6:0f: ac:b1:12:f7:95:4c:47:50:22:d3:b2:bb:9f:a9:e2: eb:eb:34:01:27:75:a2:de:7e:57:15:ee:1c:86:e4: df:e9:da:fe:5b:2c:6c:f6:56:1c:12:6c:8f:b9:23: 99:9e:7d:e1:01:20:08:c6:d8:b3:03:74:a0:90:87: c7:9d:30:6e:14:4f:73:5f:ae:24:4a:31:5f:ca:61: c0:cd:de:bb:46:09:77:7d:e4:00:ef:79:d2:37:cb: 8f:17:01:71:b2:76:f5:7a:e8:ea:8b:de:16:3c:9d: db:d6:c0:3f:e9:47:00:ea:79:f3:78:c5:24:61:b6: 9b:83:77:d7:ca:13:2a:39:f1:d6:03:21:3d:ee:56: 77:6e:5c:d6:1d:d0:9d:ea:d1:0f:b2:8a:a7:4e:46: 86:82:c2:2e:2a:7e:74:81:e4:f2:fe:1f:59:b7:06: 62:3a:78:ff:18:68:2f:13:8b:c5:57:db:2e:6a:5f: 31:4a:cc:7d:dd:1c:39:a1:68:07:9c:2f:2c:99:f1: 8a:a0:c6:b9:46:e0:d8:9f:a0:bd:90:f2:93:95:f4: eb:37:2f:c7:e6:a5:f8:88:ec:22:4f:26:4c:ac:d4: 97:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F1:82:91:50:1D:2E:7D:35:BD:67:87:5E:09:A6:9B:DE:36:83:CB X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6600::/40 Signature Algorithm: sha256WithRSAEncryption 6e:d7:36:0c:e5:d2:04:64:4c:4d:d1:35:2e:ba:da:89:58:cd: aa:0b:42:e1:b4:7d:2b:97:65:e0:60:14:a8:0d:33:63:52:72: 08:e6:c8:06:b0:a2:5e:36:79:85:09:19:72:75:64:c2:88:3c: a7:94:2e:18:7d:0f:f1:0a:a5:2e:3f:0e:37:5e:a8:33:be:7a: 18:a1:bc:89:26:a8:ef:bf:6e:55:9e:81:ec:bc:f6:c9:bd:f4: ec:b3:68:5f:09:24:6e:91:fa:66:0a:5e:6e:52:e6:69:94:3e: 95:fd:a5:cd:5f:b9:9a:78:4c:b2:c1:45:d7:b9:ee:0f:7c:37: c7:d1:34:96:15:15:e7:8e:4d:e2:00:d3:41:bd:3b:81:40:f6: cc:17:13:ae:11:a4:b2:38:50:67:d4:76:ff:99:da:df:e9:c8: c8:aa:85:27:58:a4:ea:a1:98:74:21:7b:9a:dc:bb:96:c7:0c: 7b:27:a9:a8:78:32:b3:26:d4:50:0e:9b:19:13:06:07:58:3b: 8f:e8:7b:61:2d:ca:04:d4:67:f6:10:4b:61:ea:d7:05:3c:f4: da:ad:dd:41:fc:77:53:ba:44:c5:b2:da:31:92:02:5e:13:bf: 51:3f:ba:1e:cb:50:fc:1f:fd:a4:62:26:45:59:ff:85:23:b6: 85:a4:da:3d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUY4lxac4gJJYe/IhWajw1DBW9rkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDkxMjQxMjBaFw0yNjA1MDgxMjQ2MjBaMDMxMTAvBgNV BAMTKEQ5RjE4MjkxNTAxRDJFN0QzNUJENjc4NzVFMDlBNjlCREUzNjgzQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCabVzrbK4gjXeVbquNVYmn+Cc+ eCZt3Pr64PrWD6yxEveVTEdQItOyu5+p4uvrNAEndaLeflcV7hyG5N/p2v5bLGz2 VhwSbI+5I5mefeEBIAjG2LMDdKCQh8edMG4UT3NfriRKMV/KYcDN3rtGCXd95ADv edI3y48XAXGydvV66OqL3hY8ndvWwD/pRwDqefN4xSRhtpuDd9fKEyo58dYDIT3u VnduXNYd0J3q0Q+yiqdORoaCwi4qfnSB5PL+H1m3BmI6eP8YaC8Ti8VX2y5qXzFK zH3dHDmhaAecLyyZ8YqgxrlG4NifoL2Q8pOV9Os3L8fmpfiI7CJPJkys1Jc7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU2fGCkVAdLn01vWeHXgmmm942g8swHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWYwDQYJKoZIhvcNAQELBQADggEBAG7X Ngzl0gRkTE3RNS662olYzaoLQuG0fSuXZeBgFKgNM2NScgjmyAawol42eYUJGXJ1 ZMKIPKeULhh9D/EKpS4/DjdeqDO+ehihvIkmqO+/blWegey89sm99OyzaF8JJG6R +mYKXm5S5mmUPpX9pc1fuZp4TLLBRde57g98N8fRNJYVFeeOTeIA00G9O4FA9swX E64RpLI4UGfUdv+Z2t/pyMiqhSdYpOqhmHQhe5rcu5bHDHsnqah4MrMm1FAOmxkT BgdYO4/oe2EtygTUZ/YQS2Hq1wU89Nqt3UH8d1O6RMWy2jGSAl4Tv1E/uh7LUPwf /aRiJkVZ/4UjtoWk2j0= -----END CERTIFICATE-----Generated at Sat Jun 7 23:36:53 2025 by rpki-client