$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa File: AS197867.roa (raw, json) Hash identifier: DOnHYNiUVbYJkl/kuDw6fJO+8N8nj8axqErzQujNLGM= Subject key identifier: 44:57:B6:A1:B4:E8:DF:C0:41:29:31:26:61:8A:30:AF:36:F9:07:E3 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 2B14FDECBC443BABAA414EA7D2889A569E6BEC97 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa Signing time: Fri 09 May 2025 10:46:20 +0000 ROA not before: Fri 09 May 2025 10:41:20 +0000 ROA not after: Fri 08 May 2026 10:46:20 +0000 asID: 197867 IP address blocks: 2a05:dfc1:5d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:14:fd:ec:bc:44:3b:ab:aa:41:4e:a7:d2:88:9a:56:9e:6b:ec:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 9 10:41:20 2025 GMT Not After : May 8 10:46:20 2026 GMT Subject: CN=4457B6A1B4E8DFC041293126618A30AF36F907E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:07:40:a9:85:d3:17:98:b6:fa:2f:cf:09:d8: 47:92:48:cf:80:83:6a:ab:e9:dc:ca:4d:d0:9a:b3: 54:9a:0d:b2:66:01:27:c7:b7:8f:e6:aa:c7:42:f4: 84:e6:47:c7:39:56:da:14:a0:34:fb:cc:d1:cc:09: cf:20:dd:94:8f:bd:33:c5:b0:d3:40:64:57:05:96: b5:50:9c:47:b1:6d:0e:c9:99:9b:8d:7d:9a:b1:f2: 60:5c:bd:70:8f:73:58:24:c4:10:be:78:1c:b2:89: 2a:da:d9:06:36:a1:e0:07:a1:df:11:71:34:5e:6b: 19:fa:1c:d4:30:c5:2c:5b:5d:9d:1d:5f:da:f1:12: 1b:13:7d:fd:5a:fb:56:19:ef:3e:ce:c3:e8:5f:63: 7d:ef:75:76:18:28:2d:0d:24:42:a6:aa:08:20:6b: d4:c3:96:77:7c:22:aa:c9:09:cb:5a:cb:5e:76:10: fa:8b:90:80:e4:8b:3d:80:1b:a3:1c:c8:62:3f:f4: db:9b:fa:db:63:cf:ae:f4:a8:89:8b:f6:b9:8e:9e: 91:f2:da:96:08:69:91:05:d1:76:2a:fa:03:13:70: d2:70:26:7b:46:3d:c4:95:0c:e9:61:a8:54:f7:b4: 6b:f1:f8:9c:db:36:d7:81:78:03:c5:72:48:41:2d: a9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:57:B6:A1:B4:E8:DF:C0:41:29:31:26:61:8A:30:AF:36:F9:07:E3 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5d00::/40 Signature Algorithm: sha256WithRSAEncryption 80:88:61:0c:86:1e:28:50:4f:23:86:88:28:d8:8f:fb:70:f2: ea:9e:19:1b:9c:64:7f:71:76:e5:ea:87:f4:29:9f:53:2c:79: 31:1d:f8:4c:2d:5a:0c:cc:8c:37:b8:49:ca:4b:9f:17:dc:e0: 9a:72:3b:2f:ea:5f:4f:23:8b:aa:52:9b:52:8b:14:de:21:54: f5:b3:bb:59:ed:e3:07:2c:8c:ce:83:31:e9:90:43:8c:47:f6: aa:0e:5f:c7:12:64:24:eb:ea:1b:66:92:7b:3d:53:8f:6b:8d: 44:53:44:87:29:fb:41:ac:0e:7a:05:fb:86:e0:95:e5:81:57: 87:09:24:51:80:76:fe:9e:81:22:c1:22:3b:15:c6:b7:af:17: cd:fd:23:e8:6c:5c:67:0d:ee:20:fd:cd:3f:35:06:7a:7a:3c: 4f:90:3a:10:7d:1e:68:1a:d8:99:83:cc:d4:06:ed:11:61:9b: 94:99:f1:35:4f:14:9f:63:b9:fb:ba:c3:d6:93:70:af:67:76: f4:b3:0e:ad:de:7b:4f:d1:ac:3b:d8:98:27:99:aa:d3:6d:8d: 13:ae:ff:5d:b9:0f:3b:02:69:ef:31:f3:74:d6:ef:5d:ac:5b: 9b:3f:6a:dd:b7:31:98:91:1d:53:e7:a5:48:b8:69:cb:e6:2b: f7:11:db:e9 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKxT97LxEO6uqQU6n0oiaVp5r7JcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MDkxMDQxMjBaFw0yNjA1MDgxMDQ2MjBaMDMxMTAvBgNV BAMTKDQ0NTdCNkExQjRFOERGQzA0MTI5MzEyNjYxOEEzMEFGMzZGOTA3RTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuB0CphdMXmLb6L88J2EeSSM+A g2qr6dzKTdCas1SaDbJmASfHt4/mqsdC9ITmR8c5VtoUoDT7zNHMCc8g3ZSPvTPF sNNAZFcFlrVQnEexbQ7JmZuNfZqx8mBcvXCPc1gkxBC+eByyiSra2QY2oeAHod8R cTReaxn6HNQwxSxbXZ0dX9rxEhsTff1a+1YZ7z7Ow+hfY33vdXYYKC0NJEKmqggg a9TDlnd8IqrJCctay152EPqLkIDkiz2AG6McyGI/9Nub+ttjz670qImL9rmOnpHy 2pYIaZEF0XYq+gMTcNJwJntGPcSVDOlhqFT3tGvx+JzbNteBeAPFckhBLamhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURFe2obTo38BBKTEmYYowrzb5B+MwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3ODY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwV0wDQYJKoZIhvcNAQELBQADggEBAICI YQyGHihQTyOGiCjYj/tw8uqeGRucZH9xduXqh/Qpn1MseTEd+EwtWgzMjDe4ScpL nxfc4JpyOy/qX08ji6pSm1KLFN4hVPWzu1nt4wcsjM6DMemQQ4xH9qoOX8cSZCTr 6htmkns9U49rjURTRIcp+0GsDnoF+4bgleWBV4cJJFGAdv6egSLBIjsVxrevF839 I+hsXGcN7iD9zT81Bnp6PE+QOhB9Hmga2JmDzNQG7RFhm5SZ8TVPFJ9jufu6w9aT cK9ndvSzDq3ee0/RrDvYmCeZqtNtjROu/125DzsCae8x83TW712sW5s/at23MZiR HVPnpUi4acvmK/cR2+k= -----END CERTIFICATE-----Generated at Sat Jun 7 23:37:45 2025 by rpki-client