$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa File: AS198057.roa (raw, json) Hash identifier: jhGTGds2pppFmnoaKXR7pVja/Ga/z7MqV5HeXyRswbA= Subject key identifier: 84:8B:5B:BE:6A:E8:6D:B7:B4:EB:AF:40:84:BF:9A:EE:27:EF:52:8C Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 3EB3958A3975B1F479A7722EEE362093BF6011B4 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa Signing time: Mon 26 May 2025 23:46:24 +0000 ROA not before: Mon 26 May 2025 23:41:24 +0000 ROA not after: Mon 25 May 2026 23:46:24 +0000 asID: 198057 IP address blocks: 2a05:dfc1:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 05 Jun 2025 06:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b3:95:8a:39:75:b1:f4:79:a7:72:2e:ee:36:20:93:bf:60:11:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: May 26 23:41:24 2025 GMT Not After : May 25 23:46:24 2026 GMT Subject: CN=848B5BBE6AE86DB7B4EBAF4084BF9AEE27EF528C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:02:ed:1e:1e:07:04:01:59:9f:19:f7:fa:6b: 05:8a:4c:fa:d7:fc:83:16:f6:b4:fa:80:7b:0a:82: 0c:be:6b:b5:e4:67:54:fb:f8:c9:d4:8a:4c:65:a8: 3c:3b:d0:9d:8e:c8:59:bc:81:ed:db:bc:10:47:69: 0d:bb:59:14:b3:99:9a:a8:dd:55:92:db:cb:ca:4a: bc:1b:75:7b:c1:4d:38:6c:27:42:f5:37:84:91:86: 10:3b:42:5a:e7:71:a0:17:39:5c:33:42:6e:38:e5: 5b:08:85:4e:b9:0e:e5:3e:db:72:0b:3f:ac:c5:6c: fb:1e:8d:e6:22:e4:bf:4d:8e:36:b6:07:f9:0a:90: be:21:cf:2d:18:fc:df:3c:a4:d8:00:8b:f5:ae:34: 8b:15:55:b4:23:4a:38:df:5b:2f:f5:58:70:b6:0a: 4c:ae:c2:48:4a:d3:d0:18:a7:17:54:ab:ff:54:0a: 4d:9c:e8:2b:87:10:65:51:4a:0f:8f:f6:ee:38:1d: 2c:47:43:25:81:d6:03:9a:bf:17:37:b0:0e:d5:c6: c8:1f:ac:de:6a:77:53:ac:4f:7d:ed:b0:7b:6d:03: 8e:35:f5:76:70:8f:11:fe:48:21:12:92:ff:2e:ab: 4e:7c:7e:b6:f3:0b:8d:c0:9c:c2:c5:e9:13:3f:b0: 67:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:8B:5B:BE:6A:E8:6D:B7:B4:EB:AF:40:84:BF:9A:EE:27:EF:52:8C X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7800::/40 Signature Algorithm: sha256WithRSAEncryption c1:2b:94:3c:64:17:3d:12:39:0f:ec:34:db:74:24:ed:e2:c5: 69:b8:12:e3:de:fa:82:ea:5d:dd:7f:ca:38:0b:f6:cf:2e:65: 39:23:b1:a6:ea:48:d0:be:56:32:70:1c:c5:63:5d:ac:5d:bf: 84:16:7a:63:65:52:e8:9e:51:c7:ed:f7:83:5c:a5:77:58:a9: 2d:99:65:70:4f:b8:a2:e7:55:6f:e1:17:ed:56:8e:75:2e:73: fc:a0:30:ee:31:81:51:61:96:e8:38:61:2a:af:85:df:24:81: 9b:86:0c:03:58:25:21:22:19:c0:57:52:1e:55:d1:58:56:c2: 1d:23:15:37:95:e1:86:8e:b5:e7:57:5c:d4:f6:82:49:c0:60: 2a:3c:5e:da:63:82:74:69:e8:80:d5:62:65:69:27:49:9d:47: ad:c3:3c:78:0f:ae:45:e5:af:f3:59:54:ea:2f:67:e3:a1:c6: eb:cb:1c:59:36:42:19:7f:89:e7:ee:ed:b6:91:1d:cf:09:97: 4c:a7:28:ba:f6:90:b5:34:81:73:f8:1c:ed:b2:17:60:01:70: 94:ce:7c:37:17:bd:01:2b:d4:8a:cb:35:f9:a9:a4:bc:ab:5f: b8:8e:81:b2:2d:c7:9a:ca:32:0b:90:5a:f4:6a:1d:c6:b5:06: 49:e5:74:f6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPrOVijl1sfR5p3Iu7jYgk79gEbQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA1MjYyMzQxMjRaFw0yNjA1MjUyMzQ2MjRaMDMxMTAvBgNV BAMTKDg0OEI1QkJFNkFFODZEQjdCNEVCQUY0MDg0QkY5QUVFMjdFRjUyOEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgAu0eHgcEAVmfGff6awWKTPrX /IMW9rT6gHsKggy+a7XkZ1T7+MnUikxlqDw70J2OyFm8ge3bvBBHaQ27WRSzmZqo 3VWS28vKSrwbdXvBTThsJ0L1N4SRhhA7QlrncaAXOVwzQm445VsIhU65DuU+23IL P6zFbPsejeYi5L9Njja2B/kKkL4hzy0Y/N88pNgAi/WuNIsVVbQjSjjfWy/1WHC2 CkyuwkhK09AYpxdUq/9UCk2c6CuHEGVRSg+P9u44HSxHQyWB1gOavxc3sA7Vxsgf rN5qd1OsT33tsHttA4419XZwjxH+SCESkv8uq058frbzC43AnMLF6RM/sGeRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhItbvmrobbe0669AhL+a7ifvUowwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MDU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXgwDQYJKoZIhvcNAQELBQADggEBAMEr lDxkFz0SOQ/sNNt0JO3ixWm4EuPe+oLqXd1/yjgL9s8uZTkjsabqSNC+VjJwHMVj Xaxdv4QWemNlUuieUcft94NcpXdYqS2ZZXBPuKLnVW/hF+1WjnUuc/ygMO4xgVFh lug4YSqvhd8kgZuGDANYJSEiGcBXUh5V0VhWwh0jFTeV4YaOtedXXNT2gknAYCo8 XtpjgnRp6IDVYmVpJ0mdR63DPHgPrkXlr/NZVOovZ+OhxuvLHFk2Qhl/iefu7baR Hc8Jl0ynKLr2kLU0gXP4HO2yF2ABcJTOfDcXvQEr1IrLNfmppLyrX7iOgbItx5rK MguQWvRqHca1BknldPY= -----END CERTIFICATE-----Generated at Wed Jun 4 22:48:30 2025 by rpki-client