$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198383.roa File: AS198383.roa (raw, json) Hash identifier: V786gKgvtzdobPvtII4UjUvzSVQjlhvojuvmjnSlZ6I= Subject key identifier: 12:D0:6A:96:FB:0C:97:4D:98:B5:60:C8:28:1F:41:9C:5D:1B:29:E2 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 686840CA4D1544D055CB08BFC46A3450A21C008E Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198383.roa Signing time: Tue 01 Apr 2025 23:45:56 +0000 ROA not before: Tue 01 Apr 2025 23:40:56 +0000 ROA not after: Tue 31 Mar 2026 23:45:56 +0000 asID: 198383 IP address blocks: 2a05:dfc1:4b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:68:40:ca:4d:15:44:d0:55:cb:08:bf:c4:6a:34:50:a2:1c:00:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 1 23:40:56 2025 GMT Not After : Mar 31 23:45:56 2026 GMT Subject: CN=12D06A96FB0C974D98B560C8281F419C5D1B29E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3a:05:6d:fb:2f:81:08:b9:3a:b5:5b:ff:ed: 0b:42:85:2d:f7:48:31:72:d1:4a:4f:e5:41:bb:d0: b3:c6:48:77:bd:a0:ae:15:b4:80:f9:bf:10:f6:76: 77:64:f4:48:a4:26:79:65:5f:44:9c:57:c4:72:05: 56:71:86:cb:74:52:f5:2f:fe:ea:2c:43:2f:db:0e: ac:02:7c:e0:15:18:e4:43:12:c5:14:63:b4:ae:14: 0f:8a:c5:ef:ff:c9:75:07:f5:6b:37:2e:ed:62:4c: b2:a7:81:1e:b8:35:9a:d4:ee:86:f8:6c:ef:c3:8c: f1:58:48:4e:77:e6:d3:03:79:07:91:7c:d8:06:08: 43:87:9e:15:19:05:72:03:3e:d7:72:77:54:33:48: 62:f6:69:4f:c6:f3:5e:eb:d2:5a:3e:7c:d7:30:fa: f4:7b:e8:61:dd:67:05:f8:fe:89:2b:20:5f:5b:92: 56:b7:8e:55:6e:78:c2:54:d5:e4:26:f4:bf:67:b3: f8:05:58:e3:05:5f:43:ac:dc:cb:39:28:52:58:fb: 3e:e9:ea:5f:25:7a:a8:34:62:b5:6d:62:59:03:b2: 49:98:5f:30:8c:b9:cc:bd:c7:05:d7:ac:34:1e:e6: c6:d4:eb:29:f1:70:38:de:b7:88:92:a8:0a:cb:34: 39:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D0:6A:96:FB:0C:97:4D:98:B5:60:C8:28:1F:41:9C:5D:1B:29:E2 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4b00::/40 Signature Algorithm: sha256WithRSAEncryption a1:e2:08:76:5a:be:bb:28:80:3d:c0:d7:06:72:08:30:81:ba: 3e:c0:ad:4b:58:85:0a:01:3e:8b:ce:15:ca:01:66:56:66:71: e1:86:52:5c:34:6f:4b:15:8b:25:26:1b:b0:1a:ae:95:f6:9c: 66:c2:63:60:4e:bf:58:07:06:7f:34:57:a9:97:48:8f:63:0c: 53:40:b2:fe:70:5c:df:b4:47:ac:f8:48:ce:30:fe:3d:d3:11: 00:a4:dc:21:24:fd:69:33:8f:4b:23:62:f3:ac:48:0a:9c:2b: f4:48:0f:4c:ab:8c:cb:ed:4b:95:33:c6:e7:c0:fa:c0:bb:f2: 3d:41:76:b2:63:e7:cb:63:62:0c:c0:0f:c2:1c:be:a5:56:fd: 52:64:58:61:b7:95:bb:2b:f3:1d:aa:73:fe:22:21:4f:c0:cc: d1:a9:7b:5b:38:e1:a5:97:5c:79:b7:d6:e4:b2:aa:75:f8:03: 21:5f:e7:f1:da:83:8c:0a:77:68:4a:10:f8:0a:af:25:f6:40: ad:6f:84:1f:7a:bf:9d:23:a0:82:7a:41:b7:d6:40:55:33:e5: cf:fc:95:10:bd:94:68:4c:04:95:ab:e2:9e:39:4b:5c:ab:1f: c0:6f:d5:0d:5c:5a:b2:37:9a:96:67:2d:f4:7c:f7:de:91:80: 47:8c:28:88 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUaGhAyk0VRNBVywi/xGo0UKIcAI4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA0MDEyMzQwNTZaFw0yNjAzMzEyMzQ1NTZaMDMxMTAvBgNV BAMTKDEyRDA2QTk2RkIwQzk3NEQ5OEI1NjBDODI4MUY0MTlDNUQxQjI5RTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgOgVt+y+BCLk6tVv/7QtChS33 SDFy0UpP5UG70LPGSHe9oK4VtID5vxD2dndk9EikJnllX0ScV8RyBVZxhst0UvUv /uosQy/bDqwCfOAVGORDEsUUY7SuFA+Kxe//yXUH9Ws3Lu1iTLKngR64NZrU7ob4 bO/DjPFYSE535tMDeQeRfNgGCEOHnhUZBXIDPtdyd1QzSGL2aU/G817r0lo+fNcw +vR76GHdZwX4/okrIF9bkla3jlVueMJU1eQm9L9ns/gFWOMFX0Os3Ms5KFJY+z7p 6l8leqg0YrVtYlkDskmYXzCMucy9xwXXrDQe5sbU6ynxcDjet4iSqArLNDn5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEtBqlvsMl02YtWDIKB9BnF0bKeIwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MzgzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwUswDQYJKoZIhvcNAQELBQADggEBAKHi CHZavrsogD3A1wZyCDCBuj7ArUtYhQoBPovOFcoBZlZmceGGUlw0b0sViyUmG7Aa rpX2nGbCY2BOv1gHBn80V6mXSI9jDFNAsv5wXN+0R6z4SM4w/j3TEQCk3CEk/Wkz j0sjYvOsSAqcK/RID0yrjMvtS5UzxufA+sC78j1BdrJj58tjYgzAD8IcvqVW/VJk WGG3lbsr8x2qc/4iIU/AzNGpe1s44aWXXHm31uSyqnX4AyFf5/Hag4wKd2hKEPgK ryX2QK1vhB96v50joIJ6QbfWQFUz5c/8lRC9lGhMBJWr4p45S1yrH8Bv1Q1cWrI3 mpZnLfR8996RgEeMKIg= -----END CERTIFICATE-----Generated at Sat Jun 7 23:36:48 2025 by rpki-client