$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa File: AS199094.roa (raw, json) Hash identifier: FYmNxAVXo2YDHNVSuVv9FtYnHue2E3gvhcDTg1otN9Y= Subject key identifier: B1:50:B7:46:A0:D8:BC:09:6D:B4:AF:F3:CE:8E:54:23:DC:14:89:20 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 7A3A23EBEE45571E672EC708AFC5216630BF6C14 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa Signing time: Wed 29 Jan 2025 15:45:44 +0000 ROA not before: Wed 29 Jan 2025 15:40:44 +0000 ROA not after: Wed 28 Jan 2026 15:45:44 +0000 asID: 199094 IP address blocks: 2a05:dfc1:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Jun 2025 13:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:3a:23:eb:ee:45:57:1e:67:2e:c7:08:af:c5:21:66:30:bf:6c:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Jan 29 15:40:44 2025 GMT Not After : Jan 28 15:45:44 2026 GMT Subject: CN=B150B746A0D8BC096DB4AFF3CE8E5423DC148920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:29:8a:17:8b:62:ab:94:d9:11:b5:61:01:47: eb:75:01:54:bb:09:a8:ec:d4:a6:7b:be:66:ab:7a: ae:3f:4e:1d:80:bd:2c:d2:cd:84:8a:18:ab:9a:18: 34:5d:85:60:cb:44:f4:32:59:7f:ef:19:14:8e:f1: 85:a4:00:5e:95:f3:0c:74:70:ca:66:23:40:e5:e1: 46:97:ec:f8:e3:df:c3:d6:41:6a:53:84:fd:a7:7b: 0a:d9:7b:e7:d3:0d:9d:28:e8:fb:d0:dd:61:93:83: 2b:2f:23:68:b9:88:a0:78:a3:a6:06:27:61:a0:df: 65:fb:fb:74:c0:15:19:e9:5b:e1:51:ac:a0:89:c0: 2d:7d:6c:59:41:8b:79:62:b0:92:dc:be:e0:af:74: df:98:9c:32:ea:8c:d8:33:da:b1:6c:8e:81:63:01: 79:7a:20:7e:ac:25:e5:65:af:44:cc:9d:b8:0d:35: 5e:23:c6:a6:51:44:3f:ee:1d:ca:00:2a:19:0b:8d: 80:13:2e:9e:d2:ea:e3:02:90:74:d4:66:3c:ae:5d: f8:38:25:65:f1:ff:10:1c:02:cb:d5:9b:45:ae:58: 14:a3:da:8c:b5:46:39:14:3c:5d:76:d7:78:9b:33: 9f:c8:61:3c:f3:37:57:4b:d1:d3:fb:83:23:4e:b8: 02:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:50:B7:46:A0:D8:BC:09:6D:B4:AF:F3:CE:8E:54:23:DC:14:89:20 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1800::/40 Signature Algorithm: sha256WithRSAEncryption 1a:12:43:f2:50:69:e3:85:6c:9a:34:96:a5:e7:8e:75:04:83: f5:52:61:0f:46:e4:8c:00:75:94:d6:cc:49:ba:17:83:de:e6: e8:d9:4e:58:64:1f:f4:10:c2:94:36:a8:07:6d:3a:bc:b8:a6: 66:9f:21:c4:fb:32:f3:99:9c:15:f4:7b:6b:2f:27:34:e3:9d: 96:6d:cd:51:f2:c3:71:7c:a8:2f:e7:cc:3b:62:ac:85:c1:b0: 14:f7:54:3e:3a:e4:a2:3b:31:ac:bd:31:e7:d3:dd:20:16:ef: 15:12:b0:08:7f:f5:25:cb:20:04:b2:2a:f6:76:75:d5:2a:de: 16:ad:71:67:d8:51:ce:ae:6d:74:8d:85:23:79:fc:30:72:1e: 36:af:0a:97:ba:fa:89:22:86:71:3e:c5:28:84:7a:d9:d8:ea: 63:73:74:ad:dd:3f:9a:79:1b:06:fb:8e:90:8b:57:51:0d:a3: 6f:e3:ac:b7:e0:74:03:a0:50:49:fb:c9:49:2d:42:ff:be:d1: 41:92:2f:00:67:7c:99:6d:f2:51:f0:06:58:51:41:e8:5c:dc: dc:51:76:0f:ee:36:f3:04:88:f7:56:fa:ca:cd:07:40:67:d7: 84:36:51:8f:25:8a:9b:f2:16:50:91:b8:7a:28:72:f5:fc:37: b6:a7:76:57 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUejoj6+5FVx5nLscIr8UhZjC/bBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTAxMjkxNTQwNDRaFw0yNjAxMjgxNTQ1NDRaMDMxMTAvBgNV BAMTKEIxNTBCNzQ2QTBEOEJDMDk2REI0QUZGM0NFOEU1NDIzREMxNDg5MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdKYoXi2KrlNkRtWEBR+t1AVS7 Cajs1KZ7vmareq4/Th2AvSzSzYSKGKuaGDRdhWDLRPQyWX/vGRSO8YWkAF6V8wx0 cMpmI0Dl4UaX7Pjj38PWQWpThP2newrZe+fTDZ0o6PvQ3WGTgysvI2i5iKB4o6YG J2Gg32X7+3TAFRnpW+FRrKCJwC19bFlBi3lisJLcvuCvdN+YnDLqjNgz2rFsjoFj AXl6IH6sJeVlr0TMnbgNNV4jxqZRRD/uHcoAKhkLjYATLp7S6uMCkHTUZjyuXfg4 JWXx/xAcAsvVm0WuWBSj2oy1RjkUPF1213ibM5/IYTzzN1dL0dP7gyNOuAKRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsVC3RqDYvAlttK/zzo5UI9wUiSAwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk5MDk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRgwDQYJKoZIhvcNAQELBQADggEBABoS Q/JQaeOFbJo0lqXnjnUEg/VSYQ9G5IwAdZTWzEm6F4Pe5ujZTlhkH/QQwpQ2qAdt Ory4pmafIcT7MvOZnBX0e2svJzTjnZZtzVHyw3F8qC/nzDtirIXBsBT3VD465KI7 May9MefT3SAW7xUSsAh/9SXLIASyKvZ2ddUq3hatcWfYUc6ubXSNhSN5/DByHjav Cpe6+okihnE+xSiEetnY6mNzdK3dP5p5Gwb7jpCLV1ENo2/jrLfgdAOgUEn7yUkt Qv++0UGSLwBnfJlt8lHwBlhRQehc3NxRdg/uNvMEiPdW+srNB0Bn14Q2UY8lipvy FlCRuHoocvX8N7andlc= -----END CERTIFICATE-----Generated at Sat Jun 7 23:38:15 2025 by rpki-client