$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197433.roa File: AS197433.roa (raw, json) Hash identifier: x/5GRQZXfcXfgNMkmpfC1NzXjF+NkPkkjin4skgfZXo= Subject key identifier: 09:BF:FB:86:67:FB:6C:90:F7:92:6E:54:42:D6:86:59:E8:AA:E5:D4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 250758B86CA7A29FE8B76F8AA11503BA90D2CCBB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197433.roa Signing time: Fri 04 Jul 2025 06:52:58 +0000 ROA not before: Fri 04 Jul 2025 06:47:58 +0000 ROA not after: Fri 03 Jul 2026 06:52:58 +0000 asID: 197433 IP address blocks: 2a05:dfc1:8c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:07:58:b8:6c:a7:a2:9f:e8:b7:6f:8a:a1:15:03:ba:90:d2:cc:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:58 2025 GMT Not After : Jul 3 06:52:58 2026 GMT Subject: CN=09BFFB8667FB6C90F7926E5442D68659E8AAE5D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:68:0f:69:d6:f5:ad:14:ff:67:39:c0:d1: ce:11:87:3a:d4:ef:bf:4a:c5:e2:f2:7e:98:73:c5: c9:52:34:0c:3f:ce:c6:42:91:58:a1:39:ea:02:2e: b8:67:04:a2:e5:37:00:6d:bc:35:33:20:c5:f6:34: 2d:86:37:9e:26:bc:dc:da:b6:e1:5d:27:fd:85:61: e5:e1:36:2f:0b:d8:48:60:ec:f5:c6:d9:bc:db:1b: a0:13:b2:1d:de:e6:76:ca:a3:cc:ad:d9:2b:71:52: be:e1:37:f5:26:1e:dd:27:fb:bf:44:f4:ac:9b:fb: d7:2b:97:21:5a:17:7c:02:a0:a7:71:e5:e2:c5:3e: 75:d6:3f:2e:aa:45:93:ce:9e:6a:fd:81:93:59:0e: af:5e:b0:cd:ad:de:3d:33:9f:d6:ca:36:a7:b5:49: 89:f9:2f:82:46:31:fd:24:46:41:ff:f5:8f:cf:6e: 63:08:a1:23:ec:ba:7b:28:7e:52:df:a9:98:6e:74: b6:62:5e:5a:90:9c:be:51:ce:a2:04:b0:1b:8e:48: 9b:3b:63:0b:97:27:a8:12:91:6c:e6:5d:bd:4c:bc: 7f:04:62:0e:a6:54:be:bd:45:54:90:08:9f:c0:fb: e4:b1:c9:0d:c5:d2:29:19:f6:4e:04:5f:5d:df:5e: d5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:BF:FB:86:67:FB:6C:90:F7:92:6E:54:42:D6:86:59:E8:AA:E5:D4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8c00::/40 Signature Algorithm: sha256WithRSAEncryption 83:f8:21:3b:f5:db:bf:22:df:4d:b9:37:33:90:df:01:32:34: 94:e7:0d:ed:19:aa:66:7b:11:7a:16:21:fe:14:83:9d:29:db: 7f:04:8b:b4:63:8f:cc:76:5c:85:da:63:ec:c0:fd:7a:5d:60: 81:6b:5d:e5:a1:34:34:8a:37:c1:c3:46:59:2e:27:71:23:e9: 2f:bf:3b:5c:ee:13:65:0c:99:28:1b:0d:80:93:64:dc:93:fd: d3:58:26:a6:0a:ca:21:c9:90:43:28:5d:61:7f:00:26:23:42: 13:89:9b:41:b6:b3:77:fb:3e:c2:7e:d8:05:d8:0f:91:90:75: 9a:0e:19:2f:bb:ca:dc:a0:26:ce:c5:e1:b5:8e:75:4b:a0:5b: 75:a5:e5:1a:c9:93:05:16:c0:a2:f4:a0:68:df:e9:d4:b8:59: 0c:33:c2:da:90:56:60:9d:7f:f6:1b:2b:74:60:fe:f0:dd:52: ed:82:56:7c:1a:95:89:ec:ae:93:0f:35:7d:4c:4d:51:5b:97: a6:8b:ce:33:4a:52:3e:3b:13:fb:1e:a7:6b:03:50:37:08:b6: a2:a7:29:c4:0e:ce:f6:85:17:2f:76:24:e6:e1:30:dc:1c:76: fc:25:95:2a:d1:bd:44:35:c2:b2:b6:25:07:0d:0f:8d:89:2f: fd:b5:d8:fd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJQdYuGynop/ot2+KoRUDupDSzLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NThaFw0yNjA3MDMwNjUyNThaMDMxMTAvBgNV BAMTKDA5QkZGQjg2NjdGQjZDOTBGNzkyNkU1NDQyRDY4NjU5RThBQUU1RDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD3GgPadb1rRT/ZznA0c4RhzrU 779KxeLyfphzxclSNAw/zsZCkVihOeoCLrhnBKLlNwBtvDUzIMX2NC2GN54mvNza tuFdJ/2FYeXhNi8L2Ehg7PXG2bzbG6ATsh3e5nbKo8yt2StxUr7hN/UmHt0n+79E 9Kyb+9crlyFaF3wCoKdx5eLFPnXWPy6qRZPOnmr9gZNZDq9esM2t3j0zn9bKNqe1 SYn5L4JGMf0kRkH/9Y/PbmMIoSPsunsoflLfqZhudLZiXlqQnL5RzqIEsBuOSJs7 YwuXJ6gSkWzmXb1MvH8EYg6mVL69RVSQCJ/A++SxyQ3F0ikZ9k4EX13fXtUTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCb/7hmf7bJD3km5UQtaGWeiq5dQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYwwDQYJKoZIhvcNAQELBQADggEBAIP4 ITv1278i3025NzOQ3wEyNJTnDe0ZqmZ7EXoWIf4Ug50p238Ei7Rjj8x2XIXaY+zA /XpdYIFrXeWhNDSKN8HDRlkuJ3Ej6S+/O1zuE2UMmSgbDYCTZNyT/dNYJqYKyiHJ kEMoXWF/ACYjQhOJm0G2s3f7PsJ+2AXYD5GQdZoOGS+7ytygJs7F4bWOdUugW3Wl 5RrJkwUWwKL0oGjf6dS4WQwzwtqQVmCdf/YbK3Rg/vDdUu2CVnwalYnsrpMPNX1M TVFbl6aLzjNKUj47E/sep2sDUDcItqKnKcQOzvaFFy92JObhMNwcdvwllSrRvUQ1 wrK2JQcND42JL/212P0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:35 2025 by rpki-client