$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197434.roa File: AS197434.roa (raw, json) Hash identifier: mcO+Sm651nvMqOsi1X+K7xA25IP71Rn/16GpzfL2C1Q= Subject key identifier: C1:75:25:9F:CF:68:D2:F1:DF:F3:21:24:30:06:ED:1F:73:AA:92:A3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 747B94C5689EB35298B52646AD21362F15A0255B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197434.roa Signing time: Fri 04 Jul 2025 06:53:14 +0000 ROA not before: Fri 04 Jul 2025 06:48:14 +0000 ROA not after: Fri 03 Jul 2026 06:53:14 +0000 asID: 197434 IP address blocks: 2a05:dfc1:7900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:7b:94:c5:68:9e:b3:52:98:b5:26:46:ad:21:36:2f:15:a0:25:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:14 2025 GMT Not After : Jul 3 06:53:14 2026 GMT Subject: CN=C175259FCF68D2F1DFF321243006ED1F73AA92A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:7b:d6:e1:c7:47:f6:9b:fa:4e:fd:00:1b: 71:47:4c:30:25:03:a8:fb:55:5a:55:02:f5:2c:62: 64:27:5d:f9:6b:27:42:6d:13:ee:1b:0e:3c:e0:1b: 70:00:04:f4:96:52:02:02:eb:70:0b:88:72:2a:8f: 4b:50:c0:0f:49:31:a1:89:7d:e4:f4:8a:a4:13:9f: 94:b7:13:d4:3c:fe:02:c1:17:7f:81:74:7f:f3:fc: 83:16:9a:77:e0:7e:d1:4a:2b:f1:06:82:21:2c:6a: ad:21:3d:5e:2b:ff:62:ef:f2:4d:51:89:31:84:e0: 45:cb:a9:29:e3:46:c5:9e:3b:e4:5d:b1:2b:4d:0e: f6:bb:a5:10:4a:6d:b5:98:3a:88:a9:1a:d8:9b:8a: f9:a1:d1:a3:9f:fa:01:93:fb:4c:74:20:cc:c1:46: 1d:6c:24:a1:72:3e:47:58:b7:08:bf:93:b7:25:36: 3f:12:92:76:19:4e:76:44:8f:5b:20:92:ef:9c:86: e9:db:ec:aa:5b:c4:f0:93:13:db:f4:19:35:7e:aa: ad:d3:c0:fb:a6:6f:23:82:2f:63:07:6e:b0:3f:43: 64:97:36:ca:92:62:e3:72:7d:b5:fb:c2:b1:b1:cc: 60:d6:01:ae:68:df:9c:c4:3d:b2:4b:ed:f1:90:de: ea:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:75:25:9F:CF:68:D2:F1:DF:F3:21:24:30:06:ED:1F:73:AA:92:A3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197434.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7900::/40 Signature Algorithm: sha256WithRSAEncryption 69:96:af:7d:23:86:4e:eb:9b:51:26:21:c8:cb:50:89:29:2c: 6d:92:8b:82:6d:ee:f6:0a:9d:a2:b2:3c:19:16:20:e6:5e:f8: d4:27:2a:18:8d:4d:15:35:82:88:f7:98:74:ee:09:0e:fa:2a: fe:52:70:5e:61:ed:fe:bd:fb:49:77:2e:82:4d:06:c5:ea:ae: bd:24:e6:8f:d2:7b:0a:c0:b9:04:97:26:b7:ef:98:01:53:82: b3:01:43:24:0b:8c:60:d2:9b:80:9f:f5:fb:6c:b4:b8:3f:49: 58:03:93:b5:7c:93:93:f9:43:41:67:a0:f3:ab:9b:f7:fc:2f: 26:4c:f3:ee:42:ae:15:35:a8:f4:60:d1:8f:b4:b1:98:0e:29: f2:7c:f5:be:04:de:1a:36:4e:a1:7c:b2:80:47:71:04:26:e5: 67:23:61:71:69:32:0e:8b:76:8b:b8:33:3f:b2:c1:51:d6:02: b7:a7:aa:5d:45:29:a8:28:98:12:38:ad:51:88:ea:93:66:11: e2:4e:27:c4:90:65:75:18:e8:40:1c:43:97:89:05:85:42:47: ae:62:28:dc:f4:ae:f3:de:74:2d:27:c8:ac:41:f9:73:d3:c3: ca:a0:55:b3:a3:25:b8:62:4e:11:89:b8:37:da:86:9a:4a:77: 63:10:ce:6d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdHuUxWies1KYtSZGrSE2LxWgJVswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTRaFw0yNjA3MDMwNjUzMTRaMDMxMTAvBgNV BAMTKEMxNzUyNTlGQ0Y2OEQyRjFERkYzMjEyNDMwMDZFRDFGNzNBQTkyQTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCv/3vW4cdH9pv6Tv0AG3FHTDAl A6j7VVpVAvUsYmQnXflrJ0JtE+4bDjzgG3AABPSWUgIC63ALiHIqj0tQwA9JMaGJ feT0iqQTn5S3E9Q8/gLBF3+BdH/z/IMWmnfgftFKK/EGgiEsaq0hPV4r/2Lv8k1R iTGE4EXLqSnjRsWeO+RdsStNDva7pRBKbbWYOoipGtibivmh0aOf+gGT+0x0IMzB Rh1sJKFyPkdYtwi/k7clNj8SknYZTnZEj1sgku+chunb7KpbxPCTE9v0GTV+qq3T wPumbyOCL2MHbrA/Q2SXNsqSYuNyfbX7wrGxzGDWAa5o35zEPbJL7fGQ3uqvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwXUln89o0vHf8yEkMAbtH3OqkqMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NDM0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXkwDQYJKoZIhvcNAQELBQADggEBAGmW r30jhk7rm1EmIcjLUIkpLG2Si4Jt7vYKnaKyPBkWIOZe+NQnKhiNTRU1goj3mHTu CQ76Kv5ScF5h7f69+0l3LoJNBsXqrr0k5o/SewrAuQSXJrfvmAFTgrMBQyQLjGDS m4Cf9ftstLg/SVgDk7V8k5P5Q0FnoPOrm/f8LyZM8+5CrhU1qPRg0Y+0sZgOKfJ8 9b4E3ho2TqF8soBHcQQm5WcjYXFpMg6Ldou4Mz+ywVHWArenql1FKagomBI4rVGI 6pNmEeJOJ8SQZXUY6EAcQ5eJBYVCR65iKNz0rvPedC0nyKxB+XPTw8qgVbOjJbhi ThGJuDfahppKd2MQzm0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:21 2025 by rpki-client