$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197532.roa File: AS197532.roa (raw, json) Hash identifier: NlqsZqOnVe46k79ChEmCqVfcK7fbuvy+NKO0JYyD4w0= Subject key identifier: 0D:96:57:15:5B:35:05:BE:81:FB:C2:4F:B2:5C:90:27:E5:AD:5B:BC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 147D4CFE25473D1EC7675BCA76B82A5BBF8F9E02 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197532.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 197532 IP address blocks: 2a05:dfc1:7200::/40 maxlen: 48 2a05:dfc1:9400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7d:4c:fe:25:47:3d:1e:c7:67:5b:ca:76:b8:2a:5b:bf:8f:9e:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=0D9657155B3505BE81FBC24FB25C9027E5AD5BBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:15:95:43:a0:1f:9f:d3:a7:a5:35:4a:73: f7:3d:9d:89:d5:34:0d:86:52:37:e5:71:a0:58:ec: 05:0a:9d:b9:25:45:e5:94:88:f3:ae:0d:83:f1:4f: 2b:59:26:d2:f9:2d:6b:2b:c5:c5:8b:a8:35:7c:63: 2d:18:9a:38:d0:8e:a8:d5:cd:93:9b:b0:81:4b:ff: 4c:3d:87:a9:69:c5:c5:9f:7c:3d:42:6f:c0:d7:fc: de:dc:71:58:31:62:37:ab:4e:d3:76:53:81:40:08: 97:f7:7c:19:92:25:37:a9:fc:1b:a5:25:b4:47:9e: 82:c4:84:44:6b:61:8e:f3:c8:39:02:cd:2c:f7:5e: b3:60:66:86:33:32:83:ea:80:58:b5:9b:cd:9c:9f: fb:2b:9c:ef:f2:08:65:bd:03:ed:79:d5:48:3e:2c: e1:f2:9a:19:b7:22:2b:05:da:6b:b5:a8:40:46:83: 2c:97:34:fe:08:35:df:a4:38:fe:4f:ab:43:7c:f6: 62:ea:0c:70:fc:2b:61:4a:e8:70:1f:4c:26:ba:57: 58:16:89:ab:e9:b9:04:bd:7c:19:f9:93:ab:c7:b8: 7c:fd:5e:cb:2e:e4:37:50:57:62:be:8b:19:23:e1: a7:55:05:ea:50:a3:27:2b:05:51:4d:c5:d7:20:46: 51:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:96:57:15:5B:35:05:BE:81:FB:C2:4F:B2:5C:90:27:E5:AD:5B:BC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197532.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7200::/40 2a05:dfc1:9400::/40 Signature Algorithm: sha256WithRSAEncryption b4:39:48:35:ae:0a:fc:7a:f2:59:51:34:7a:ab:84:a9:fb:90: 81:b8:e3:d9:4f:48:35:33:c8:e4:39:be:58:a8:7a:c4:06:91: 3f:64:43:11:70:a8:a0:19:ae:e2:f4:d5:70:5a:e0:0b:9f:6c: 44:13:23:7e:04:15:b7:5f:84:46:c0:a0:68:4c:85:65:09:5c: f7:55:5c:0f:9f:e1:b0:7b:62:d2:5e:6a:ad:2c:5c:82:f2:e7: b1:24:ee:92:54:40:32:1f:74:a1:47:ef:8a:94:d2:4e:04:0e: 21:18:4d:50:29:d0:2f:98:68:e8:2b:fd:a7:5e:27:3c:06:a4: 50:84:4a:bc:95:06:ca:c4:a5:57:a7:00:fe:e4:73:d3:52:5d: 9b:e9:33:22:59:95:eb:2d:03:73:45:b3:4c:40:8e:a7:8a:3e: 9e:df:97:2d:d6:1d:99:6d:27:52:a0:ef:fb:6a:28:32:b4:be: 02:6f:71:d4:b9:5e:28:43:56:1e:39:bb:01:1e:6b:c8:0a:d6: 48:d8:04:a9:d0:16:b2:46:8b:e1:af:e6:c2:98:dc:f9:70:75: 0c:ab:9a:d3:0f:0c:04:49:7e:32:c0:56:4a:06:82:b6:03:2a: 42:93:75:ee:42:94:b4:30:82:ae:a1:c4:51:d1:bc:08:b6:51: 9f:32:64:4d -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIUFH1M/iVHPR7HZ1vKdrgqW7+PngIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDBEOTY1NzE1NUIzNTA1QkU4MUZCQzI0RkIyNUM5MDI3RTVBRDVCQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEmBWVQ6Afn9OnpTVKc/c9nYnV NA2GUjflcaBY7AUKnbklReWUiPOuDYPxTytZJtL5LWsrxcWLqDV8Yy0YmjjQjqjV zZObsIFL/0w9h6lpxcWffD1Cb8DX/N7ccVgxYjerTtN2U4FACJf3fBmSJTep/Bul JbRHnoLEhERrYY7zyDkCzSz3XrNgZoYzMoPqgFi1m82cn/srnO/yCGW9A+151Ug+ LOHymhm3IisF2mu1qEBGgyyXNP4INd+kOP5Pq0N89mLqDHD8K2FK6HAfTCa6V1gW iavpuQS9fBn5k6vHuHz9Xssu5DdQV2K+ixkj4adVBepQoycrBVFNxdcgRlFnAgMB AAGjggH8MIIB+DAdBgNVHQ4EFgQUDZZXFVs1Bb6B+8JPslyQJ+WtW7wwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NTMyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCkGCCsGAQUF BwEHAQH/BBowGDAWBAIAAjAQAwYAKgXfwXIDBgAqBd/BlDANBgkqhkiG9w0BAQsF AAOCAQEAtDlINa4K/HryWVE0equEqfuQgbjj2U9INTPI5Dm+WKh6xAaRP2RDEXCo oBmu4vTVcFrgC59sRBMjfgQVt1+ERsCgaEyFZQlc91VcD5/hsHti0l5qrSxcgvLn sSTuklRAMh90oUfvipTSTgQOIRhNUCnQL5ho6Cv9p14nPAakUIRKvJUGysSlV6cA /uRz01Jdm+kzIlmV6y0Dc0WzTECOp4o+nt+XLdYdmW0nUqDv+2ooMrS+Am9x1Lle KENWHjm7AR5ryArWSNgEqdAWskaL4a/mwpjc+XB1DKua0w8MBEl+MsBWSgaCtgMq QpN17kKUtDCCrqHEUdG8CLZRnzJkTQ== -----END CERTIFICATE-----Generated at Sat Jul 5 04:15:02 2025 by rpki-client