$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197624.roa File: AS197624.roa (raw, json) Hash identifier: 3NmRJVvZaHTIOXyFZsgl0Qnafe09U2J816DW/9vTjcg= Subject key identifier: D6:A8:BA:9F:99:E1:DE:2B:7D:D7:26:E7:2B:E9:1A:FF:BC:82:D6:A1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 60AE73CD53D624D8FCB9C98A37DC35401DA53CAA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197624.roa Signing time: Fri 04 Jul 2025 06:53:13 +0000 ROA not before: Fri 04 Jul 2025 06:48:13 +0000 ROA not after: Fri 03 Jul 2026 06:53:13 +0000 asID: 197624 IP address blocks: 2a05:dfc1:7300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ae:73:cd:53:d6:24:d8:fc:b9:c9:8a:37:dc:35:40:1d:a5:3c:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:13 2025 GMT Not After : Jul 3 06:53:13 2026 GMT Subject: CN=D6A8BA9F99E1DE2B7DD726E72BE91AFFBC82D6A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:06:c5:69:1c:36:50:99:70:07:92:8a:0f:be: f5:73:6c:e7:d1:3e:34:5b:a7:43:8e:12:50:c6:01: 04:7c:80:ae:54:16:21:45:40:a9:7c:05:93:c5:23: 2a:4f:4b:1f:25:97:66:bd:eb:a7:ef:45:dc:b2:5d: 07:f9:c9:b0:dc:c0:8b:74:16:87:87:9f:0a:8f:dc: 61:07:ae:71:6c:90:c6:71:51:39:4d:b1:48:82:0c: 58:c8:79:04:64:3d:e9:d9:d8:a6:b6:de:be:a6:d7: 6f:ec:0f:ae:df:ae:67:a3:da:16:9f:67:d8:df:9a: 8b:9d:6c:74:4b:a6:f4:19:3f:bc:42:6d:6e:a9:84: 9a:b9:db:b4:1e:46:7b:cc:ed:d8:fc:36:e8:46:d4: a7:7b:bb:a6:bd:7f:82:4b:21:82:c1:40:17:77:68: ce:15:0f:8c:d9:a6:13:56:1a:a9:91:90:0c:0b:39: a0:9d:ed:d3:b8:17:12:ea:da:15:e2:a3:60:f6:a6: 88:f9:1d:7e:55:ab:54:f9:1f:79:d7:55:07:d9:c4: a3:07:c1:0b:63:9d:4c:23:69:e4:1c:ea:30:a5:40: cc:ac:2b:df:99:cb:92:2c:99:f2:fa:7c:84:e1:f8: 29:b3:35:79:41:61:c6:3a:0d:c9:67:ed:29:8d:65: 94:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:A8:BA:9F:99:E1:DE:2B:7D:D7:26:E7:2B:E9:1A:FF:BC:82:D6:A1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197624.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7300::/40 Signature Algorithm: sha256WithRSAEncryption 44:a9:8f:7b:b6:03:96:f2:0f:86:58:3c:9c:0e:c5:68:3c:9b: b2:2f:0f:b7:71:09:40:2c:e8:7d:9b:ff:d1:00:4b:52:ef:1c: 1b:2c:00:c3:f5:7e:8d:c3:9d:05:fc:e1:f0:7f:d9:e9:dc:76: bd:2e:a3:41:c4:bd:3a:4e:98:3c:10:10:6e:30:79:b8:4b:d6: 3e:b7:c1:a4:7d:61:d4:cb:62:f8:17:2f:e9:5c:18:cf:5b:e5: b0:fa:54:19:91:bd:a8:4a:04:03:17:78:d7:41:3c:45:56:ce: b9:7b:fa:80:99:46:49:5f:af:00:b2:a2:40:c5:1d:32:6f:cd: 49:b5:7b:38:8d:16:9e:89:ae:c4:c6:3a:36:4f:ec:c3:3c:21: 66:73:ff:5a:67:1e:46:5a:8a:c1:66:64:1c:00:35:59:28:e3: 32:99:a1:3f:8a:82:75:a1:8c:6b:a6:bb:f9:72:e2:41:19:e1: d8:6d:5c:f4:f0:3e:c8:b0:d6:a9:cb:56:a0:59:ff:a4:c7:b8: a7:cd:28:4f:9e:f8:45:15:e5:80:10:00:3a:8d:b9:3c:b4:c7: 13:8f:b0:bd:ce:8e:dc:8e:3b:b6:05:a1:de:a8:6e:a6:f1:34: 53:2e:34:8f:29:c7:e1:00:cb:10:d0:3e:be:e0:36:e0:7f:21: af:41:bf:27 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYK5zzVPWJNj8ucmKN9w1QB2lPKowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTNaFw0yNjA3MDMwNjUzMTNaMDMxMTAvBgNV BAMTKEQ2QThCQTlGOTlFMURFMkI3REQ3MjZFNzJCRTkxQUZGQkM4MkQ2QTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFBsVpHDZQmXAHkooPvvVzbOfR PjRbp0OOElDGAQR8gK5UFiFFQKl8BZPFIypPSx8ll2a966fvRdyyXQf5ybDcwIt0 FoeHnwqP3GEHrnFskMZxUTlNsUiCDFjIeQRkPenZ2Ka23r6m12/sD67frmej2haf Z9jfmoudbHRLpvQZP7xCbW6phJq527QeRnvM7dj8NuhG1Kd7u6a9f4JLIYLBQBd3 aM4VD4zZphNWGqmRkAwLOaCd7dO4FxLq2hXio2D2poj5HX5Vq1T5H3nXVQfZxKMH wQtjnUwjaeQc6jClQMysK9+Zy5IsmfL6fITh+CmzNXlBYcY6Dcln7SmNZZSFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1qi6n5nh3it91ybnK+ka/7yC1qEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NjI0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXMwDQYJKoZIhvcNAQELBQADggEBAESp j3u2A5byD4ZYPJwOxWg8m7IvD7dxCUAs6H2b/9EAS1LvHBssAMP1fo3DnQX84fB/ 2encdr0uo0HEvTpOmDwQEG4webhL1j63waR9YdTLYvgXL+lcGM9b5bD6VBmRvahK BAMXeNdBPEVWzrl7+oCZRklfrwCyokDFHTJvzUm1eziNFp6JrsTGOjZP7MM8IWZz /1pnHkZaisFmZBwANVko4zKZoT+KgnWhjGumu/ly4kEZ4dhtXPTwPsiw1qnLVqBZ /6THuKfNKE+e+EUV5YAQADqNuTy0xxOPsL3OjtyOO7YFod6obqbxNFMuNI8px+EA yxDQPr7gNuB/Ia9Bvyc= -----END CERTIFICATE-----Generated at Sat Jul 5 06:09:46 2025 by rpki-client