$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197723.roa File: AS197723.roa (raw, json) Hash identifier: 84ItOOQw1/djgeXIopUeObhFy496chvHTvQIZwIy5LM= Subject key identifier: BC:2A:5A:DC:56:24:CE:59:A8:FE:F4:0D:55:51:DD:45:6F:8E:F7:9D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5B2A5721E15B1808D1A748647689A8399F8B6698 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197723.roa Signing time: Fri 04 Jul 2025 06:53:23 +0000 ROA not before: Fri 04 Jul 2025 06:48:23 +0000 ROA not after: Fri 03 Jul 2026 06:53:23 +0000 asID: 197723 IP address blocks: 2a05:dfc1:6a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:2a:57:21:e1:5b:18:08:d1:a7:48:64:76:89:a8:39:9f:8b:66:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:23 2025 GMT Not After : Jul 3 06:53:23 2026 GMT Subject: CN=BC2A5ADC5624CE59A8FEF40D5551DD456F8EF79D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f5:1c:4d:bc:ed:a8:34:aa:2a:81:71:ac:ba: 18:ec:68:d7:76:45:ed:d7:c0:a2:66:b1:0d:e3:b8: 76:24:81:cb:61:55:6c:17:9e:56:4a:ae:dd:68:85: 2d:19:8d:97:b9:8b:fe:c3:54:83:10:3d:34:9f:a6: 50:1f:5e:b9:11:1f:51:1c:81:19:3d:c9:b9:27:08: 2f:f6:14:23:e8:f3:74:b7:d0:74:71:de:69:67:88: e6:be:c9:93:7f:6b:c2:75:e8:ea:e5:ed:5c:d0:c2: ba:44:27:14:4d:c3:12:f0:34:35:1f:35:b9:34:6b: 6c:36:f3:95:2b:a2:60:66:01:9f:6d:1d:3e:5a:1a: 7f:1e:cb:24:14:1c:28:4a:8d:2f:57:bf:3c:2d:76: 9c:ce:91:df:30:0c:e1:66:e2:62:6e:95:84:21:9e: 13:2d:3a:64:4a:33:14:d6:f4:f2:7a:40:12:8c:75: 2b:51:b2:a8:47:33:d7:66:c5:a1:a0:2c:c1:d2:51: 77:08:db:e3:b3:6f:94:32:94:3d:30:e8:47:ed:c6: d2:46:e5:98:ef:2c:c1:6c:79:17:10:75:7e:ca:09: e0:e8:50:3d:80:46:06:d9:1d:66:71:7d:0d:4a:0b: 29:b2:3c:56:e0:1c:f5:73:e2:c0:68:1a:a2:8d:8e: da:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2A:5A:DC:56:24:CE:59:A8:FE:F4:0D:55:51:DD:45:6F:8E:F7:9D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197723.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6a00::/40 Signature Algorithm: sha256WithRSAEncryption e8:5a:da:ec:95:98:bd:83:2d:d1:7e:c0:a3:f2:4c:24:3d:37: e8:cc:e6:e4:17:e8:de:63:f2:d7:3f:8b:87:cf:34:39:6e:a2: 14:fe:92:19:6f:e7:1c:57:71:f2:83:e4:9a:80:af:35:b3:09: f7:e3:30:14:ea:b8:74:5e:07:08:42:1d:71:ac:3f:95:cd:b9: f2:4d:da:53:bb:3c:a3:7f:08:87:de:ae:89:d6:7f:43:3a:e9: 8b:3e:43:73:6b:05:57:da:44:9e:8a:0c:97:54:a3:69:91:ed: dd:29:6e:1b:e9:4f:cf:a1:72:bd:21:be:8a:f0:93:41:53:12: 06:ba:3a:5e:05:de:60:bc:a4:01:eb:7d:4c:f9:e0:b5:3e:44: 92:96:19:1b:e0:44:68:22:0a:10:5e:62:81:bb:8a:56:fa:bc: 13:86:62:da:e9:c6:99:2e:f3:5d:12:78:47:e3:31:83:47:b5: 46:74:09:22:04:ee:9e:70:17:e1:51:f6:85:a3:41:2f:06:8b: 8a:7b:dc:92:a6:94:32:c8:ad:45:b2:45:ec:fd:9b:3e:f7:3c: b0:6d:62:74:e8:a0:a3:dc:b3:ce:98:b9:f2:92:7d:9f:40:aa: 19:ae:e0:e3:e2:d6:23:3d:6c:5d:1d:6a:10:b2:6f:8d:f1:1e: f8:be:c4:95 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWypXIeFbGAjRp0hkdomoOZ+LZpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjNaFw0yNjA3MDMwNjUzMjNaMDMxMTAvBgNV BAMTKEJDMkE1QURDNTYyNENFNTlBOEZFRjQwRDU1NTFERDQ1NkY4RUY3OUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp9RxNvO2oNKoqgXGsuhjsaNd2 Re3XwKJmsQ3juHYkgcthVWwXnlZKrt1ohS0ZjZe5i/7DVIMQPTSfplAfXrkRH1Ec gRk9ybknCC/2FCPo83S30HRx3mlniOa+yZN/a8J16Orl7VzQwrpEJxRNwxLwNDUf Nbk0a2w285UromBmAZ9tHT5aGn8eyyQUHChKjS9XvzwtdpzOkd8wDOFm4mJulYQh nhMtOmRKMxTW9PJ6QBKMdStRsqhHM9dmxaGgLMHSUXcI2+Ozb5QylD0w6EftxtJG 5ZjvLMFseRcQdX7KCeDoUD2ARgbZHWZxfQ1KCymyPFbgHPVz4sBoGqKNjtrRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUvCpa3FYkzlmo/vQNVVHdRW+O950wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NzIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWowDQYJKoZIhvcNAQELBQADggEBAOha 2uyVmL2DLdF+wKPyTCQ9N+jM5uQX6N5j8tc/i4fPNDluohT+khlv5xxXcfKD5JqA rzWzCffjMBTquHReBwhCHXGsP5XNufJN2lO7PKN/CIferonWf0M66Ys+Q3NrBVfa RJ6KDJdUo2mR7d0pbhvpT8+hcr0hvorwk0FTEga6Ol4F3mC8pAHrfUz54LU+RJKW GRvgRGgiChBeYoG7ilb6vBOGYtrpxpku810SeEfjMYNHtUZ0CSIE7p5wF+FR9oWj QS8Gi4p73JKmlDLIrUWyRez9mz73PLBtYnTooKPcs86YufKSfZ9Aqhmu4OPi1iM9 bF0dahCyb43xHvi+xJU= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:51 2025 by rpki-client