$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197866.roa File: AS197866.roa (raw, json) Hash identifier: AkFJOt3zS9xCzAKXcyyy0CTuc7t24SkBChWogcOJpO0= Subject key identifier: BF:88:B5:B1:E5:9B:B9:EC:C0:63:7B:F8:6C:1A:13:DA:28:7D:99:E4 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 02F879844651CD77B7832FC3AEDFF60833FBE3D6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197866.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 197866 IP address blocks: 2a05:dfc1:6600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:f8:79:84:46:51:cd:77:b7:83:2f:c3:ae:df:f6:08:33:fb:e3:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=BF88B5B1E59BB9ECC0637BF86C1A13DA287D99E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ed:87:04:07:6a:40:fa:0d:0a:0b:ac:e7:15: 60:0e:22:1c:e7:af:8e:39:23:4a:de:39:8d:73:97: f1:af:b1:36:57:e2:e3:12:62:f1:9c:b4:e4:50:86: b1:c8:15:0d:88:40:c4:f3:61:cb:d6:74:93:3e:4b: 39:8f:07:e6:05:ae:56:e1:be:4b:b1:ce:1b:80:9f: 3a:13:3e:ea:8d:5b:bd:ed:c8:2b:b4:e9:c9:b8:68: e1:3a:da:22:a9:c4:7f:d5:cf:c0:cb:12:2a:f1:d4: 46:6a:f6:c8:3d:4d:bb:a5:28:c6:b3:57:92:b0:05: 57:e3:70:8b:d0:7c:34:4b:ab:f7:c4:cf:bf:4f:06: 86:50:c1:13:62:88:d3:4a:a4:6e:6c:eb:96:c0:77: b6:dd:87:3c:e8:28:d3:56:df:df:eb:a0:9b:31:e3: 35:4e:8a:72:f1:9a:91:58:01:4d:b8:08:f1:65:c6: 3c:8f:09:98:cd:3d:9d:11:d1:02:c7:4f:50:58:76: f4:23:51:fc:d5:99:c1:85:04:31:cd:56:46:10:f3: 0a:67:25:d6:04:66:41:63:40:60:b9:10:d8:be:d4: 4d:24:36:d2:44:5a:b7:d4:e6:53:a8:e1:7b:27:86: 54:4d:10:0e:5f:79:2b:e0:12:95:66:8c:5b:58:1d: d5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:88:B5:B1:E5:9B:B9:EC:C0:63:7B:F8:6C:1A:13:DA:28:7D:99:E4 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197866.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6600::/40 Signature Algorithm: sha256WithRSAEncryption 64:6c:2b:5f:3d:5b:88:5e:1c:c9:b5:01:c1:f0:10:de:bb:42: 96:a5:63:39:c5:74:ad:23:9b:13:52:cd:71:6e:c1:02:e8:66: ab:c8:75:79:e2:b0:28:b4:50:c3:4c:73:67:66:ef:6f:70:97: b9:25:a1:9d:b5:ac:3f:9a:e2:a1:c4:0a:36:b2:da:aa:8b:4c: 16:8b:40:db:ce:fa:2d:3b:b0:10:ce:e0:9c:d8:9b:40:9a:43: 56:d5:51:3b:0f:29:29:a9:00:45:89:79:d1:30:6c:85:e0:cf: e1:cb:b8:3a:f7:64:f3:b9:05:c0:a2:80:f2:a6:b6:b3:f2:3a: 79:0a:16:51:4f:b7:60:57:e2:7c:9b:f0:71:59:9e:99:ca:9b: 20:3f:d9:74:24:60:ab:52:b4:65:ff:36:f1:11:52:4d:d4:68: 9d:a0:da:0b:a0:76:6b:46:24:1f:0b:f5:59:d2:a0:c3:90:df: 6e:21:0d:ce:14:66:b2:35:ab:a1:b3:89:dd:15:5f:0a:fd:41: 62:b7:e8:32:de:91:b9:6e:a7:79:dd:75:25:09:26:4f:14:01: cf:eb:5e:01:a6:21:02:27:d9:36:f4:6a:1f:f5:1b:86:86:bd: 60:25:af:98:8c:3f:09:9b:b0:67:3a:a2:01:46:bf:54:b2:5e: 49:3a:ef:38 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAvh5hEZRzXe3gy/Drt/2CDP749YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKEJGODhCNUIxRTU5QkI5RUNDMDYzN0JGODZDMUExM0RBMjg3RDk5RTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq7YcEB2pA+g0KC6znFWAOIhzn r445I0reOY1zl/GvsTZX4uMSYvGctORQhrHIFQ2IQMTzYcvWdJM+SzmPB+YFrlbh vkuxzhuAnzoTPuqNW73tyCu06cm4aOE62iKpxH/Vz8DLEirx1EZq9sg9TbulKMaz V5KwBVfjcIvQfDRLq/fEz79PBoZQwRNiiNNKpG5s65bAd7bdhzzoKNNW39/roJsx 4zVOinLxmpFYAU24CPFlxjyPCZjNPZ0R0QLHT1BYdvQjUfzVmcGFBDHNVkYQ8wpn JdYEZkFjQGC5ENi+1E0kNtJEWrfU5lOo4XsnhlRNEA5feSvgEpVmjFtYHdXXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUv4i1seWbuezAY3v4bBoT2ih9meQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3ODY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWYwDQYJKoZIhvcNAQELBQADggEBAGRs K189W4heHMm1AcHwEN67QpalYznFdK0jmxNSzXFuwQLoZqvIdXnisCi0UMNMc2dm 729wl7kloZ21rD+a4qHECjay2qqLTBaLQNvO+i07sBDO4JzYm0CaQ1bVUTsPKSmp AEWJedEwbIXgz+HLuDr3ZPO5BcCigPKmtrPyOnkKFlFPt2BX4nyb8HFZnpnKmyA/ 2XQkYKtStGX/NvERUk3UaJ2g2gugdmtGJB8L9VnSoMOQ324hDc4UZrI1q6Gzid0V Xwr9QWK36DLekblup3nddSUJJk8UAc/rXgGmIQIn2Tb0ah/1G4aGvWAlr5iMPwmb sGc6ogFGv1SyXkk67zg= -----END CERTIFICATE-----Generated at Sat Jul 5 03:52:38 2025 by rpki-client