$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197867.roa File: AS197867.roa (raw, json) Hash identifier: r0NXaAwR5qUNH5czGdhAfNxc/cASm6iU6xniKRlzK10= Subject key identifier: 14:D6:A4:12:29:5F:3F:CA:0A:DE:B3:07:1B:C1:D4:42:03:90:A9:32 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7671F4E9673BC9BE1B197EC23DCAC761494A978F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197867.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 197867 IP address blocks: 2a05:dfc1:5d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:71:f4:e9:67:3b:c9:be:1b:19:7e:c2:3d:ca:c7:61:49:4a:97:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=14D6A412295F3FCA0ADEB3071BC1D4420390A932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3e:b8:5c:ad:3d:0b:b9:31:50:10:5f:62:86: 84:d6:69:0c:a0:2b:86:99:b7:0f:b6:36:78:14:a8: 40:5e:81:ec:f0:26:c8:72:8d:39:a9:c1:bb:1a:fc: da:81:65:8a:e6:b6:2b:11:28:f9:e9:a9:f9:39:c9: 93:4a:a3:02:77:98:f2:44:38:a1:b2:b5:86:b2:21: 45:6c:29:fa:fb:24:03:1c:43:0d:63:1f:64:d2:4a: 58:78:ee:29:19:fe:a5:34:07:7d:31:e5:f1:63:f2: e6:5b:91:23:f9:38:04:01:68:5d:e5:19:12:19:df: da:0f:3b:0a:a9:c4:8e:0c:bc:80:34:03:8b:f7:66: 5d:2c:3e:55:49:22:6f:12:4d:6d:2a:97:d7:fe:b3: 8c:1a:76:f5:af:ef:f8:0f:7f:8d:fc:c8:d5:43:c1: 07:ac:f6:3a:8a:82:83:f8:bc:9f:3e:ac:e0:ce:ac: 21:12:80:f5:ce:b1:e3:50:58:36:2c:3d:61:bf:c7: c0:5e:ac:7c:cc:3d:d9:4b:66:35:36:d4:bb:2a:31: 92:db:54:c8:ac:8f:fd:ec:c6:3f:91:13:86:2a:b8: 0c:75:f2:c2:d7:05:f9:29:c4:6a:0a:52:f9:e7:2d: 6e:83:36:56:01:90:18:29:e4:41:9a:50:88:c7:dc: 4d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D6:A4:12:29:5F:3F:CA:0A:DE:B3:07:1B:C1:D4:42:03:90:A9:32 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5d00::/40 Signature Algorithm: sha256WithRSAEncryption 2e:b6:f0:1f:35:a5:85:02:54:6e:dd:bb:c2:1a:62:a9:63:6f: 57:dc:8f:33:00:ad:c6:99:64:54:ae:00:2d:19:2a:cd:e3:4c: 97:09:76:a9:5b:59:10:14:80:4a:f4:dc:4a:c3:b2:f9:d8:fe: 29:d3:60:52:e9:f2:fb:56:91:10:05:bf:6c:cd:30:32:d5:81: b5:e0:9c:8a:2b:a4:54:7e:a9:b0:9d:64:7b:74:37:5e:10:b8: 2f:c3:92:33:56:58:68:44:6e:68:f0:67:93:05:68:1c:c8:78: 00:de:50:b4:14:b9:e5:4d:93:fc:9e:9b:05:f6:c1:0c:a8:db: 6d:4f:99:46:81:97:27:00:e8:8e:35:38:86:ef:b5:ce:fb:50: b2:ab:76:0a:90:ac:38:8b:64:84:5c:c7:0d:68:d5:e2:a7:22: 23:75:7e:b2:ef:11:27:9a:b4:4f:56:88:dc:a6:d6:6e:aa:c6: 2d:eb:79:f7:93:17:62:59:ef:2c:a9:67:cf:d8:19:36:94:c7: 25:66:1e:8c:e1:ae:cb:7a:18:e0:cc:4e:b0:62:b3:d9:5d:53: 20:27:80:4c:0c:30:58:d6:23:5a:b7:f2:97:2d:48:36:83:62: 4e:47:4d:b8:a3:c8:4a:79:36:d4:0d:5d:89:c4:6a:a9:cb:93: 34:15:65:aa -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdnH06Wc7yb4bGX7CPcrHYUlKl48wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDE0RDZBNDEyMjk1RjNGQ0EwQURFQjMwNzFCQzFENDQyMDM5MEE5MzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPPrhcrT0LuTFQEF9ihoTWaQyg K4aZtw+2NngUqEBegezwJshyjTmpwbsa/NqBZYrmtisRKPnpqfk5yZNKowJ3mPJE OKGytYayIUVsKfr7JAMcQw1jH2TSSlh47ikZ/qU0B30x5fFj8uZbkSP5OAQBaF3l GRIZ39oPOwqpxI4MvIA0A4v3Zl0sPlVJIm8STW0ql9f+s4wadvWv7/gPf438yNVD wQes9jqKgoP4vJ8+rODOrCESgPXOseNQWDYsPWG/x8BerHzMPdlLZjU21LsqMZLb VMisj/3sxj+RE4YquAx18sLXBfkpxGoKUvnnLW6DNlYBkBgp5EGaUIjH3E0FAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFNakEilfP8oK3rMHG8HUQgOQqTIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3ODY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwV0wDQYJKoZIhvcNAQELBQADggEBAC62 8B81pYUCVG7du8IaYqljb1fcjzMArcaZZFSuAC0ZKs3jTJcJdqlbWRAUgEr03ErD svnY/inTYFLp8vtWkRAFv2zNMDLVgbXgnIorpFR+qbCdZHt0N14QuC/DkjNWWGhE bmjwZ5MFaBzIeADeULQUueVNk/yemwX2wQyo221PmUaBlycA6I41OIbvtc77ULKr dgqQrDiLZIRcxw1o1eKnIiN1frLvESeatE9WiNym1m6qxi3refeTF2JZ7yypZ8/Y GTaUxyVmHozhrst6GODMTrBis9ldUyAngEwMMFjWI1q38pctSDaDYk5HTbijyEp5 NtQNXYnEaqnLkzQVZao= -----END CERTIFICATE-----Generated at Sat Jul 5 06:07:30 2025 by rpki-client