$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198057.roa File: AS198057.roa (raw, json) Hash identifier: xyMqA1eznKS4Z3PqSnsH/eDdKNn+YYAfqnU7C1dRLUs= Subject key identifier: 7F:28:29:A7:9E:54:27:AE:B4:75:2C:AE:76:71:2B:92:7B:6A:1E:6E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 32B97CF5256BF3098407B023D9394E404078CF2A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198057.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 198057 IP address blocks: 2a05:dfc1:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:b9:7c:f5:25:6b:f3:09:84:07:b0:23:d9:39:4e:40:40:78:cf:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=7F2829A79E5427AEB4752CAE76712B927B6A1E6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:28:ad:a8:a6:81:1d:7c:37:77:bd:a7:25:07: aa:67:5a:e1:22:62:3c:20:a5:9b:cc:84:5c:eb:11: 05:a2:c4:12:48:89:38:9d:d4:94:bb:ed:f5:a2:06: 2c:17:f0:68:83:22:29:53:e0:58:6b:f2:6e:d0:5f: fd:18:cb:08:53:af:12:ff:0e:c2:16:cf:85:c4:28: 6d:af:63:b4:b0:93:eb:01:0b:85:9c:16:d0:26:83: 55:56:d2:a8:ca:01:97:86:8a:41:0a:44:b0:16:5d: 51:10:59:4a:2e:da:dc:bf:fa:4f:c7:40:98:ed:ec: 2f:d6:3d:3c:c6:62:f9:81:67:7b:ed:fb:77:67:73: 48:cb:09:b8:99:aa:b8:cd:9a:ba:d5:4a:bd:19:bd: fd:ce:59:57:97:8d:90:d8:8a:af:35:72:87:f6:af: 16:55:ea:de:ce:71:5c:26:5e:3d:49:24:00:ad:55: 50:75:44:09:a6:31:79:90:d5:bd:5c:60:21:d8:50: 32:d3:f3:cd:a8:55:ec:d4:3c:f5:9c:b5:71:3a:87: af:d6:e3:ce:25:7e:ed:0a:3b:f7:fb:5c:93:ec:1a: e7:07:2d:5a:1a:d5:67:a1:00:11:ce:15:6b:69:08: c7:75:df:a9:ff:43:e1:37:fe:aa:4c:0d:62:64:12: 09:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:28:29:A7:9E:54:27:AE:B4:75:2C:AE:76:71:2B:92:7B:6A:1E:6E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198057.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7800::/40 Signature Algorithm: sha256WithRSAEncryption 37:47:a9:a1:e0:c1:bc:cd:af:2f:ef:9d:68:80:18:15:75:c3: 5a:26:9b:81:21:82:12:12:f1:29:33:b9:6b:66:ba:1b:cd:15: d3:af:3f:7b:1f:e3:6b:1b:19:89:8d:da:bb:5a:87:77:46:4e: 0d:6a:18:28:14:63:1c:7f:91:c7:15:25:c5:e7:55:ca:7a:15: 45:5f:8b:59:fb:30:3c:94:df:d8:7f:e6:be:9b:d3:0b:5f:ef: d0:fd:3e:8f:a3:d1:0f:5e:39:b5:cd:fe:89:58:87:d4:10:1d: 0f:52:86:5f:db:5b:cc:5e:76:4e:79:fd:3f:9f:4b:cd:a6:e7: d1:75:be:1a:e3:f1:e4:e8:b0:b8:da:2b:1e:49:8d:5b:23:ce: ec:03:d5:c6:ef:52:21:79:6d:6d:37:39:50:46:75:a7:35:bd: 02:03:d7:26:30:09:c8:1f:a7:1e:d6:c6:75:89:45:bd:0d:03: d6:66:c4:b2:66:62:c6:24:14:86:d9:bf:0f:45:74:96:04:86: 7f:79:03:04:c2:72:b7:aa:f2:b2:2e:b0:06:78:ea:73:8c:1f: 1c:17:49:77:e5:63:99:fc:0a:f2:4f:2c:20:7f:63:48:60:36: 96:ba:62:86:a1:3f:20:8b:91:fe:04:69:42:1c:d6:f7:83:a0: f0:84:39:41 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMrl89SVr8wmEB7Aj2TlOQEB4zyowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDdGMjgyOUE3OUU1NDI3QUVCNDc1MkNBRTc2NzEyQjkyN0I2QTFFNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZKK2opoEdfDd3vaclB6pnWuEi YjwgpZvMhFzrEQWixBJIiTid1JS77fWiBiwX8GiDIilT4Fhr8m7QX/0YywhTrxL/ DsIWz4XEKG2vY7Swk+sBC4WcFtAmg1VW0qjKAZeGikEKRLAWXVEQWUou2ty/+k/H QJjt7C/WPTzGYvmBZ3vt+3dnc0jLCbiZqrjNmrrVSr0Zvf3OWVeXjZDYiq81cof2 rxZV6t7OcVwmXj1JJACtVVB1RAmmMXmQ1b1cYCHYUDLT882oVezUPPWctXE6h6/W 484lfu0KO/f7XJPsGucHLVoa1WehABHOFWtpCMd136n/Q+E3/qpMDWJkEglrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfygpp55UJ660dSyudnErkntqHm4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MDU3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXgwDQYJKoZIhvcNAQELBQADggEBADdH qaHgwbzNry/vnWiAGBV1w1omm4EhghIS8SkzuWtmuhvNFdOvP3sf42sbGYmN2rta h3dGTg1qGCgUYxx/kccVJcXnVcp6FUVfi1n7MDyU39h/5r6b0wtf79D9Po+j0Q9e ObXN/olYh9QQHQ9Shl/bW8xedk55/T+fS82m59F1vhrj8eTosLjaKx5JjVsjzuwD 1cbvUiF5bW03OVBGdac1vQID1yYwCcgfpx7WxnWJRb0NA9ZmxLJmYsYkFIbZvw9F dJYEhn95AwTCcreq8rIusAZ46nOMHxwXSXflY5n8CvJPLCB/Y0hgNpa6YoahPyCL kf4EaUIc1veDoPCEOUE= -----END CERTIFICATE-----Generated at Sat Jul 5 04:17:34 2025 by rpki-client