$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198092.roa File: AS198092.roa (raw, json) Hash identifier: nuHQk/xvnzyl3Rr6lOjZ61eD7L3o1tA/NUa364u0y5w= Subject key identifier: B1:7A:E6:C9:CA:AD:D9:69:D8:B1:22:F8:C5:57:50:07:54:E8:B1:79 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 52640A1F43AB279DB3D294C7D978FDC831C2505B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198092.roa Signing time: Fri 04 Jul 2025 06:53:28 +0000 ROA not before: Fri 04 Jul 2025 06:48:28 +0000 ROA not after: Fri 03 Jul 2026 06:53:28 +0000 asID: 198092 IP address blocks: 2a05:dfc1:5800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:64:0a:1f:43:ab:27:9d:b3:d2:94:c7:d9:78:fd:c8:31:c2:50:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:28 2025 GMT Not After : Jul 3 06:53:28 2026 GMT Subject: CN=B17AE6C9CAADD969D8B122F8C557500754E8B179 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bd:e6:9b:af:6c:47:ca:e9:67:b5:87:fb:65: fe:c6:60:31:7d:74:c3:d0:7d:80:13:2a:37:16:29: 17:3e:a7:70:be:a4:f5:24:c4:d2:39:36:e3:3a:ba: ad:92:be:32:f7:4b:a5:17:30:c0:3a:0a:f3:23:1d: e5:d2:89:1c:2c:6d:05:86:db:ac:5f:21:20:b8:55: a9:fe:d7:d4:cb:34:dc:9b:c1:19:2a:cd:99:7f:a0: 02:87:93:fe:72:df:11:92:28:14:94:f1:20:c0:8b: 81:b1:45:04:1e:09:01:18:5d:8b:99:fa:03:bb:7e: 8b:40:cd:7e:bc:95:7f:79:3c:8c:00:25:83:b8:f5: 43:e5:28:40:9f:91:88:c8:9f:ba:bf:8e:b0:83:72: e0:17:08:a1:b5:0e:13:d9:ed:e4:02:70:ef:52:d3: 72:21:ab:20:76:43:df:34:9f:df:5d:26:09:a9:46: 39:1d:fe:3b:25:84:bb:0e:fa:7b:14:f8:29:e5:99: 21:0a:04:92:e2:fb:60:82:e4:80:59:0e:29:93:bd: f9:44:f0:ff:47:bc:d4:66:47:42:b1:b4:f9:4c:ce: 7b:f2:cd:88:ac:89:a4:f2:90:a1:69:3b:c0:95:a0: 88:a0:3e:ea:bb:6f:25:51:53:4e:d6:d1:98:03:3b: a7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7A:E6:C9:CA:AD:D9:69:D8:B1:22:F8:C5:57:50:07:54:E8:B1:79 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198092.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5800::/40 Signature Algorithm: sha256WithRSAEncryption 33:28:f5:d6:6b:fd:1e:c2:d1:2e:82:10:b7:34:7c:f4:fe:56: f8:20:b7:93:60:55:08:1a:3d:42:4e:17:0d:2b:04:45:96:32: 6e:0f:57:59:a7:05:11:47:9d:52:77:7d:49:01:33:c9:38:83: 26:1f:e0:8e:40:e5:42:95:08:54:53:bc:4a:63:db:3f:38:8d: e6:1a:c2:2c:34:71:68:aa:b6:3b:42:2e:db:6a:09:6e:cf:d8: a1:b9:88:2c:e2:fc:03:ea:2c:87:68:49:b9:9c:c6:2b:5d:21: 73:3e:b4:c2:3d:3a:c5:b6:a5:08:f9:95:98:bd:8e:72:29:aa: 05:ab:78:c4:4a:1f:a0:a6:88:71:1e:a2:1a:63:b7:93:c9:61: b3:af:65:6a:65:e2:f5:67:76:cd:10:8b:23:b1:c0:cb:01:34: b1:0b:d1:82:dd:a5:bc:ac:a9:26:04:90:88:b2:cf:07:70:9a: a2:84:86:dd:64:06:b4:8d:72:9e:12:6a:1f:d8:b4:f6:39:bc: 8d:a9:7f:51:b3:59:52:dd:16:75:0f:59:0a:0b:b7:fb:c9:fe: 60:46:a1:20:09:8e:5d:4f:e9:12:2b:83:b8:43:d0:0d:93:9e: 71:1a:c3:b2:5d:bf:cb:b2:8f:64:6e:1a:d7:cc:00:b2:19:06: ea:61:04:d6 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUmQKH0OrJ52z0pTH2Xj9yDHCUFswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjhaFw0yNjA3MDMwNjUzMjhaMDMxMTAvBgNV BAMTKEIxN0FFNkM5Q0FBREQ5NjlEOEIxMjJGOEM1NTc1MDA3NTRFOEIxNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJveabr2xHyulntYf7Zf7GYDF9 dMPQfYATKjcWKRc+p3C+pPUkxNI5NuM6uq2SvjL3S6UXMMA6CvMjHeXSiRwsbQWG 26xfISC4Van+19TLNNybwRkqzZl/oAKHk/5y3xGSKBSU8SDAi4GxRQQeCQEYXYuZ +gO7fotAzX68lX95PIwAJYO49UPlKECfkYjIn7q/jrCDcuAXCKG1DhPZ7eQCcO9S 03IhqyB2Q980n99dJgmpRjkd/jslhLsO+nsU+CnlmSEKBJLi+2CC5IBZDimTvflE 8P9HvNRmR0KxtPlMznvyzYisiaTykKFpO8CVoIigPuq7byVRU07W0ZgDO6fxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUsXrmycqt2WnYsSL4xVdQB1TosXkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MDkyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVgwDQYJKoZIhvcNAQELBQADggEBADMo 9dZr/R7C0S6CELc0fPT+Vvggt5NgVQgaPUJOFw0rBEWWMm4PV1mnBRFHnVJ3fUkB M8k4gyYf4I5A5UKVCFRTvEpj2z84jeYawiw0cWiqtjtCLttqCW7P2KG5iCzi/APq LIdoSbmcxitdIXM+tMI9OsW2pQj5lZi9jnIpqgWreMRKH6CmiHEeohpjt5PJYbOv ZWpl4vVnds0QiyOxwMsBNLEL0YLdpbysqSYEkIiyzwdwmqKEht1kBrSNcp4Sah/Y tPY5vI2pf1GzWVLdFnUPWQoLt/vJ/mBGoSAJjl1P6RIrg7hD0A2TnnEaw7Jdv8uy j2RuGtfMALIZBuphBNY= -----END CERTIFICATE-----Generated at Sat Jul 5 06:11:00 2025 by rpki-client