$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198231.roa File: AS198231.roa (raw, json) Hash identifier: WMO6KEStFteVCYAbtyEbMiJQjOY9HQd7yuOlI3chRH8= Subject key identifier: 06:9D:17:B5:C5:F7:93:45:BC:1F:8D:C4:9B:86:F9:B4:F3:BD:33:30 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3FF091D8120C02758D9BBE45D6480CBFD4C69340 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198231.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 198231 IP address blocks: 2a06:9f81:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:f0:91:d8:12:0c:02:75:8d:9b:be:45:d6:48:0c:bf:d4:c6:93:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=069D17B5C5F79345BC1F8DC49B86F9B4F3BD3330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d3:27:9c:dd:ff:18:51:3d:f0:e9:56:d6:8f: 7a:d8:f6:78:98:c7:b9:b8:8a:81:01:6e:8e:91:9d: 8b:2f:53:b2:26:7f:d9:b2:c6:8b:53:7a:87:6b:5d: 9d:63:a5:77:43:a5:28:80:61:08:82:bd:84:39:41: 9b:f2:4c:eb:6d:85:38:b0:cf:05:c9:31:0c:21:c7: 16:de:66:69:83:4c:2c:bf:f8:ad:1a:c7:2c:64:e2: 3c:11:b5:81:d8:e4:b2:ab:4d:3b:76:a7:d5:10:f0: 7e:88:f6:25:31:15:49:cd:14:37:54:b0:3e:69:f2: 3c:c0:d7:f6:6b:6a:dd:e3:2b:4f:2c:ad:9b:06:37: 77:d2:4d:b6:5e:f2:12:c9:5e:d9:63:29:22:f7:6e: f7:de:98:c5:26:ee:03:ee:cc:b6:6c:37:4c:9b:e1: b5:89:14:dd:d3:a8:37:67:b6:43:8b:4d:0b:9d:9c: 4f:51:0f:f9:fb:7f:50:11:59:7b:e3:2b:f5:a6:3c: 78:74:2e:47:e9:45:f0:98:93:00:3f:d6:48:64:cd: 13:2a:cc:a4:89:a6:87:bc:58:a5:3f:8d:ce:c3:0d: bc:e1:18:67:08:90:d2:39:03:fc:d5:d6:cd:44:26: 07:47:33:e6:99:11:76:b6:fe:d8:3b:47:8e:79:34: 26:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:9D:17:B5:C5:F7:93:45:BC:1F:8D:C4:9B:86:F9:B4:F3:BD:33:30 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198231.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:1100::/40 Signature Algorithm: sha256WithRSAEncryption 60:a4:b5:91:48:e1:15:29:58:50:6d:77:13:6b:f3:05:e7:b8: 80:7e:9b:40:14:c9:ca:22:4b:67:80:15:c8:bd:3b:d0:aa:cc: e1:49:4e:bf:3f:34:0c:43:da:c3:aa:a5:2a:c6:03:37:d5:81: 06:e3:c7:81:6c:ad:06:8c:9a:1b:9b:46:bc:bf:c3:64:8a:f8: 5a:7a:84:ad:ae:eb:43:14:cb:f5:80:6f:17:d1:76:dc:c0:89: 5d:3e:33:fe:a4:ac:41:31:86:c4:6d:eb:7f:39:ab:c6:c9:68: e9:ba:b4:2c:bc:ff:f0:58:23:ae:d1:0c:38:23:f9:0e:c5:d5: 36:a6:84:fb:2f:73:a0:62:65:f1:b4:1c:bc:be:aa:18:50:22: a7:bf:c3:41:5f:c2:35:48:be:85:fe:82:3f:57:4c:71:40:01: 8d:3f:0a:7a:d0:b8:ad:52:2e:7d:98:cf:ae:70:c9:7a:dd:f2: b8:ab:dc:f3:9c:62:6c:a9:39:f9:6d:2e:03:81:42:ca:37:a6: 14:ff:35:9a:af:17:6c:3e:ca:15:5b:93:ab:66:bb:82:3d:86: d9:2d:ef:8a:2d:27:7b:d1:94:21:e7:fe:9f:21:62:88:20:3b: 57:33:c4:82:77:ef:e6:e5:e7:16:ca:45:32:ce:de:e9:ef:03: 6e:1e:06:56 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUP/CR2BIMAnWNm75F1kgMv9TGk0AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKDA2OUQxN0I1QzVGNzkzNDVCQzFGOERDNDlCODZGOUI0RjNCRDMzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk0yec3f8YUT3w6VbWj3rY9niY x7m4ioEBbo6RnYsvU7Imf9myxotTeodrXZ1jpXdDpSiAYQiCvYQ5QZvyTOtthTiw zwXJMQwhxxbeZmmDTCy/+K0axyxk4jwRtYHY5LKrTTt2p9UQ8H6I9iUxFUnNFDdU sD5p8jzA1/Zrat3jK08srZsGN3fSTbZe8hLJXtljKSL3bvfemMUm7gPuzLZsN0yb 4bWJFN3TqDdntkOLTQudnE9RD/n7f1ARWXvjK/WmPHh0LkfpRfCYkwA/1khkzRMq zKSJpoe8WKU/jc7DDbzhGGcIkNI5A/zV1s1EJgdHM+aZEXa2/tg7R455NCYXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUBp0XtcX3k0W8H43Em4b5tPO9MzAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MjMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgREwDQYJKoZIhvcNAQELBQADggEBAGCk tZFI4RUpWFBtdxNr8wXnuIB+m0AUycoiS2eAFci9O9CqzOFJTr8/NAxD2sOqpSrG AzfVgQbjx4FsrQaMmhubRry/w2SK+Fp6hK2u60MUy/WAbxfRdtzAiV0+M/6krEEx hsRt6385q8bJaOm6tCy8//BYI67RDDgj+Q7F1TamhPsvc6BiZfG0HLy+qhhQIqe/ w0FfwjVIvoX+gj9XTHFAAY0/CnrQuK1SLn2Yz65wyXrd8rir3POcYmypOfltLgOB Qso3phT/NZqvF2w+yhVbk6tmu4I9htkt74otJ3vRlCHn/p8hYoggO1czxIJ37+bl 5xbKRTLO3unvA24eBlY= -----END CERTIFICATE-----Generated at Sat Jul 5 04:03:36 2025 by rpki-client