$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198383.roa File: AS198383.roa (raw, json) Hash identifier: /6O5WxK7+w2hv26dGP1J6TTfh18dXMhwASWV/BWJCcc= Subject key identifier: 32:7B:32:E4:7A:66:1A:AB:41:03:B4:1B:D5:51:15:52:58:2B:0F:0E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2A059033D6E79B7585E71448F684C6643822F848 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198383.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 198383 IP address blocks: 2a05:dfc1:4b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:05:90:33:d6:e7:9b:75:85:e7:14:48:f6:84:c6:64:38:22:f8:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=327B32E47A661AAB4103B41BD5511552582B0F0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:82:fd:8f:2b:f9:26:32:a8:32:84:e5:7e:44: cd:c5:44:dc:05:53:db:35:12:0c:53:be:93:39:69: e2:7d:cf:a5:46:da:da:9f:bd:40:97:2b:0a:22:1c: 02:1a:9b:9f:d5:da:b3:ae:07:95:51:41:3b:8b:6f: 46:21:3d:d1:82:38:77:b3:46:28:1a:fd:a2:4d:24: a9:65:1b:61:f2:77:30:2f:2c:1a:ff:77:c9:f5:bb: 74:a7:3b:2f:bf:bb:d6:7f:51:a8:57:3c:dd:42:3a: 9b:04:70:e1:5a:e2:a4:76:e0:27:e7:9b:cd:58:89: 4d:d3:ae:82:38:90:4a:e6:fd:b2:1f:99:d6:88:1a: 9c:8e:5d:91:82:9f:2a:25:a1:d5:80:2e:1f:48:b3: e5:65:d3:ae:e0:42:11:f6:e3:24:07:df:27:ea:51: fb:d6:ff:1c:56:59:3d:67:b3:39:11:ad:21:26:af: 5f:75:31:1b:e7:8b:c4:f9:a2:24:48:18:85:f7:ea: 96:b8:ff:89:ab:b7:15:be:d6:bb:8a:3e:eb:17:60: de:f6:43:57:ef:6d:73:dc:9d:65:b3:17:f3:6d:a3: 96:d6:77:a2:62:ed:2e:49:8e:2d:2c:33:d4:1d:7a: 4d:66:49:cc:d3:d1:9b:03:3f:18:e2:b7:47:3c:39: 9a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7B:32:E4:7A:66:1A:AB:41:03:B4:1B:D5:51:15:52:58:2B:0F:0E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198383.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4b00::/40 Signature Algorithm: sha256WithRSAEncryption 03:74:63:93:05:f6:09:3f:2f:d8:f9:b3:69:4c:ba:9e:2c:46: db:82:d9:63:e4:65:11:e5:28:57:d0:96:65:0d:f5:4b:94:66: 98:d1:4c:df:9e:fe:d2:79:99:56:c8:8c:6f:e4:a9:68:47:e6: c3:73:d5:59:61:9e:b3:2c:23:c2:dd:ed:58:87:cf:c0:42:9a: 89:26:9e:47:ca:57:80:2b:8e:c0:b2:a8:1b:2a:ba:c5:b1:db: 32:a8:39:e0:cf:52:e4:2f:d6:34:40:77:24:4e:d3:61:55:ff: 72:af:62:d0:6e:f9:28:bf:08:13:60:5b:5a:7c:95:97:05:39: 0d:ec:ff:aa:56:aa:b4:4d:6a:1d:da:e2:a9:82:75:f3:4f:45: 1b:ed:2a:ff:4f:9c:e2:ac:04:47:2f:8d:d5:b4:65:e5:d2:4a: 4c:73:8c:a6:91:27:6e:73:8c:44:5f:db:2b:88:d8:eb:7a:41: 27:9f:13:b8:17:e1:1b:35:e4:f8:41:fd:67:1b:8c:28:69:e0: cb:83:9c:59:10:9c:7d:f3:80:eb:63:46:4b:29:bf:8a:91:cd: 65:9a:ab:cc:a9:d5:aa:44:74:ed:bb:89:41:f7:99:65:85:2e: 1d:5f:57:16:63:57:bf:fc:31:77:4c:4e:a1:50:83:a9:f6:56: 8c:a7:4e:fc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKgWQM9bnm3WF5xRI9oTGZDgi+EgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKDMyN0IzMkU0N0E2NjFBQUI0MTAzQjQxQkQ1NTExNTUyNTgyQjBGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDggv2PK/kmMqgyhOV+RM3FRNwF U9s1EgxTvpM5aeJ9z6VG2tqfvUCXKwoiHAIam5/V2rOuB5VRQTuLb0YhPdGCOHez Riga/aJNJKllG2HydzAvLBr/d8n1u3SnOy+/u9Z/UahXPN1COpsEcOFa4qR24Cfn m81YiU3TroI4kErm/bIfmdaIGpyOXZGCnyolodWALh9Is+Vl067gQhH24yQH3yfq UfvW/xxWWT1nszkRrSEmr191MRvni8T5oiRIGIX36pa4/4mrtxW+1ruKPusXYN72 Q1fvbXPcnWWzF/Nto5bWd6Ji7S5Jji0sM9Qdek1mSczT0ZsDPxjit0c8OZptAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUMnsy5HpmGqtBA7Qb1VEVUlgrDw4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MzgzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwUswDQYJKoZIhvcNAQELBQADggEBAAN0 Y5MF9gk/L9j5s2lMup4sRtuC2WPkZRHlKFfQlmUN9UuUZpjRTN+e/tJ5mVbIjG/k qWhH5sNz1VlhnrMsI8Ld7ViHz8BCmokmnkfKV4ArjsCyqBsqusWx2zKoOeDPUuQv 1jRAdyRO02FV/3KvYtBu+Si/CBNgW1p8lZcFOQ3s/6pWqrRNah3a4qmCdfNPRRvt Kv9PnOKsBEcvjdW0ZeXSSkxzjKaRJ25zjERf2yuI2Ot6QSefE7gX4Rs15PhB/Wcb jChp4MuDnFkQnH3zgOtjRkspv4qRzWWaq8yp1apEdO27iUH3mWWFLh1fVxZjV7/8 MXdMTqFQg6n2VoynTvw= -----END CERTIFICATE-----Generated at Sat Jul 5 03:58:34 2025 by rpki-client