$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198663.roa File: AS198663.roa (raw, json) Hash identifier: 0cMt3teKh93nRF2zU0XJ60Dwj86Zd2X6FZFIO7rRu/U= Subject key identifier: 41:FF:BB:8C:4B:F1:3B:34:94:0B:23:E6:35:BC:ED:8D:5A:A0:F6:2A Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3E8F26E6830549759CE0BD9D40856D2816ACD07E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198663.roa Signing time: Fri 04 Jul 2025 06:53:22 +0000 ROA not before: Fri 04 Jul 2025 06:48:22 +0000 ROA not after: Fri 03 Jul 2026 06:53:22 +0000 asID: 198663 IP address blocks: 2a05:dfc1:2f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:8f:26:e6:83:05:49:75:9c:e0:bd:9d:40:85:6d:28:16:ac:d0:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:22 2025 GMT Not After : Jul 3 06:53:22 2026 GMT Subject: CN=41FFBB8C4BF13B34940B23E635BCED8D5AA0F62A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:96:61:33:9a:3a:6b:8d:26:a6:e1:81:75:12: fd:77:fe:d3:83:1f:24:1a:d4:f9:c9:4a:fd:aa:66: b8:1d:ee:e4:f0:2a:87:8f:6e:22:ce:33:22:07:ed: f5:92:3a:bf:3f:25:1b:b7:83:94:a8:96:49:b0:99: d8:d1:65:48:e3:e2:0c:92:ee:6f:37:20:f7:bd:34: d0:ab:ad:ae:43:f8:bf:90:22:44:f8:16:fd:6d:7a: bf:98:8c:a2:d2:ed:09:b9:16:f7:c8:cc:1d:fc:f5: df:e6:1e:b8:4b:8a:a4:23:d8:e0:0c:3b:00:38:25: 81:17:f2:a1:0a:cb:23:7e:f1:5c:40:23:88:94:38: 6a:e1:a7:cc:dc:2f:d5:f4:83:e5:c6:90:b6:e5:54: a7:be:6a:f2:18:ce:f9:ca:0f:39:d4:36:ce:07:e3: 89:52:26:4d:ee:f5:a5:a9:21:d1:0e:ec:d5:20:86: 57:da:8a:6b:a8:34:54:0d:17:67:0b:9a:28:07:38: 53:83:16:61:8b:e6:de:44:fd:61:fd:8d:0b:e4:12: fd:99:ac:b3:06:b4:50:bb:f6:d4:d3:18:61:67:1a: 7c:d8:73:c7:6f:94:5e:d6:dd:0d:88:88:c0:52:c6: 23:fb:74:a9:5e:dc:2c:94:be:22:aa:cb:20:55:12: 3f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:FF:BB:8C:4B:F1:3B:34:94:0B:23:E6:35:BC:ED:8D:5A:A0:F6:2A X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198663.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2f00::/40 Signature Algorithm: sha256WithRSAEncryption 6a:e3:84:24:fd:31:72:91:27:d0:1f:4d:71:62:f3:20:7d:02: b2:3d:5d:35:4f:d1:3e:4b:c4:fc:fa:94:8a:01:35:7e:b7:cd: 39:e5:e8:78:24:06:70:08:59:59:94:ca:55:e3:e1:aa:ed:e4: d3:e8:98:81:d2:27:4a:43:23:68:f0:5d:f9:14:37:3c:e0:b3: 20:3c:d0:11:0b:dc:36:30:74:c7:fa:9d:a0:42:e2:3c:11:49: fc:dd:00:1a:55:68:1c:42:ce:12:ab:dc:97:3a:37:dc:d7:5c: 8c:23:91:d3:41:66:07:e6:eb:ef:05:3e:1e:54:16:ca:de:6b: ae:ee:04:30:3e:b4:04:67:61:c1:a2:31:90:f8:4d:75:2e:1e: 6b:c7:38:c7:b7:57:e7:6c:0a:7b:04:bf:94:03:ad:f7:3d:63: 3f:be:1d:3c:17:61:b6:8c:db:20:62:f3:ac:90:79:11:54:ef: 2f:9f:5b:99:56:74:ea:7b:7f:33:a9:f4:2b:74:24:29:68:36: 1c:5c:4c:27:99:c1:40:22:70:91:44:26:a6:03:39:57:15:a0: 9a:1c:55:63:b2:a2:88:66:0c:c2:09:ef:b0:5e:98:86:63:9e: b9:5a:9c:9c:d4:40:9e:0b:8a:5c:a5:0d:e9:f0:fb:47:e9:61: ac:e0:43:93 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPo8m5oMFSXWc4L2dQIVtKBas0H4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjJaFw0yNjA3MDMwNjUzMjJaMDMxMTAvBgNV BAMTKDQxRkZCQjhDNEJGMTNCMzQ5NDBCMjNFNjM1QkNFRDhENUFBMEY2MkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQColmEzmjprjSam4YF1Ev13/tOD HyQa1PnJSv2qZrgd7uTwKoePbiLOMyIH7fWSOr8/JRu3g5SolkmwmdjRZUjj4gyS 7m83IPe9NNCrra5D+L+QIkT4Fv1ter+YjKLS7Qm5FvfIzB389d/mHrhLiqQj2OAM OwA4JYEX8qEKyyN+8VxAI4iUOGrhp8zcL9X0g+XGkLblVKe+avIYzvnKDznUNs4H 44lSJk3u9aWpIdEO7NUghlfaimuoNFQNF2cLmigHOFODFmGL5t5E/WH9jQvkEv2Z rLMGtFC79tTTGGFnGnzYc8dvlF7W3Q2IiMBSxiP7dKle3CyUviKqyyBVEj+FAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUQf+7jEvxOzSUCyPmNbztjVqg9iowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4NjYzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwS8wDQYJKoZIhvcNAQELBQADggEBAGrj hCT9MXKRJ9AfTXFi8yB9ArI9XTVP0T5LxPz6lIoBNX63zTnl6HgkBnAIWVmUylXj 4art5NPomIHSJ0pDI2jwXfkUNzzgsyA80BEL3DYwdMf6naBC4jwRSfzdABpVaBxC zhKr3Jc6N9zXXIwjkdNBZgfm6+8FPh5UFsrea67uBDA+tARnYcGiMZD4TXUuHmvH OMe3V+dsCnsEv5QDrfc9Yz++HTwXYbaM2yBi86yQeRFU7y+fW5lWdOp7fzOp9Ct0 JCloNhxcTCeZwUAicJFEJqYDOVcVoJocVWOyoohmDMIJ77BemIZjnrlanJzUQJ4L ilylDenw+0fpYazgQ5M= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:05 2025 by rpki-client