$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198714.roa File: AS198714.roa (raw, json) Hash identifier: zJmQdAGkuYw36y8XBhf88Al8RFtfrB2k+iOqU108nZA= Subject key identifier: FE:EA:F0:52:D8:61:C3:FD:0B:79:0B:BD:EA:1B:D6:26:81:08:F2:64 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 12F63FBD625986155D8C11A9D2EDFDCCC51578B3 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198714.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 198714 IP address blocks: 2a05:dfc1:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:f6:3f:bd:62:59:86:15:5d:8c:11:a9:d2:ed:fd:cc:c5:15:78:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=FEEAF052D861C3FD0B790BBDEA1BD6268108F264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:42:11:cd:ea:63:f0:69:04:3e:c7:83:00:ea: 3e:91:9e:31:77:87:21:c9:22:6d:87:6a:d1:6f:1b: 50:ea:13:e0:48:44:f2:04:8c:95:bc:88:cc:7e:2b: 60:87:ac:a2:cd:e5:05:b8:6f:b5:c0:96:8c:90:6b: e0:aa:21:88:2c:69:7a:35:c4:f3:b1:dc:db:8b:ce: 76:08:86:8c:de:5b:ee:e9:d0:d7:89:e1:44:b4:3b: 17:e5:7f:f0:1b:60:cb:c8:a9:34:b8:23:fa:ba:ed: 0b:ca:d9:3d:a5:28:28:b3:1a:51:be:48:9b:e6:26: 8d:1e:df:42:f3:0a:29:a6:a7:dd:28:6d:7e:58:5c: 29:d1:4e:4c:23:bd:eb:cf:6a:93:a7:39:36:19:c1: 0d:10:3a:99:0a:ff:3f:50:ae:e4:76:10:ef:f5:39: 38:76:5b:60:a4:f8:83:f1:8b:42:60:3f:13:dd:ce: f7:00:ab:bd:48:d0:17:b4:cb:40:87:db:70:89:8d: eb:eb:94:fc:c6:38:68:c1:47:52:02:01:bb:78:29: d0:0f:3f:cd:33:0d:f2:a6:fb:13:7e:19:62:4a:8a: 72:89:8b:7a:17:eb:30:a9:66:a7:ae:c2:70:d1:3d: c8:13:69:9d:5f:a9:3f:d1:b2:6f:31:ba:9c:21:47: 1a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EA:F0:52:D8:61:C3:FD:0B:79:0B:BD:EA:1B:D6:26:81:08:F2:64 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3800::/40 Signature Algorithm: sha256WithRSAEncryption e5:9b:4d:0b:d1:55:1f:98:ef:91:b6:7f:1f:b1:30:b2:f3:89: 16:f9:9b:c9:e1:84:a9:ee:c9:c8:8f:0c:3a:4d:93:70:5d:50: d6:07:53:3f:4a:e4:d5:61:01:87:0f:6e:2b:c4:c0:f4:84:f3: 92:27:a1:0e:33:a5:52:fa:14:16:e1:23:e7:87:dd:02:6e:30: 6e:71:cf:ca:67:2c:3e:c4:71:ff:c7:1b:48:42:4e:69:43:23: 4c:ca:e4:07:24:c6:a0:48:5e:88:b1:67:03:12:3d:f1:07:26: d6:07:e3:9f:6f:74:a5:a6:e5:aa:e7:6c:0e:6e:17:10:5f:a4: d9:2e:16:55:6d:f2:40:a9:84:c0:fc:b2:3d:a8:2f:46:4a:86: 91:b4:29:b5:c5:23:a7:ca:e1:11:15:51:2f:3b:86:74:11:b9: 6a:a1:aa:4d:42:c6:a3:38:99:db:1c:f5:4d:53:f2:0e:fd:d5: 69:97:42:ac:23:23:6c:d2:d5:bb:96:24:1f:04:11:ad:b9:7f: 29:39:87:29:76:6e:aa:9b:d4:c3:cc:6a:88:8f:09:2d:bd:c6: 68:50:f8:7a:26:48:62:98:5f:ef:3f:a0:b7:ff:81:a3:a7:7e: d7:9c:70:95:cc:48:76:fe:93:da:13:93:13:43:77:9c:69:13: ef:68:b1:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEvY/vWJZhhVdjBGp0u39zMUVeLMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKEZFRUFGMDUyRDg2MUMzRkQwQjc5MEJCREVBMUJENjI2ODEwOEYyNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTQhHN6mPwaQQ+x4MA6j6RnjF3 hyHJIm2HatFvG1DqE+BIRPIEjJW8iMx+K2CHrKLN5QW4b7XAloyQa+CqIYgsaXo1 xPOx3NuLznYIhozeW+7p0NeJ4US0Oxflf/AbYMvIqTS4I/q67QvK2T2lKCizGlG+ SJvmJo0e30LzCimmp90obX5YXCnRTkwjvevPapOnOTYZwQ0QOpkK/z9QruR2EO/1 OTh2W2Ck+IPxi0JgPxPdzvcAq71I0Be0y0CH23CJjevrlPzGOGjBR1ICAbt4KdAP P80zDfKm+xN+GWJKinKJi3oX6zCpZqeuwnDRPcgTaZ1fqT/Rsm8xupwhRxo1AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU/urwUthhw/0LeQu96hvWJoEI8mQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4NzE0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTgwDQYJKoZIhvcNAQELBQADggEBAOWb TQvRVR+Y75G2fx+xMLLziRb5m8nhhKnuyciPDDpNk3BdUNYHUz9K5NVhAYcPbivE wPSE85InoQ4zpVL6FBbhI+eH3QJuMG5xz8pnLD7Ecf/HG0hCTmlDI0zK5AckxqBI XoixZwMSPfEHJtYH459vdKWm5arnbA5uFxBfpNkuFlVt8kCphMD8sj2oL0ZKhpG0 KbXFI6fK4REVUS87hnQRuWqhqk1CxqM4mdsc9U1T8g791WmXQqwjI2zS1buWJB8E Ea25fyk5hyl2bqqb1MPMaoiPCS29xmhQ+HomSGKYX+8/oLf/gaOnfteccJXMSHb+ k9oTkxNDd5xpE+9osa0= -----END CERTIFICATE-----Generated at Sat Jul 5 03:55:29 2025 by rpki-client