$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198733.roa File: AS198733.roa (raw, json) Hash identifier: neOZlEwcX13Ufq4TthbP6o7f+V3lGwU1pY3oG41KevE= Subject key identifier: AE:94:3B:F9:01:17:03:0F:F4:E8:82:8A:7A:0F:C1:39:20:EF:72:E1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7743D855A629489D73F47CEAE8084DBF81FE39EA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198733.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 198733 IP address blocks: 2a05:dfc1:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:43:d8:55:a6:29:48:9d:73:f4:7c:ea:e8:08:4d:bf:81:fe:39:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=AE943BF90117030FF4E8828A7A0FC13920EF72E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1a:c8:a4:81:b3:95:a2:1c:fa:54:85:19:b1: b0:18:5f:b1:1f:c7:be:c7:d9:ca:d9:61:95:6c:78: a5:24:30:9b:e7:b2:a4:2a:a6:c6:23:d4:db:96:93: b7:a2:e5:a7:18:aa:5d:ef:3c:f3:5a:67:21:b8:80: 83:a2:60:82:f1:07:45:d8:ce:90:94:9b:c1:3a:89: c4:77:b7:3e:2f:fc:0d:f8:97:03:23:b3:50:67:92: 48:79:a7:25:28:f5:90:2f:34:b7:61:5f:61:7c:2f: 3f:9d:8b:82:7d:a6:0f:cc:e5:5c:1f:49:4a:c9:5c: 62:b9:5b:bf:80:c2:68:ea:d4:00:42:84:aa:2b:ae: da:46:0e:3e:56:42:ea:98:9f:76:24:b8:00:8e:72: e2:5f:a1:19:94:9b:a2:b8:22:53:21:be:9a:d8:45: c3:20:a0:00:5e:8a:94:55:de:97:12:41:4f:21:36: c2:e4:e8:ed:2b:4d:98:e0:b4:33:d2:d1:43:2d:1c: ca:2e:69:31:2c:e3:92:78:7e:3b:65:90:46:39:3b: a2:18:23:f7:12:a8:dd:19:6d:58:39:30:20:fe:a2: 92:4c:e1:ea:6d:61:73:1a:a1:cd:12:23:01:68:b6: 43:d2:de:16:44:9e:d2:88:1c:65:d2:40:a3:01:bf: ed:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:94:3B:F9:01:17:03:0F:F4:E8:82:8A:7A:0F:C1:39:20:EF:72:E1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198733.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3400::/40 Signature Algorithm: sha256WithRSAEncryption eb:01:53:18:56:af:7d:a9:dd:01:43:66:7d:2b:a4:93:17:20: f1:3e:6a:d5:ef:6c:c6:1f:e5:bc:9c:24:b8:fb:be:59:a8:20: 99:04:d6:06:64:85:e3:2c:8e:ee:41:81:86:ee:2a:d1:a7:df: aa:1f:6d:7a:c6:bf:16:ca:0b:32:2b:25:07:26:91:3b:91:4d: 6d:9a:b1:c6:e0:34:45:0a:e2:3a:cf:b8:da:50:59:ff:d9:03: 47:53:5c:76:21:af:2f:f9:7a:70:cf:25:79:39:4a:89:cd:28: dc:06:ca:e7:50:28:c6:31:e9:60:6e:cc:3e:74:a4:a9:ce:92: 72:3c:3b:df:97:aa:7a:ef:a6:c9:ca:95:6a:c6:85:f8:1e:27: 45:33:31:e8:a1:f3:1a:10:d1:4a:11:d7:07:29:40:0e:92:f3: b0:7d:b0:c7:b9:9d:76:3d:5e:d2:32:8b:a6:b6:5d:1a:45:a6: 84:36:34:87:ff:2f:b2:66:f3:c4:10:46:09:e9:92:24:0f:2e: 88:4c:50:ea:8f:5d:0f:cc:66:af:41:ab:73:74:b2:ef:ff:50: 4a:a6:cd:d7:f6:35:1c:08:0e:00:88:a7:55:0c:db:ad:55:82: b1:a7:67:90:34:ab:c1:60:87:e7:eb:4a:6f:fd:b4:ff:4d:d6: de:b8:be:75 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd0PYVaYpSJ1z9Hzq6AhNv4H+OeowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKEFFOTQzQkY5MDExNzAzMEZGNEU4ODI4QTdBMEZDMTM5MjBFRjcyRTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQGsikgbOVohz6VIUZsbAYX7Ef x77H2crZYZVseKUkMJvnsqQqpsYj1NuWk7ei5acYql3vPPNaZyG4gIOiYILxB0XY zpCUm8E6icR3tz4v/A34lwMjs1Bnkkh5pyUo9ZAvNLdhX2F8Lz+di4J9pg/M5Vwf SUrJXGK5W7+Awmjq1ABChKorrtpGDj5WQuqYn3YkuACOcuJfoRmUm6K4IlMhvprY RcMgoABeipRV3pcSQU8hNsLk6O0rTZjgtDPS0UMtHMouaTEs45J4fjtlkEY5O6IY I/cSqN0ZbVg5MCD+opJM4eptYXMaoc0SIwFotkPS3hZEntKIHGXSQKMBv+23AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUrpQ7+QEXAw/06IKKeg/BOSDvcuEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4NzMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTQwDQYJKoZIhvcNAQELBQADggEBAOsB UxhWr32p3QFDZn0rpJMXIPE+atXvbMYf5bycJLj7vlmoIJkE1gZkheMsju5BgYbu KtGn36ofbXrGvxbKCzIrJQcmkTuRTW2ascbgNEUK4jrPuNpQWf/ZA0dTXHYhry/5 enDPJXk5SonNKNwGyudQKMYx6WBuzD50pKnOknI8O9+XqnrvpsnKlWrGhfgeJ0Uz Meih8xoQ0UoR1wcpQA6S87B9sMe5nXY9XtIyi6a2XRpFpoQ2NIf/L7Jm88QQRgnp kiQPLohMUOqPXQ/MZq9Bq3N0su//UEqmzdf2NRwIDgCIp1UM261VgrGnZ5A0q8Fg h+frSm/9tP9N1t64vnU= -----END CERTIFICATE-----Generated at Sat Jul 5 04:05:52 2025 by rpki-client