$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198786.roa File: AS198786.roa (raw, json) Hash identifier: JKXHcYK24XLlGuHX5XkGBVpcCpbmd6Yca+QL4RkIPFc= Subject key identifier: CE:55:20:95:1D:44:BD:52:BD:9E:D8:C5:34:08:68:F0:4A:8D:FA:D3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 48F1A8115BA6B3759D54AE26B7B9EF81FEED2F7B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198786.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 198786 IP address blocks: 2a05:dfc1:3500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:f1:a8:11:5b:a6:b3:75:9d:54:ae:26:b7:b9:ef:81:fe:ed:2f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=CE5520951D44BD52BD9ED8C5340868F04A8DFAD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:78:88:e4:5b:2e:69:64:6e:68:1e:12:61:04: 47:4d:17:fe:e0:41:61:13:9e:b8:a1:c0:fa:6a:8b: 80:7e:f1:02:03:ea:ad:6a:e4:c1:5b:d8:d2:ac:b8: 6d:bb:8e:2a:65:13:6d:b8:da:3c:4b:ee:ea:76:51: 57:54:ed:68:cf:40:66:58:fa:ab:e3:1a:89:79:f9: 0c:9a:f3:0b:5a:b0:4b:71:e5:79:2c:09:f9:ed:c9: 96:d0:08:af:76:b2:18:73:d4:35:1b:77:c0:0f:5d: fc:13:6f:fb:08:f6:41:d7:1a:bf:73:95:c8:2f:3b: 7e:79:d5:18:b5:c7:a8:16:28:c6:b8:f6:c9:2e:ab: 72:5b:85:96:4c:0c:96:75:de:b2:21:59:19:37:0f: 7e:f6:12:f2:ef:ba:ca:c7:78:2a:73:04:23:a0:06: d0:ab:d3:92:f2:b6:a7:21:f9:84:07:40:7f:35:58: 4b:1a:18:ac:d4:fc:7f:d4:1e:3c:34:aa:41:1d:12: 09:1e:0c:b6:02:d7:5e:65:1a:a5:35:b9:f0:e8:0f: c7:9c:8d:68:14:a1:de:de:24:11:55:fd:98:a5:d8: 91:8f:49:2d:98:c2:e5:5c:9f:16:98:8f:fb:65:6a: af:72:75:9a:5c:5b:4e:f9:4a:9c:35:e6:6b:3e:1b: 4b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:55:20:95:1D:44:BD:52:BD:9E:D8:C5:34:08:68:F0:4A:8D:FA:D3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198786.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3500::/40 Signature Algorithm: sha256WithRSAEncryption 89:04:af:7b:23:5c:9c:b8:4c:8f:f6:fc:ea:ce:05:76:78:5a: 1c:85:49:30:0e:5b:e1:38:3c:ed:7d:a3:75:ef:ed:50:19:3e: b7:20:f5:9a:a1:4a:a9:d1:1d:b4:64:72:d9:45:f7:db:92:ec: 67:f5:46:11:9e:c6:8b:17:ce:eb:b6:67:ed:d7:ca:ef:be:a1: 24:75:11:4e:7f:7f:4b:d6:b3:f0:5b:82:99:fc:d7:77:f1:0e: 55:de:77:60:0c:22:0a:f9:8c:28:0f:86:a3:ff:d3:4a:43:81: 0d:69:b2:97:b1:4c:3d:6f:5c:b6:17:1b:b1:18:8c:0b:9d:31: 5e:01:5e:37:18:bd:32:46:f8:1c:1f:41:e8:fa:3f:c1:f7:af: b4:97:4c:cf:d8:a6:d0:da:65:df:4d:f6:71:61:29:ee:27:c0: b8:84:c4:3e:9e:f1:49:ea:19:49:51:c5:25:7e:c3:d0:24:33: fa:62:dc:02:70:b1:21:d4:aa:db:ff:38:45:12:41:cf:61:93: 9d:27:d5:2a:ff:20:de:68:57:3e:42:1f:e9:f4:cc:8e:52:2d: aa:65:e0:14:51:cf:02:28:67:37:87:3c:4a:db:a8:49:7c:db: c1:a9:5a:e6:bd:c8:96:41:2a:c9:4e:b7:85:07:55:e7:67:5c: 3a:77:e9:2d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSPGoEVums3WdVK4mt7nvgf7tL3swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKENFNTUyMDk1MUQ0NEJENTJCRDlFRDhDNTM0MDg2OEYwNEE4REZBRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxeIjkWy5pZG5oHhJhBEdNF/7g QWETnrihwPpqi4B+8QID6q1q5MFb2NKsuG27jiplE2242jxL7up2UVdU7WjPQGZY +qvjGol5+Qya8wtasEtx5XksCfntyZbQCK92shhz1DUbd8APXfwTb/sI9kHXGr9z lcgvO3551Ri1x6gWKMa49skuq3JbhZZMDJZ13rIhWRk3D372EvLvusrHeCpzBCOg BtCr05Lytqch+YQHQH81WEsaGKzU/H/UHjw0qkEdEgkeDLYC115lGqU1ufDoD8ec jWgUod7eJBFV/Zil2JGPSS2YwuVcnxaYj/tlaq9ydZpcW075Spw15ms+G0t5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUzlUglR1EvVK9ntjFNAho8EqN+tMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4Nzg2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTUwDQYJKoZIhvcNAQELBQADggEBAIkE r3sjXJy4TI/2/OrOBXZ4WhyFSTAOW+E4PO19o3Xv7VAZPrcg9ZqhSqnRHbRkctlF 99uS7Gf1RhGexosXzuu2Z+3Xyu++oSR1EU5/f0vWs/Bbgpn813fxDlXed2AMIgr5 jCgPhqP/00pDgQ1pspexTD1vXLYXG7EYjAudMV4BXjcYvTJG+BwfQej6P8H3r7SX TM/YptDaZd9N9nFhKe4nwLiExD6e8UnqGUlRxSV+w9AkM/pi3AJwsSHUqtv/OEUS Qc9hk50n1Sr/IN5oVz5CH+n0zI5SLapl4BRRzwIoZzeHPErbqEl828GpWua9yJZB KslOt4UHVednXDp36S0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:18:38 2025 by rpki-client