$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198804.roa File: AS198804.roa (raw, json) Hash identifier: PkYwWlp+lklevNMCw1+l6LWELv+Vxk73F6m82awoP7A= Subject key identifier: E8:86:44:F5:18:81:42:A2:51:34:1F:B7:94:4F:CC:2B:FE:FA:B5:72 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1D35A14FA1B0FAF92DE33DD80817AA9E165C4EA7 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198804.roa Signing time: Fri 04 Jul 2025 06:53:11 +0000 ROA not before: Fri 04 Jul 2025 06:48:11 +0000 ROA not after: Fri 03 Jul 2026 06:53:11 +0000 asID: 198804 IP address blocks: 2a05:dfc1:2e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:35:a1:4f:a1:b0:fa:f9:2d:e3:3d:d8:08:17:aa:9e:16:5c:4e:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:11 2025 GMT Not After : Jul 3 06:53:11 2026 GMT Subject: CN=E88644F5188142A251341FB7944FCC2BFEFAB572 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c6:44:1c:0a:bc:52:b5:de:8c:4f:ae:e1:20: 5f:91:da:df:12:6d:ca:3c:6b:69:3d:f0:4b:21:4f: c9:4c:4b:a4:13:86:61:df:66:80:64:bf:66:5b:97: dc:d4:3b:99:0e:9e:dc:ad:dd:b4:c3:aa:a3:95:16: 7f:53:68:e5:f0:91:c9:c9:d1:28:0a:a0:56:c2:16: 1f:cd:2d:fd:4d:88:e8:49:f2:cc:80:59:51:86:9d: a4:d5:ea:bd:85:69:2a:12:d1:3b:26:45:10:78:d2: 6b:12:74:6d:7b:8d:6d:26:0a:7f:08:3c:c3:60:98: 12:f8:d5:fb:5b:66:77:ef:23:e7:4f:69:c4:79:f5: 16:fa:66:f7:c8:cb:25:b7:4b:c0:1a:91:1c:db:38: 1e:f6:15:a1:9a:69:bd:f2:ce:df:d2:97:4e:97:67: 1c:ea:52:24:e3:a2:a6:6a:fc:75:72:e5:4d:6a:ec: 3b:ae:aa:f4:f3:47:e3:47:32:7c:91:01:4a:d5:b6: 95:52:7b:c4:60:fa:61:18:6d:d1:f8:34:a2:ee:5d: 08:a9:ab:9f:40:f7:a9:6c:f4:13:c0:fa:d0:b2:d5: 81:fd:63:1d:7d:6a:f1:7f:9b:73:e7:2e:55:fe:d8: 76:2b:7a:18:3a:1a:2f:85:bb:ff:81:d4:e5:70:18: 24:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:86:44:F5:18:81:42:A2:51:34:1F:B7:94:4F:CC:2B:FE:FA:B5:72 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198804.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2e00::/40 Signature Algorithm: sha256WithRSAEncryption 1b:9c:d2:57:8d:de:9a:e3:ef:6b:48:d4:6a:45:ec:ac:96:42: 1e:20:17:e7:64:3d:61:5a:bb:37:19:10:31:76:f5:7f:55:b7: f1:bf:67:f8:99:80:19:12:a2:c7:a4:42:ba:69:9f:6e:88:21: 74:46:53:1c:24:68:ad:8f:20:e1:29:1f:5e:58:68:23:68:af: 99:1f:d4:ce:bc:32:28:dc:d8:4b:53:ac:56:24:97:6a:a5:54: 2b:fc:52:5d:36:59:f8:51:bc:42:54:7e:72:8d:7c:ec:c8:e0: be:98:e9:a8:96:07:2f:b5:8f:36:44:0e:1c:03:e2:83:75:9f: b8:72:5a:9c:c8:f7:36:44:76:a4:6d:49:9c:85:db:3f:c4:6c: 4e:87:22:22:15:ac:ca:19:44:15:83:56:c0:22:23:f3:49:5f: 27:fa:67:cc:1b:ff:6e:b9:c9:42:68:50:09:1e:9a:69:42:41: d1:cc:42:23:14:de:4b:db:0f:28:95:8e:d5:d3:96:ff:62:43: 93:73:2c:13:6f:32:38:15:75:15:a7:3a:c6:54:1e:ce:56:6c: e0:5e:08:90:4c:d7:da:c3:30:92:63:87:b7:69:45:aa:20:3e: 15:54:14:08:4e:44:fb:77:ff:23:7e:65:15:b8:36:1a:90:bf: 9a:5e:be:59 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHTWhT6Gw+vkt4z3YCBeqnhZcTqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTFaFw0yNjA3MDMwNjUzMTFaMDMxMTAvBgNV BAMTKEU4ODY0NEY1MTg4MTQyQTI1MTM0MUZCNzk0NEZDQzJCRkVGQUI1NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqxkQcCrxStd6MT67hIF+R2t8S bco8a2k98EshT8lMS6QThmHfZoBkv2Zbl9zUO5kOntyt3bTDqqOVFn9TaOXwkcnJ 0SgKoFbCFh/NLf1NiOhJ8syAWVGGnaTV6r2FaSoS0TsmRRB40msSdG17jW0mCn8I PMNgmBL41ftbZnfvI+dPacR59Rb6ZvfIyyW3S8AakRzbOB72FaGaab3yzt/Sl06X ZxzqUiTjoqZq/HVy5U1q7DuuqvTzR+NHMnyRAUrVtpVSe8Rg+mEYbdH4NKLuXQip q59A96ls9BPA+tCy1YH9Yx19avF/m3PnLlX+2HYrehg6Gi+Fu/+B1OVwGCQFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6IZE9RiBQqJRNB+3lE/MK/76tXIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4ODA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwS4wDQYJKoZIhvcNAQELBQADggEBABuc 0leN3prj72tI1GpF7KyWQh4gF+dkPWFauzcZEDF29X9Vt/G/Z/iZgBkSosekQrpp n26IIXRGUxwkaK2PIOEpH15YaCNor5kf1M68Mijc2EtTrFYkl2qlVCv8Ul02WfhR vEJUfnKNfOzI4L6Y6aiWBy+1jzZEDhwD4oN1n7hyWpzI9zZEdqRtSZyF2z/EbE6H IiIVrMoZRBWDVsAiI/NJXyf6Z8wb/265yUJoUAkemmlCQdHMQiMU3kvbDyiVjtXT lv9iQ5NzLBNvMjgVdRWnOsZUHs5WbOBeCJBM19rDMJJjh7dpRaogPhVUFAhORPt3 /yN+ZRW4NhqQv5pevlk= -----END CERTIFICATE-----Generated at Sat Jul 5 04:18:46 2025 by rpki-client