$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198804.roa File: AS198804.roa (raw, json) Hash identifier: S3OUAPenXjQQj5k4uoq1TJ16e1UT32qTTxZgzSVuJ/8= Subject key identifier: 6D:A7:63:FC:45:66:08:23:06:5B:61:88:08:AC:C6:58:DC:2F:3A:99 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 42EAF25076636785FFB7F061C8FD29A76BAFBA1F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198804.roa Signing time: Fri 05 Jun 2026 07:12:09 +0000 ROA not before: Fri 05 Jun 2026 07:07:09 +0000 ROA not after: Fri 04 Jun 2027 07:12:09 +0000 asID: 198804 IP address blocks: 2a05:dfc1:2e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Jun 2026 16:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ea:f2:50:76:63:67:85:ff:b7:f0:61:c8:fd:29:a7:6b:af:ba:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:09 2026 GMT Not After : Jun 4 07:12:09 2027 GMT Subject: CN=6DA763FC45660823065B618808ACC658DC2F3A99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:7e:72:34:f7:fe:2e:68:eb:95:4c:c1:b0:b2: cb:85:12:e5:7a:f0:02:85:2b:9b:b3:d1:89:b9:9c: da:8e:b2:fc:5d:a2:5b:cb:7b:14:ea:6a:b8:22:ef: d0:2f:60:e7:3a:15:37:2b:36:a8:85:52:95:0e:b9: 1c:d6:91:2c:e9:dd:97:fc:50:82:89:b5:58:c1:65: db:4f:40:08:78:43:f3:b4:b9:78:b7:4f:e2:a0:e2: 77:55:ff:87:11:41:ab:31:62:6a:08:8d:45:a5:bc: 6e:32:32:60:ca:15:51:6a:9b:ad:dc:b7:03:a0:ca: af:1d:ed:04:ea:20:2c:58:e1:60:83:a6:13:c1:ed: 13:33:60:ce:6a:33:ff:9a:d5:b9:de:44:0e:bc:e3: 68:5b:c7:fc:e7:24:70:c9:93:6e:80:00:f0:6e:fe: ba:a4:ae:64:61:f0:0c:61:f7:7f:70:8a:33:1e:22: d6:38:f7:5d:de:1f:43:62:c4:49:3f:be:3b:a7:60: 5e:fb:07:34:4a:72:f2:22:59:2a:2d:8e:d0:27:34: 56:ca:73:ea:b3:b8:d2:12:a5:6c:db:47:73:35:b4: 31:fd:13:38:3b:cd:d3:ee:c0:d3:e6:2b:44:9c:73: 5a:31:ad:6b:86:8d:51:73:b0:26:30:b0:6c:83:fe: 4b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:A7:63:FC:45:66:08:23:06:5B:61:88:08:AC:C6:58:DC:2F:3A:99 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198804.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2e00::/40 Signature Algorithm: sha256WithRSAEncryption 8d:59:ac:4e:d5:c4:6c:1d:46:c8:80:21:6a:10:a9:43:03:2a: 29:05:81:38:74:b4:5d:f7:e8:ba:ee:03:2b:08:9f:a8:a8:fd: ae:7b:72:d2:2b:83:3b:75:9a:03:06:c1:b2:1b:92:72:89:ef: 3a:9d:68:b8:66:98:bf:7b:e4:e9:a0:32:9b:e6:9d:1b:ea:96: 1c:d6:6e:fe:cb:a6:cb:2a:bd:05:b3:0a:93:f9:b7:b4:7e:8f: 91:54:2e:1b:f3:7b:99:14:56:bb:75:6e:1d:8b:ef:20:0a:7e: 9f:8d:de:d5:c7:9a:16:68:de:92:b8:76:a1:89:79:a1:00:59: e8:9b:62:7f:d5:e3:5c:b4:b3:fd:3c:af:39:58:9b:23:b5:a5: fe:db:b0:eb:c4:c2:ab:e5:db:bd:cc:f6:53:63:b4:27:56:d9: 98:a2:99:34:1c:bb:11:b9:b4:ad:fe:8d:fd:5c:57:c3:82:ae: 07:d3:a2:52:d0:09:09:cc:9b:5b:1a:fb:a6:33:0a:5d:53:a0: 82:60:1f:bc:72:42:45:4a:93:f2:c9:6f:8b:7c:48:c3:8d:09: 2b:6b:ee:af:55:47:8d:a3:bc:a0:a9:01:fa:4d:9c:2f:1e:08: 50:cb:bf:2e:ba:f5:ac:8d:92:78:30:26:a6:e7:4f:cc:72:95: 21:61:59:37 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQuryUHZjZ4X/t/BhyP0pp2uvuh8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDlaFw0yNzA2MDQwNzEyMDlaMDMxMTAvBgNV BAMTKDZEQTc2M0ZDNDU2NjA4MjMwNjVCNjE4ODA4QUNDNjU4REMyRjNBOTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmfnI09/4uaOuVTMGwssuFEuV6 8AKFK5uz0Ym5nNqOsvxdolvLexTqargi79AvYOc6FTcrNqiFUpUOuRzWkSzp3Zf8 UIKJtVjBZdtPQAh4Q/O0uXi3T+Kg4ndV/4cRQasxYmoIjUWlvG4yMmDKFVFqm63c twOgyq8d7QTqICxY4WCDphPB7RMzYM5qM/+a1bneRA6842hbx/znJHDJk26AAPBu /rqkrmRh8Axh939wijMeItY4913eH0NixEk/vjunYF77BzRKcvIiWSotjtAnNFbK c+qzuNISpWzbR3M1tDH9Ezg7zdPuwNPmK0Scc1oxrWuGjVFzsCYwsGyD/kulAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUbadj/EVmCCMGW2GICKzGWNwvOpkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4ODA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwS4wDQYJKoZIhvcNAQELBQADggEBAI1Z rE7VxGwdRsiAIWoQqUMDKikFgTh0tF336LruAysIn6io/a57ctIrgzt1mgMGwbIb knKJ7zqdaLhmmL975OmgMpvmnRvqlhzWbv7LpssqvQWzCpP5t7R+j5FULhvze5kU Vrt1bh2L7yAKfp+N3tXHmhZo3pK4dqGJeaEAWeibYn/V41y0s/08rzlYmyO1pf7b sOvEwqvl273M9lNjtCdW2ZiimTQcuxG5tK3+jf1cV8OCrgfTolLQCQnMm1sa+6Yz Cl1ToIJgH7xyQkVKk/LJb4t8SMONCStr7q9VR42jvKCpAfpNnC8eCFDLvy669ayN kngwJqbnT8xylSFhWTc= -----END CERTIFICATE-----Generated at Fri Jun 5 23:33:58 2026 by rpki-client