$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198872.roa File: AS198872.roa (raw, json) Hash identifier: KLAogZZceTvPXB3tq6fiNZbkBL6HXkWncbKtu7br8eI= Subject key identifier: F9:81:61:0A:F4:B9:9E:55:87:BE:AE:14:6C:E0:E3:29:98:19:8D:B1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 748FB7C52AF2D52CB226C3542338F81F3B62FCE1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198872.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 198872 IP address blocks: 2a05:dfc1:4f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8f:b7:c5:2a:f2:d5:2c:b2:26:c3:54:23:38:f8:1f:3b:62:fc:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=F981610AF4B99E5587BEAE146CE0E32998198DB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:04:f1:cf:d9:93:3f:5e:b4:c7:bd:56:50:57: 27:26:58:6f:8e:4e:0e:f3:e5:87:c1:51:0b:e5:bd: 5a:4d:b8:20:dd:da:9d:3e:0f:52:e4:73:a0:3a:cc: fc:56:2d:4e:1f:45:69:52:42:83:14:27:43:63:15: 2c:56:a0:d8:29:a1:7c:9f:4f:98:7d:3d:f5:57:83: 60:36:3f:75:06:9e:d6:8e:8d:87:92:0b:c6:52:c6: 1c:df:69:df:5b:6a:65:e4:97:c7:fb:87:84:d9:bf: c0:96:e5:59:c9:e1:87:7f:7b:8d:9a:51:8a:0a:d7: 98:b8:cd:b8:da:83:7a:93:9b:e4:99:73:af:3f:c9: 8c:0e:42:4d:ea:dd:98:99:38:81:a1:20:85:f5:6a: d8:69:20:75:16:32:46:5c:d2:fe:fb:f5:8d:67:88: 5e:e0:4b:37:fd:36:65:01:ae:bd:4c:27:f4:bf:bc: 75:02:9a:b5:de:05:d6:92:97:5d:d9:db:15:c4:e9: 71:58:05:3e:90:93:b6:9c:b5:4c:80:38:86:a7:02: 8b:ff:9f:39:77:a6:f1:aa:64:36:bb:22:5e:b6:5b: 00:50:bb:c0:57:96:c9:dc:a8:7f:b1:e7:73:97:9a: 8f:d5:e2:61:6c:f9:5d:68:85:9b:8f:4f:a8:58:81: ad:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:81:61:0A:F4:B9:9E:55:87:BE:AE:14:6C:E0:E3:29:98:19:8D:B1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198872.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4f00::/40 Signature Algorithm: sha256WithRSAEncryption 2a:56:57:ab:83:b2:7a:28:8a:30:2b:f8:db:2d:16:ac:c9:28: 04:94:66:47:90:34:1b:bb:9c:cc:de:d0:67:b6:07:8e:62:af: 5e:d8:06:03:9e:0e:24:d8:9a:9f:a0:d9:b4:d8:75:4c:38:a0: e5:1a:cc:7a:74:dc:fa:80:12:59:4e:42:1d:bb:94:ba:05:96: e9:1e:f6:77:22:9d:5c:1b:16:e1:e6:70:e4:5a:a0:2c:53:88: 0b:9c:21:50:b9:d4:bf:77:60:a1:65:22:e8:e9:45:3e:04:6e: af:ed:95:7f:56:da:62:f8:49:9b:19:b0:2b:38:9c:8b:dd:98: ee:9d:b3:d3:f9:d7:68:ec:70:04:87:7a:a1:b5:e0:80:21:b9: b9:a6:65:8f:12:f8:8c:72:cc:cd:08:e0:c0:b3:96:b4:97:36: 4f:06:a3:e6:12:12:27:65:ed:b3:a5:1b:58:df:51:b7:ac:0a: 7c:ff:7c:f4:93:89:69:d8:00:8d:a3:11:ab:b8:ed:03:7b:aa: 15:97:95:16:89:ea:f6:76:c8:94:b8:56:13:7b:26:10:0e:52: a9:59:4c:8d:2d:d4:c8:e9:1e:68:e8:26:e0:b9:17:54:2f:a0: 16:60:a3:64:6d:db:0b:4e:87:3b:a7:5d:38:98:a8:ea:34:76: 4a:a8:ff:8f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdI+3xSry1SyyJsNUIzj4Hzti/OEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKEY5ODE2MTBBRjRCOTlFNTU4N0JFQUUxNDZDRTBFMzI5OTgxOThEQjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvBPHP2ZM/XrTHvVZQVycmWG+O Tg7z5YfBUQvlvVpNuCDd2p0+D1Lkc6A6zPxWLU4fRWlSQoMUJ0NjFSxWoNgpoXyf T5h9PfVXg2A2P3UGntaOjYeSC8ZSxhzfad9bamXkl8f7h4TZv8CW5VnJ4Yd/e42a UYoK15i4zbjag3qTm+SZc68/yYwOQk3q3ZiZOIGhIIX1athpIHUWMkZc0v779Y1n iF7gSzf9NmUBrr1MJ/S/vHUCmrXeBdaSl13Z2xXE6XFYBT6Qk7actUyAOIanAov/ nzl3pvGqZDa7Il62WwBQu8BXlsncqH+x53OXmo/V4mFs+V1ohZuPT6hYga0RAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU+YFhCvS5nlWHvq4UbODjKZgZjbEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4ODcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwU8wDQYJKoZIhvcNAQELBQADggEBACpW V6uDsnooijAr+NstFqzJKASUZkeQNBu7nMze0Ge2B45ir17YBgOeDiTYmp+g2bTY dUw4oOUazHp03PqAEllOQh27lLoFluke9ncinVwbFuHmcORaoCxTiAucIVC51L93 YKFlIujpRT4Ebq/tlX9W2mL4SZsZsCs4nIvdmO6ds9P512jscASHeqG14IAhubmm ZY8S+IxyzM0I4MCzlrSXNk8Go+YSEidl7bOlG1jfUbesCnz/fPSTiWnYAI2jEau4 7QN7qhWXlRaJ6vZ2yJS4VhN7JhAOUqlZTI0t1MjpHmjoJuC5F1QvoBZgo2Rt2wtO hzunXTiYqOo0dkqo/48= -----END CERTIFICATE-----Generated at Sat Jul 5 04:13:23 2025 by rpki-client