$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198946.roa File: AS198946.roa (raw, json) Hash identifier: 2C2dlA+NTz6Cqa5wHZFTN89zodF/VtkfPBy5fFGBzYY= Subject key identifier: BD:EA:B3:02:13:4C:34:E2:2B:7E:31:DC:DC:20:C7:72:A4:60:2A:3E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3567E5B07F69ED1AC388D8F5AE4C0E7F43541DCB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198946.roa Signing time: Fri 05 Jun 2026 07:12:48 +0000 ROA not before: Fri 05 Jun 2026 07:07:48 +0000 ROA not after: Fri 04 Jun 2027 07:12:48 +0000 asID: 198946 IP address blocks: 2a05:dfc1:3300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:67:e5:b0:7f:69:ed:1a:c3:88:d8:f5:ae:4c:0e:7f:43:54:1d:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:48 2026 GMT Not After : Jun 4 07:12:48 2027 GMT Subject: CN=BDEAB302134C34E22B7E31DCDC20C772A4602A3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:19:50:93:ac:a9:5d:7b:c9:3e:43:b2:83: 74:69:cc:fa:2e:79:52:04:8d:cd:ac:3e:b0:5e:68: 41:a8:c5:23:6c:5f:f8:b2:43:92:99:88:b4:be:96: 31:05:63:b2:df:e0:d2:8f:4e:aa:94:1d:20:29:c5: f2:cb:03:77:4c:9a:c4:c2:aa:0c:38:dc:63:42:eb: cb:4a:e8:7f:72:96:2c:3d:c1:34:c7:63:00:3d:a6: 4f:1c:f8:7f:34:4e:89:f7:88:ca:01:fa:49:3a:2d: a9:ac:c1:97:83:b8:c2:d1:2b:69:04:07:5a:90:28: bd:b6:2b:15:f2:7e:b6:93:29:74:64:95:75:c2:9f: 2d:52:f4:8d:cc:42:fc:2d:db:76:64:e3:c0:bb:7b: 0c:20:03:42:57:e7:0f:90:23:88:8d:97:6f:a7:4e: 1c:b5:bd:2e:a9:1f:08:e6:99:01:ca:5f:75:f0:6f: 35:a6:55:2c:db:89:3a:95:22:09:69:77:20:9b:97: 3f:f7:b6:cd:da:2c:33:f3:05:a8:b2:63:40:9b:13: ef:c5:f6:45:66:32:b9:13:83:8f:ba:e0:ec:67:7f: 5a:e7:30:aa:32:1f:92:e0:c0:16:d1:fc:10:b0:ef: 81:f2:c7:2d:e0:fd:e4:ca:7e:dd:af:af:bd:d4:92: ec:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:EA:B3:02:13:4C:34:E2:2B:7E:31:DC:DC:20:C7:72:A4:60:2A:3E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198946.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3300::/40 Signature Algorithm: sha256WithRSAEncryption d7:a2:07:81:e9:2b:31:f0:d8:5e:a1:a0:c2:b6:bb:e2:00:fb: 9a:b2:a3:fb:46:b5:fb:ff:6b:4c:cc:96:64:d6:5b:a6:6f:e1: 23:44:11:e9:a2:2c:b8:ef:2b:1e:7e:2b:59:8f:d3:35:43:3c: 2d:99:af:d4:4c:48:51:b5:6e:5d:1e:f6:69:46:d8:7a:6c:b3: 99:38:fa:2d:fd:37:05:8e:6c:c2:e3:64:e4:c8:22:f4:78:83: 40:26:17:8c:f7:b8:7b:8b:21:9b:bb:c2:c1:f9:7f:3f:dc:56: 68:17:be:76:d8:1e:b8:bd:44:70:3f:3a:d5:81:a7:e8:27:55: 89:cd:44:5f:4f:58:83:58:77:de:70:70:61:61:a6:69:11:8e: b5:95:4c:e7:69:f6:26:e9:ca:72:0e:e4:0e:62:cb:6c:40:15: f1:a9:53:90:a5:dc:fd:34:97:a7:1d:a7:73:9a:46:76:97:52: 45:cd:8f:81:e7:09:6b:5c:3d:68:e0:1b:f7:08:9d:fc:35:26: 91:07:ef:5f:1d:20:50:4e:55:21:56:3d:b4:ef:63:c3:57:a6: 54:ec:16:9d:bf:e0:13:7a:fe:d3:29:73:96:ce:bc:93:8f:b5: 1f:28:bb:b1:95:3d:22:0b:0a:b7:d9:82:43:51:c2:3f:8c:a7: 95:a2:12:76 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNWflsH9p7RrDiNj1rkwOf0NUHcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDhaFw0yNzA2MDQwNzEyNDhaMDMxMTAvBgNV BAMTKEJERUFCMzAyMTM0QzM0RTIyQjdFMzFEQ0RDMjBDNzcyQTQ2MDJBM0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWLRlQk6ypXXvJPkOyg3RpzPou eVIEjc2sPrBeaEGoxSNsX/iyQ5KZiLS+ljEFY7Lf4NKPTqqUHSApxfLLA3dMmsTC qgw43GNC68tK6H9yliw9wTTHYwA9pk8c+H80Ton3iMoB+kk6LamswZeDuMLRK2kE B1qQKL22KxXyfraTKXRklXXCny1S9I3MQvwt23Zk48C7ewwgA0JX5w+QI4iNl2+n Thy1vS6pHwjmmQHKX3XwbzWmVSzbiTqVIglpdyCblz/3ts3aLDPzBaiyY0CbE+/F 9kVmMrkTg4+64Oxnf1rnMKoyH5LgwBbR/BCw74Hyxy3g/eTKft2vr73UkuzbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUveqzAhNMNOIrfjHc3CDHcqRgKj4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTQ2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTMwDQYJKoZIhvcNAQELBQADggEBANei B4HpKzHw2F6hoMK2u+IA+5qyo/tGtfv/a0zMlmTWW6Zv4SNEEemiLLjvKx5+K1mP 0zVDPC2Zr9RMSFG1bl0e9mlG2Hpss5k4+i39NwWObMLjZOTIIvR4g0AmF4z3uHuL IZu7wsH5fz/cVmgXvnbYHri9RHA/OtWBp+gnVYnNRF9PWINYd95wcGFhpmkRjrWV TOdp9ibpynIO5A5iy2xAFfGpU5Cl3P00l6cdp3OaRnaXUkXNj4HnCWtcPWjgG/cI nfw1JpEH718dIFBOVSFWPbTvY8NXplTsFp2/4BN6/tMpc5bOvJOPtR8ou7GVPSIL CrfZgkNRwj+Mp5WiEnY= -----END CERTIFICATE-----Generated at Thu Jun 11 21:20:38 2026 by rpki-client