$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198963.roa File: AS198963.roa (raw, json) Hash identifier: MDfZbjqCRFHR8ZTKtKsx27WVc/00OdzmZptABf8xbgQ= Subject key identifier: EF:AF:B4:B3:90:E9:E6:CE:63:E4:B9:8B:EA:F1:D6:BE:37:AE:6D:7D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 17D177240C81298E1AB7789275C9953FEBEA6C48 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198963.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 198963 IP address blocks: 2a05:dfc1:1300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d1:77:24:0c:81:29:8e:1a:b7:78:92:75:c9:95:3f:eb:ea:6c:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=EFAFB4B390E9E6CE63E4B98BEAF1D6BE37AE6D7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:18:8e:6c:a2:90:0e:8a:33:87:f0:76:9c:2d: 10:34:e9:68:f4:96:50:64:a7:49:f3:3a:e9:e2:04: 3f:4a:01:81:5a:8c:76:90:68:fe:ba:b4:88:39:a8: 16:05:43:22:4c:1d:4d:b9:27:ec:b6:4e:ab:08:61: 42:cc:5c:3e:7a:6e:66:fd:9f:1a:c2:04:ee:c9:b2: 7a:70:55:be:c8:d1:df:ab:ec:88:12:02:4e:40:13: 64:ae:88:b1:51:85:ea:10:43:d4:a6:89:b3:b9:c8: 11:90:87:bb:ee:d3:c3:d9:70:f0:74:0a:5f:d6:c7: f2:bd:50:a2:f8:af:64:ee:aa:fd:21:26:7b:9d:11: 34:11:16:af:5c:3d:fc:ff:49:6d:9c:1d:9f:05:56: 64:de:65:48:d8:a0:56:d2:ea:bd:85:33:ed:a5:3a: 4c:f2:30:99:4e:cb:12:33:c5:5e:8c:d8:26:c9:3b: de:c2:81:b9:3c:ac:a8:0f:05:b1:db:35:8a:b6:99: 38:05:2a:79:b0:67:88:cc:66:32:be:42:36:84:fc: e7:35:c2:a2:ff:2c:d6:1e:0c:82:4f:c2:0d:61:06: ee:af:97:e5:3f:b5:78:d4:7d:e1:a2:1c:c9:fe:23: 9c:75:c2:34:0e:dc:aa:03:f9:71:80:76:de:9c:e0: 88:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:AF:B4:B3:90:E9:E6:CE:63:E4:B9:8B:EA:F1:D6:BE:37:AE:6D:7D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198963.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1300::/40 Signature Algorithm: sha256WithRSAEncryption 0d:e6:c0:82:cc:24:c7:0e:6b:db:9f:1b:a8:ad:b8:38:f7:27: ce:bd:0c:7e:d5:60:d2:08:ca:79:b7:0e:2f:3a:3c:25:9a:8a: 83:5a:88:9e:53:1c:11:df:c2:5f:04:6c:b5:f2:2d:20:af:a2: 45:8f:c1:fc:91:f8:c2:3b:19:84:5c:fa:f0:4a:ee:e0:1d:c3: 69:e7:f3:1b:7e:3c:38:c4:d2:f6:83:b9:1a:b3:2b:69:38:e4: 9b:31:c3:7f:06:ad:6d:69:e1:f9:ce:08:3a:5a:d4:f8:4e:13: b9:4f:cb:2f:c3:98:0a:1a:5c:11:34:e0:58:aa:54:3a:52:5c: ea:86:29:c2:36:14:fe:90:dc:ef:3e:32:4c:f6:53:86:10:ca: 16:ed:ed:ee:a3:01:44:fd:31:6e:f7:60:f9:ef:8f:4f:2e:72: 72:d4:5f:fb:c5:63:bd:3d:b9:63:48:53:7e:94:cd:61:fc:45: ab:8a:9e:0f:b8:94:68:2c:44:f5:be:6a:f4:45:4e:23:f5:46: 7e:ba:3d:0d:f7:5c:34:ae:87:b0:ac:0b:78:8c:cf:00:98:b3: c8:36:33:27:79:4e:15:e9:44:1c:92:46:44:2e:f0:0b:43:0e: c9:24:29:a0:9a:12:56:33:5d:41:8d:af:52:a3:03:b0:ee:a2: ba:82:4a:b3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUF9F3JAyBKY4at3iSdcmVP+vqbEgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKEVGQUZCNEIzOTBFOUU2Q0U2M0U0Qjk4QkVBRjFENkJFMzdBRTZEN0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTGI5sopAOijOH8HacLRA06Wj0 llBkp0nzOuniBD9KAYFajHaQaP66tIg5qBYFQyJMHU25J+y2TqsIYULMXD56bmb9 nxrCBO7JsnpwVb7I0d+r7IgSAk5AE2SuiLFRheoQQ9SmibO5yBGQh7vu08PZcPB0 Cl/Wx/K9UKL4r2Tuqv0hJnudETQRFq9cPfz/SW2cHZ8FVmTeZUjYoFbS6r2FM+2l OkzyMJlOyxIzxV6M2CbJO97Cgbk8rKgPBbHbNYq2mTgFKnmwZ4jMZjK+QjaE/Oc1 wqL/LNYeDIJPwg1hBu6vl+U/tXjUfeGiHMn+I5x1wjQO3KoD+XGAdt6c4IhBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU76+0s5Dp5s5j5LmL6vHWvjeubX0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTYzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRMwDQYJKoZIhvcNAQELBQADggEBAA3m wILMJMcOa9ufG6ituDj3J869DH7VYNIIynm3Di86PCWaioNaiJ5THBHfwl8EbLXy LSCvokWPwfyR+MI7GYRc+vBK7uAdw2nn8xt+PDjE0vaDuRqzK2k45Jsxw38GrW1p 4fnOCDpa1PhOE7lPyy/DmAoaXBE04FiqVDpSXOqGKcI2FP6Q3O8+Mkz2U4YQyhbt 7e6jAUT9MW73YPnvj08ucnLUX/vFY709uWNIU36UzWH8RauKng+4lGgsRPW+avRF TiP1Rn66PQ33XDSuh7CsC3iMzwCYs8g2Myd5ThXpRBySRkQu8AtDDskkKaCaElYz XUGNr1KjA7DuorqCSrM= -----END CERTIFICATE-----Generated at Sat Jul 5 04:14:59 2025 by rpki-client