$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198969.roa File: AS198969.roa (raw, json) Hash identifier: wrBPJS0dXyZYULgyHg8KvZi6JjSXpMDrDr4ui+YXwhk= Subject key identifier: 89:BC:D9:38:9B:49:DC:0D:C7:62:99:B6:11:B7:93:35:C4:30:51:24 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7C73831B0A384D6E7F59D6A45A4E2961D041DBC1 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198969.roa Signing time: Fri 04 Jul 2025 06:52:58 +0000 ROA not before: Fri 04 Jul 2025 06:47:58 +0000 ROA not after: Fri 03 Jul 2026 06:52:58 +0000 asID: 198969 IP address blocks: 2a05:dfc1:1700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:73:83:1b:0a:38:4d:6e:7f:59:d6:a4:5a:4e:29:61:d0:41:db:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:58 2025 GMT Not After : Jul 3 06:52:58 2026 GMT Subject: CN=89BCD9389B49DC0DC76299B611B79335C4305124 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6d:16:cb:c6:99:0e:3f:a7:2a:46:d7:eb:25: 5f:ac:43:42:14:40:41:58:53:04:6d:7e:65:78:23: c2:4f:33:e1:be:33:18:7c:84:b5:2c:2d:de:12:00: 1a:53:0e:ae:9c:1c:45:45:73:0b:64:bd:60:06:e6: ba:53:fb:45:2f:ce:7b:e3:fc:97:d0:af:3b:03:66: 3a:1f:86:d4:73:0b:fc:48:64:42:03:c3:97:8f:13: fb:0e:76:0e:42:7b:ec:0f:a1:3b:4f:4e:b1:03:c8: e6:98:31:2d:fb:2f:c6:98:9e:53:09:0b:f1:69:7c: 44:31:97:75:11:ff:e9:b9:df:93:85:53:fa:c5:30: bd:fc:14:c4:03:69:5f:19:a5:4c:58:11:61:c3:94: de:d6:57:34:17:74:1b:87:52:9a:cd:7c:2f:bf:a2: ba:81:1c:00:04:78:03:d2:15:ce:f9:88:60:50:9e: d3:1e:b2:7f:73:fa:bc:61:66:76:55:69:8b:f9:94: f9:48:4f:7c:e6:84:97:51:5e:db:49:ef:6c:cf:8f: 6a:2a:f0:e6:0a:80:ea:45:bc:e7:30:31:85:db:71: 03:f6:62:96:a4:5f:36:81:96:fa:7c:ad:68:91:a6: 24:09:4b:5b:5e:d2:04:b1:97:f8:d3:21:3c:52:1d: c7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BC:D9:38:9B:49:DC:0D:C7:62:99:B6:11:B7:93:35:C4:30:51:24 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198969.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1700::/40 Signature Algorithm: sha256WithRSAEncryption c4:29:7a:8a:9b:86:78:ff:98:f9:b7:66:10:f5:83:4b:69:b1: 7f:c3:72:90:c3:33:75:66:d1:f9:f3:a4:cf:61:f2:e6:b8:07: 94:e3:d4:4b:d8:29:5d:ff:01:cb:e7:e5:e1:65:20:c9:36:61: 9a:b6:02:e4:40:df:c1:b5:c6:3e:5c:ee:d5:fb:ff:9e:d9:ae: d2:f9:3c:8c:3d:47:eb:8b:c4:45:88:c9:fc:93:19:33:d7:d5: 3c:34:16:84:68:43:3b:76:31:73:24:1f:4d:3d:84:dc:40:4c: 8f:8a:19:d6:f5:25:67:38:d6:a8:ec:cd:c6:f9:6e:ce:02:36: cc:96:d7:ad:83:75:e1:11:db:67:a4:16:31:bc:d5:d2:56:23: 9f:c9:3c:d4:80:f6:4c:cd:a2:9b:fa:15:a3:35:86:98:e7:ae: 22:6c:4c:a4:a9:ea:09:4b:57:23:58:fe:4b:eb:20:fc:b0:07: 24:17:e9:d3:92:7b:45:95:5e:30:e1:b2:26:5b:36:66:e1:05: 2c:ed:3a:fb:7c:fc:a7:87:3b:ed:22:3a:cf:72:11:ff:95:c3: 8f:6f:eb:96:ec:71:ca:de:55:6d:32:17:15:40:4f:03:05:7c: 49:0e:cd:00:dc:bb:6c:f9:5c:b5:b6:44:6b:56:8a:e5:3b:4a: 0b:8a:6d:64 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfHODGwo4TW5/WdakWk4pYdBB28EwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NThaFw0yNjA3MDMwNjUyNThaMDMxMTAvBgNV BAMTKDg5QkNEOTM4OUI0OURDMERDNzYyOTlCNjExQjc5MzM1QzQzMDUxMjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnbRbLxpkOP6cqRtfrJV+sQ0IU QEFYUwRtfmV4I8JPM+G+Mxh8hLUsLd4SABpTDq6cHEVFcwtkvWAG5rpT+0Uvznvj /JfQrzsDZjofhtRzC/xIZEIDw5ePE/sOdg5Ce+wPoTtPTrEDyOaYMS37L8aYnlMJ C/FpfEQxl3UR/+m535OFU/rFML38FMQDaV8ZpUxYEWHDlN7WVzQXdBuHUprNfC+/ orqBHAAEeAPSFc75iGBQntMesn9z+rxhZnZVaYv5lPlIT3zmhJdRXttJ72zPj2oq 8OYKgOpFvOcwMYXbcQP2YpakXzaBlvp8rWiRpiQJS1te0gSxl/jTITxSHcdPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUibzZOJtJ3A3HYpm2EbeTNcQwUSQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTY5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRcwDQYJKoZIhvcNAQELBQADggEBAMQp eoqbhnj/mPm3ZhD1g0tpsX/DcpDDM3Vm0fnzpM9h8ua4B5Tj1EvYKV3/Acvn5eFl IMk2YZq2AuRA38G1xj5c7tX7/57ZrtL5PIw9R+uLxEWIyfyTGTPX1Tw0FoRoQzt2 MXMkH009hNxATI+KGdb1JWc41qjszcb5bs4CNsyW162DdeER22ekFjG81dJWI5/J PNSA9kzNopv6FaM1hpjnriJsTKSp6glLVyNY/kvrIPywByQX6dOSe0WVXjDhsiZb NmbhBSztOvt8/KeHO+0iOs9yEf+Vw49v65bsccreVW0yFxVATwMFfEkOzQDcu2z5 XLW2RGtWiuU7SguKbWQ= -----END CERTIFICATE-----Generated at Sat Jul 5 04:12:37 2025 by rpki-client