$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198981.roa File: AS198981.roa (raw, json) Hash identifier: XhhBJZXi9XfCNEjHbAgygWpXMQLzaezjsFDko3EE0kU= Subject key identifier: 95:48:53:B1:E9:EB:20:11:1E:CD:1F:B3:59:13:3E:40:11:5E:9F:64 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 720854C4F01F8F134A9A8FB7B355D000F6AC4F55 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198981.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 198981 IP address blocks: 2a05:dfc1:2b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:08:54:c4:f0:1f:8f:13:4a:9a:8f:b7:b3:55:d0:00:f6:ac:4f:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=954853B1E9EB20111ECD1FB359133E40115E9F64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4a:ff:83:85:79:8b:eb:4e:06:3d:64:fa:28: 30:ef:93:dd:62:9a:49:53:ea:1e:53:94:86:1d:34: ca:b6:fb:65:ab:61:d8:13:3e:cb:ee:7c:de:9c:8b: fc:1a:1f:22:b9:e2:c9:e5:ac:b9:8d:8f:28:c1:ec: 78:21:b6:53:07:31:15:17:62:91:0b:12:29:cb:e7: 6d:48:fb:77:0f:20:a8:cb:7b:a2:30:d1:0d:5d:82: db:a1:6e:57:c3:9c:d1:62:e8:4b:37:3a:36:b6:4e: 57:1d:10:5c:40:32:c5:d6:ef:4e:62:18:b9:df:d9: 18:37:c2:51:07:f0:ce:83:aa:15:f9:21:ae:45:25: df:8c:da:d3:7f:23:b6:bd:d6:04:12:fb:bf:61:5c: ad:e2:61:6a:9f:5f:2a:78:b5:42:04:60:e1:28:37: b1:e9:3e:72:3f:99:df:b5:71:54:18:cd:51:f3:45: 30:36:ff:f5:79:7d:85:e1:01:04:7b:64:88:3e:29: cf:a0:2a:2a:f6:94:fe:d3:58:f3:28:3b:49:72:7c: cb:fb:77:00:11:10:4f:11:15:41:7f:91:0a:0d:91: 11:f8:d2:6f:78:12:07:4e:dc:80:fe:47:b0:55:c6: c6:1e:a9:85:6d:8d:6e:5d:c8:98:64:a3:44:02:82: f4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:48:53:B1:E9:EB:20:11:1E:CD:1F:B3:59:13:3E:40:11:5E:9F:64 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2b00::/40 Signature Algorithm: sha256WithRSAEncryption 2b:ae:57:42:59:a6:9c:66:d8:ca:2e:ef:68:a1:25:d7:cd:d3: 63:36:f4:2f:b2:b8:86:52:ac:07:92:ce:18:4f:2a:d2:71:51: a3:15:ac:ea:37:43:bb:e8:42:ac:7a:84:21:7e:3d:f2:64:63: 79:c6:17:4f:4e:5b:ab:b0:29:a7:b1:2e:3d:ae:73:54:d8:75: 90:19:36:f4:3a:6e:b2:4f:70:ae:5b:ae:2f:93:a4:5e:cc:c5: 78:3d:70:cc:f3:bf:d7:c3:93:db:fd:09:dd:1a:b4:f5:24:d8: 3c:71:e2:2d:1c:c7:26:36:c4:3a:2e:b3:ff:1d:91:82:67:75: 92:b4:f1:e9:50:2b:a9:66:d0:c6:1e:f0:ca:e8:ce:f5:81:5e: 2f:7b:f7:2c:43:8e:b7:7e:a0:6e:70:35:05:7e:fb:6f:a0:e6: 3f:8d:f8:ab:c3:0f:47:d6:45:bd:ff:ef:39:81:df:13:31:fc: 2e:44:e1:5b:c5:9e:60:42:0b:cb:16:12:f6:48:52:7d:34:f7: 85:2e:88:e7:6d:df:f4:ea:23:c3:f4:a6:c5:df:5d:5c:06:6b: 3c:52:3c:3f:4f:d7:fc:3b:2f:19:10:45:4b:22:6f:00:0a:d9: 6b:77:7f:8d:9c:4d:0c:0c:6d:0f:d6:31:e1:74:85:1e:08:62: ea:50:84:c8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcghUxPAfjxNKmo+3s1XQAPasT1UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDk1NDg1M0IxRTlFQjIwMTExRUNEMUZCMzU5MTMzRTQwMTE1RTlGNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnSv+DhXmL604GPWT6KDDvk91i mklT6h5TlIYdNMq2+2WrYdgTPsvufN6ci/waHyK54snlrLmNjyjB7HghtlMHMRUX YpELEinL521I+3cPIKjLe6Iw0Q1dgtuhblfDnNFi6Es3Oja2TlcdEFxAMsXW705i GLnf2Rg3wlEH8M6DqhX5Ia5FJd+M2tN/I7a91gQS+79hXK3iYWqfXyp4tUIEYOEo N7HpPnI/md+1cVQYzVHzRTA2//V5fYXhAQR7ZIg+Kc+gKir2lP7TWPMoO0lyfMv7 dwAREE8RFUF/kQoNkRH40m94EgdO3ID+R7BVxsYeqYVtjW5dyJhko0QCgvR/AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUlUhTsenrIBEezR+zWRM+QBFen2QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTgxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSswDQYJKoZIhvcNAQELBQADggEBACuu V0JZppxm2Mou72ihJdfN02M29C+yuIZSrAeSzhhPKtJxUaMVrOo3Q7voQqx6hCF+ PfJkY3nGF09OW6uwKaexLj2uc1TYdZAZNvQ6brJPcK5bri+TpF7MxXg9cMzzv9fD k9v9Cd0atPUk2Dxx4i0cxyY2xDous/8dkYJndZK08elQK6lm0MYe8MrozvWBXi97 9yxDjrd+oG5wNQV++2+g5j+N+KvDD0fWRb3/7zmB3xMx/C5E4VvFnmBCC8sWEvZI Un0094UuiOdt3/TqI8P0psXfXVwGazxSPD9P1/w7LxkQRUsibwAK2Wt3f42cTQwM bQ/WMeF0hR4IYupQhMg= -----END CERTIFICATE-----Generated at Sat Jul 5 06:08:28 2025 by rpki-client