$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199079.roa File: AS199079.roa (raw, json) Hash identifier: En70ZC5IRKrqCAE8R9suaHWV/xmLY3+X4N0kRup4ZX0= Subject key identifier: 23:32:D4:34:9A:7E:1D:26:96:1D:C8:E1:79:8B:EB:6A:E9:42:F4:4D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 54AA5FE36BB6C9C4C7CE7B04A350CA16A9EFED67 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199079.roa Signing time: Fri 04 Jul 2025 06:52:57 +0000 ROA not before: Fri 04 Jul 2025 06:47:57 +0000 ROA not after: Fri 03 Jul 2026 06:52:57 +0000 asID: 199079 IP address blocks: 2a05:dfc1:1900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:aa:5f:e3:6b:b6:c9:c4:c7:ce:7b:04:a3:50:ca:16:a9:ef:ed:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:57 2025 GMT Not After : Jul 3 06:52:57 2026 GMT Subject: CN=2332D4349A7E1D26961DC8E1798BEB6AE942F44D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:23:53:62:18:e5:8a:39:c4:66:1d:91:63:93: f1:0e:ab:bd:b8:ee:e9:d0:a5:20:66:5c:cd:79:e1: 77:21:19:3e:87:ce:3e:18:cc:cd:e1:4f:8d:3a:28: 76:ec:0d:9c:d6:38:79:52:d8:61:cb:89:77:08:0d: b7:c2:6a:6d:6c:d3:ab:af:26:f0:ee:60:5e:13:3d: 2c:e2:0d:ed:fa:77:ba:5a:40:fb:68:ad:f1:c4:2e: e0:31:72:f6:93:fa:a1:8d:71:c3:7d:39:3e:b0:ee: 00:2c:53:45:d8:d2:73:70:59:fc:84:d8:98:f2:3b: 58:d2:2d:66:36:ec:88:98:6a:47:ab:60:59:0e:d1: d0:0b:92:7a:3c:59:37:47:26:c0:86:91:e9:5f:bd: dd:03:fd:ce:47:ac:d2:66:30:ce:d1:f8:78:e4:d2: fb:1d:03:49:e1:05:01:13:d4:18:44:43:dc:dd:6d: 44:0f:13:1f:15:9c:3c:0a:7d:0f:f7:ef:bc:7c:b5: 0d:27:58:e9:0d:33:86:0b:ec:00:c2:47:dd:3d:5d: f9:1f:57:fe:5f:02:51:ce:54:e8:8f:df:d9:d3:b4: f0:03:cf:83:8e:28:35:42:1f:bf:f1:ce:11:f5:71: 24:6b:7a:7d:bc:fc:30:66:fd:2d:7e:1b:a1:01:4f: 68:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:32:D4:34:9A:7E:1D:26:96:1D:C8:E1:79:8B:EB:6A:E9:42:F4:4D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199079.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1900::/40 Signature Algorithm: sha256WithRSAEncryption 46:6d:d1:a9:93:e8:3b:44:d1:2f:e9:38:88:cb:c6:99:7e:cc: 92:0e:d5:b3:27:dd:68:be:ab:0d:27:95:d3:77:9c:7d:4c:b4: 80:29:5b:46:de:88:9c:2b:c4:aa:7d:6a:bd:e8:39:c9:7e:53: b3:07:c9:d5:b8:df:0b:0f:26:b3:74:3d:93:17:6c:8e:2e:2b: d5:23:8e:a6:6c:b8:16:e2:22:2d:60:8f:55:f0:0c:e0:52:5e: 37:9a:47:02:d9:cf:7c:ce:12:df:6e:48:73:b9:4c:5f:de:52: 89:21:cf:f1:64:25:69:36:80:a1:15:12:dd:cf:e4:6b:54:3d: 5e:47:12:f7:74:39:70:38:11:67:17:a8:ec:d8:2e:7e:df:ea: 0f:f9:e1:49:14:6f:9e:68:de:2d:64:d0:13:5a:56:77:f3:28: 45:29:bd:07:92:0e:62:50:69:ef:f0:0a:02:5d:a8:06:b0:26: 95:b0:e1:f1:5a:75:14:3c:7a:fb:e8:58:52:0e:a7:f6:b5:cd: 5c:bf:e1:8c:2e:e6:4d:7b:b9:f5:3a:17:aa:6f:63:a9:44:4d: 9a:b4:ad:a4:a3:ca:e7:b7:80:89:90:09:d0:e1:25:a7:7a:d3: dd:68:30:04:67:e8:97:92:27:e3:7f:58:c8:a9:f4:a2:17:1d: d0:ad:3f:9d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUVKpf42u2ycTHznsEo1DKFqnv7WcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTdaFw0yNjA3MDMwNjUyNTdaMDMxMTAvBgNV BAMTKDIzMzJENDM0OUE3RTFEMjY5NjFEQzhFMTc5OEJFQjZBRTk0MkY0NEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPI1NiGOWKOcRmHZFjk/EOq724 7unQpSBmXM154XchGT6Hzj4YzM3hT406KHbsDZzWOHlS2GHLiXcIDbfCam1s06uv JvDuYF4TPSziDe36d7paQPtorfHELuAxcvaT+qGNccN9OT6w7gAsU0XY0nNwWfyE 2JjyO1jSLWY27IiYakerYFkO0dALkno8WTdHJsCGkelfvd0D/c5HrNJmMM7R+Hjk 0vsdA0nhBQET1BhEQ9zdbUQPEx8VnDwKfQ/377x8tQ0nWOkNM4YL7ADCR909Xfkf V/5fAlHOVOiP39nTtPADz4OOKDVCH7/xzhH1cSRren28/DBm/S1+G6EBT2jDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIzLUNJp+HSaWHcjheYvraulC9E0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MDc5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRkwDQYJKoZIhvcNAQELBQADggEBAEZt 0amT6DtE0S/pOIjLxpl+zJIO1bMn3Wi+qw0nldN3nH1MtIApW0beiJwrxKp9ar3o Ocl+U7MHydW43wsPJrN0PZMXbI4uK9UjjqZsuBbiIi1gj1XwDOBSXjeaRwLZz3zO Et9uSHO5TF/eUokhz/FkJWk2gKEVEt3P5GtUPV5HEvd0OXA4EWcXqOzYLn7f6g/5 4UkUb55o3i1k0BNaVnfzKEUpvQeSDmJQae/wCgJdqAawJpWw4fFadRQ8evvoWFIO p/a1zVy/4Ywu5k17ufU6F6pvY6lETZq0raSjyue3gImQCdDhJad6091oMARn6JeS J+N/WMip9KIXHdCtP50= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:04 2025 by rpki-client