$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199094.roa File: AS199094.roa (raw, json) Hash identifier: kIRt68nJM0ezkUxGaL1/MIU/S4+tej0xhfMH0KhiG6s= Subject key identifier: 5B:0C:1C:EB:3C:9D:05:46:7F:74:AC:AF:A4:AF:25:9F:77:BC:C8:D8 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 77C3F688ECF5F31C1272F75DA685A1DF4C4C5B63 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199094.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 199094 IP address blocks: 2a05:dfc1:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c3:f6:88:ec:f5:f3:1c:12:72:f7:5d:a6:85:a1:df:4c:4c:5b:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=5B0C1CEB3C9D05467F74ACAFA4AF259F77BCC8D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:36:85:ef:4d:2e:3d:6a:43:27:38:81:2e: d0:d5:d6:53:c3:a8:cc:4d:7e:17:46:ce:24:99:4a: de:52:64:c6:31:a3:dc:05:a8:17:25:86:c2:9d:33: d5:7f:5d:db:8d:a0:bf:bd:e8:92:1b:05:4f:6b:eb: 7e:23:89:ac:3a:6b:f0:89:11:3e:05:cc:0b:81:1f: 38:ce:52:95:9c:12:cc:9c:51:3e:09:5c:6a:7a:4f: be:8e:02:15:fa:9d:57:ca:70:34:95:6f:0b:df:dc: a4:9e:72:c0:0a:a4:ec:2e:0c:ff:40:98:36:02:26: 94:dd:6e:b9:9b:1e:e8:ee:d2:34:61:93:06:a7:a0: 96:c9:e0:cb:87:61:09:ae:f1:91:33:f1:dc:b2:fe: 16:0a:a9:8e:c9:6c:43:67:28:88:8b:26:b7:ba:1b: 25:fd:66:e0:80:45:99:6d:21:94:53:fa:55:57:14: 02:50:64:87:55:1f:1d:4f:2c:d4:2c:0a:dd:6d:a4: c7:1a:0e:24:9d:61:ee:aa:44:59:2c:88:31:f5:72: 1b:ea:f2:47:2e:72:dc:b9:c9:a3:a4:10:83:fc:24: 7a:96:62:a8:05:68:ab:f0:47:60:8d:f0:38:c6:82: 59:1a:d0:90:e3:b3:d6:ff:ca:6c:10:33:e8:ba:6b: 04:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:0C:1C:EB:3C:9D:05:46:7F:74:AC:AF:A4:AF:25:9F:77:BC:C8:D8 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199094.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1800::/40 Signature Algorithm: sha256WithRSAEncryption 46:45:9d:cf:a6:35:cd:5e:16:e9:12:58:fb:8d:bd:10:d4:8c: 45:a8:24:63:39:fa:93:bd:84:5a:b3:8d:76:36:55:f8:e9:2b: 2b:75:b8:4d:18:e1:6c:75:9a:19:06:93:dd:dd:e3:46:dc:5a: 00:31:f2:fb:24:1b:2d:1c:67:17:b5:d4:47:8a:2e:4a:de:6e: 86:55:19:46:55:d4:9c:28:a8:41:31:a7:8c:19:e7:ee:ce:ed: 0d:99:61:e6:b4:3a:b6:4b:68:1b:14:98:96:ce:4b:0d:66:ea: e8:64:c3:97:d2:31:43:21:20:9f:f0:f5:00:c6:ca:9b:f9:32: 80:6e:8b:ae:96:c0:ae:a9:39:6f:f0:60:7d:50:10:d1:68:21: 00:10:4b:39:dd:4c:e9:03:b8:0a:eb:b8:71:21:19:f9:94:1c: 99:0e:cb:06:2e:e7:bb:f7:9b:a7:23:26:9d:81:af:18:09:43: 21:e6:95:a6:84:f2:dc:81:51:c1:88:b6:1c:28:26:7e:63:0b: 0b:72:5d:09:02:fa:ac:52:de:c2:c3:7a:ad:af:e3:b4:e1:19: 0f:7e:f0:b2:ef:af:33:51:89:f2:6c:37:f6:5c:9f:f6:a7:2b: 70:f1:da:d4:20:dd:15:61:61:2b:59:ee:80:1e:ca:bd:af:4e: d3:76:36:5c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUd8P2iOz18xwScvddpoWh30xMW2MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKDVCMEMxQ0VCM0M5RDA1NDY3Rjc0QUNBRkE0QUYyNTlGNzdCQ0M4RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+8zaF700uPWpDJziBLtDV1lPD qMxNfhdGziSZSt5SZMYxo9wFqBclhsKdM9V/XduNoL+96JIbBU9r634jiaw6a/CJ ET4FzAuBHzjOUpWcEsycUT4JXGp6T76OAhX6nVfKcDSVbwvf3KSecsAKpOwuDP9A mDYCJpTdbrmbHuju0jRhkwanoJbJ4MuHYQmu8ZEz8dyy/hYKqY7JbENnKIiLJre6 GyX9ZuCARZltIZRT+lVXFAJQZIdVHx1PLNQsCt1tpMcaDiSdYe6qRFksiDH1chvq 8kcucty5yaOkEIP8JHqWYqgFaKvwR2CN8DjGglka0JDjs9b/ymwQM+i6awRVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWwwc6zydBUZ/dKyvpK8ln3e8yNgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MDk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRgwDQYJKoZIhvcNAQELBQADggEBAEZF nc+mNc1eFukSWPuNvRDUjEWoJGM5+pO9hFqzjXY2VfjpKyt1uE0Y4Wx1mhkGk93d 40bcWgAx8vskGy0cZxe11EeKLkreboZVGUZV1JwoqEExp4wZ5+7O7Q2ZYea0OrZL aBsUmJbOSw1m6uhkw5fSMUMhIJ/w9QDGypv5MoBui66WwK6pOW/wYH1QENFoIQAQ SzndTOkDuArruHEhGfmUHJkOywYu57v3m6cjJp2BrxgJQyHmlaaE8tyBUcGIthwo Jn5jCwtyXQkC+qxS3sLDeq2v47ThGQ9+8LLvrzNRifJsN/Zcn/anK3Dx2tQg3RVh YStZ7oAeyr2vTtN2Nlw= -----END CERTIFICATE-----Generated at Sat Jul 5 04:15:06 2025 by rpki-client