$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199343.roa File: AS199343.roa (raw, json) Hash identifier: s/oB7swEihONXgEMvHUk6vgvEERmDMi575mVG8kwvbE= Subject key identifier: 86:F6:21:28:EC:E9:24:F9:B3:8E:5F:98:59:B5:5B:65:5B:E0:63:35 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 015EC9B83921BEABE3F20971C70AD8BBE5B4201D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199343.roa Signing time: Fri 04 Jul 2025 06:53:11 +0000 ROA not before: Fri 04 Jul 2025 06:48:11 +0000 ROA not after: Fri 03 Jul 2026 06:53:11 +0000 asID: 199343 IP address blocks: 2a0a:6040:9800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:5e:c9:b8:39:21:be:ab:e3:f2:09:71:c7:0a:d8:bb:e5:b4:20:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:11 2025 GMT Not After : Jul 3 06:53:11 2026 GMT Subject: CN=86F62128ECE924F9B38E5F9859B55B655BE06335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:76:a1:e8:b1:e6:c4:ab:87:52:5e:87:29:61: e4:6a:81:66:fd:7f:5f:a0:e5:97:96:0d:53:b4:69: bf:94:52:63:11:37:f8:75:4e:66:f2:c9:02:46:b6: c7:59:1a:19:51:8e:1c:95:e5:75:3d:07:4c:63:bb: d9:85:62:47:1e:ec:17:b6:61:fb:84:7a:f2:72:ce: 0a:7c:1d:01:e2:d9:dd:53:0a:47:a9:2f:83:56:ea: 19:37:5b:91:b5:f0:2f:ef:d0:d5:dc:68:52:cb:41: 2c:bb:66:1e:8e:15:8a:cc:4f:a7:51:29:07:87:27: 98:6b:50:4f:0f:88:a4:5c:13:34:e6:18:7a:6a:5f: d0:c1:9b:79:6b:b9:23:cf:65:48:73:80:9b:67:18: 07:bb:2a:09:b2:05:47:e0:c5:f5:1f:b7:8b:21:aa: 65:35:7a:9d:87:29:82:dd:d7:31:51:87:34:c1:38: dc:25:a2:3f:43:30:69:08:19:0d:c4:ab:a4:85:c7: 55:0e:c8:1e:40:d5:c1:b2:40:87:58:26:24:c0:99: 09:09:29:49:24:ac:19:8d:86:86:eb:b3:1d:5f:cd: bc:3b:cf:9e:2b:c7:4b:70:c5:ea:9e:67:df:5d:00: 30:64:07:2f:c2:09:03:19:eb:5d:7b:71:07:81:8f: 0c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F6:21:28:EC:E9:24:F9:B3:8E:5F:98:59:B5:5B:65:5B:E0:63:35 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199343.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9800::/40 Signature Algorithm: sha256WithRSAEncryption 2a:80:ef:cd:75:88:66:e0:74:77:c8:47:e7:e0:4f:ec:9e:b2: 20:6c:fe:bf:e2:dd:28:bf:69:55:7b:cb:79:9c:cb:14:f6:ec: 9e:38:84:4b:25:0d:b4:78:e5:e0:c3:23:fc:9a:5d:88:ce:65: e9:78:00:3f:5a:d0:9d:e0:1e:8b:e1:41:56:6f:ca:fb:51:f9: 96:62:a8:25:3e:af:90:9f:bc:3e:11:bc:e4:66:cc:20:05:32: a9:cc:f9:89:d0:cb:27:41:f5:f8:98:d5:4f:f9:28:e4:9b:76: af:dc:f8:19:bd:a5:18:a2:84:dc:e0:1a:b7:33:53:f7:11:83: b0:e1:c4:8c:86:c7:1c:86:5f:83:c3:b9:a8:dd:e2:ae:dd:fe: 1c:d2:52:9b:d5:be:f5:bc:0e:74:c9:9f:e7:5d:10:c2:86:0d: 01:a8:c1:cd:18:1d:d3:d9:68:a4:ce:fe:b6:d5:f1:a0:48:d2: 15:94:a1:8b:ec:64:21:70:55:7a:7a:6b:a1:a6:a9:ce:f2:4e: 36:7d:14:4d:8b:f3:57:8d:64:91:c8:f9:54:9b:9a:de:03:d3: 65:2e:46:1b:d3:13:2d:2d:02:5d:d6:32:d9:0d:b7:2a:54:09: b0:12:bc:57:14:86:f7:21:80:c3:97:44:34:24:89:24:ee:89: a8:dc:49:85 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAV7JuDkhvqvj8glxxwrYu+W0IB0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTFaFw0yNjA3MDMwNjUzMTFaMDMxMTAvBgNV BAMTKDg2RjYyMTI4RUNFOTI0RjlCMzhFNUY5ODU5QjU1QjY1NUJFMDYzMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjdqHosebEq4dSXocpYeRqgWb9 f1+g5ZeWDVO0ab+UUmMRN/h1TmbyyQJGtsdZGhlRjhyV5XU9B0xju9mFYkce7Be2 YfuEevJyzgp8HQHi2d1TCkepL4NW6hk3W5G18C/v0NXcaFLLQSy7Zh6OFYrMT6dR KQeHJ5hrUE8PiKRcEzTmGHpqX9DBm3lruSPPZUhzgJtnGAe7KgmyBUfgxfUft4sh qmU1ep2HKYLd1zFRhzTBONwloj9DMGkIGQ3Eq6SFx1UOyB5A1cGyQIdYJiTAmQkJ KUkkrBmNhobrsx1fzbw7z54rx0twxeqeZ99dADBkBy/CCQMZ6117cQeBjwybAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUhvYhKOzpJPmzjl+YWbVbZVvgYzUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MzQzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJgwDQYJKoZIhvcNAQELBQADggEBACqA 7811iGbgdHfIR+fgT+yesiBs/r/i3Si/aVV7y3mcyxT27J44hEslDbR45eDDI/ya XYjOZel4AD9a0J3gHovhQVZvyvtR+ZZiqCU+r5CfvD4RvORmzCAFMqnM+YnQyydB 9fiY1U/5KOSbdq/c+Bm9pRiihNzgGrczU/cRg7DhxIyGxxyGX4PDuajd4q7d/hzS UpvVvvW8DnTJn+ddEMKGDQGowc0YHdPZaKTO/rbV8aBI0hWUoYvsZCFwVXp6a6Gm qc7yTjZ9FE2L81eNZJHI+VSbmt4D02UuRhvTEy0tAl3WMtkNtypUCbASvFcUhvch gMOXRDQkiSTuiajcSYU= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:16 2025 by rpki-client