$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199376.roa File: AS199376.roa (raw, json) Hash identifier: BcIuhnJ+SLUfNtC0/wBoYcuojXCMuhVV0zhAlDQ+5zk= Subject key identifier: 13:21:D3:4C:EB:44:FB:B1:2C:0A:52:7B:8A:AE:6C:79:B5:78:E4:04 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5380043EC741571352A1A1C85B6946F73B373E6E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199376.roa Signing time: Fri 04 Jul 2025 06:52:54 +0000 ROA not before: Fri 04 Jul 2025 06:47:54 +0000 ROA not after: Fri 03 Jul 2026 06:52:54 +0000 asID: 199376 IP address blocks: 2a0a:6040:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:80:04:3e:c7:41:57:13:52:a1:a1:c8:5b:69:46:f7:3b:37:3e:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:54 2025 GMT Not After : Jul 3 06:52:54 2026 GMT Subject: CN=1321D34CEB44FBB12C0A527B8AAE6C79B578E404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:45:af:b9:8f:4e:ec:e8:32:df:4d:87:21:c7: df:2e:46:24:ac:8f:b3:eb:39:a3:fa:d1:eb:71:ab: 72:75:f9:92:c4:1d:e5:b4:f8:5b:50:ce:e6:aa:92: 69:26:e0:0a:95:1a:1c:8d:66:7b:d3:e8:d6:7b:26: 15:9a:79:1b:e2:cd:ea:16:a8:9a:d4:cb:6a:27:d1: c6:bf:56:72:c6:62:a0:40:28:9c:31:6b:9a:47:65: 13:d7:c0:04:7c:a0:77:dd:27:e7:c2:7f:fa:ef:ff: b1:58:b4:8f:ce:d9:99:1f:4b:97:8e:13:98:ca:bd: db:ec:1e:73:36:67:fd:86:2b:60:23:59:33:c1:05: c2:5a:69:a3:98:9a:2b:0c:d6:65:15:b4:0e:71:a1: 37:27:21:7d:3c:19:59:92:14:fe:99:0e:cc:1e:54: e9:26:10:15:2d:3b:b8:cb:e8:e3:1c:d9:1b:ed:7a: ce:77:d6:6d:31:08:1d:e8:7c:47:ee:da:7f:b4:3d: 4a:0a:7a:bc:df:04:d6:f6:97:74:27:87:ff:9c:76: 01:f1:49:47:42:29:1b:45:59:bd:a1:d2:2e:bf:6b: 80:12:e9:d9:87:53:b3:69:99:14:9b:23:d9:03:73: d2:10:0f:c5:83:52:13:1b:c2:1c:71:d2:ea:91:0f: ac:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:21:D3:4C:EB:44:FB:B1:2C:0A:52:7B:8A:AE:6C:79:B5:78:E4:04 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199376.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3000::/40 Signature Algorithm: sha256WithRSAEncryption 38:c1:8d:c9:a6:a1:fe:28:1d:db:e0:46:b2:19:83:17:11:18: 25:71:fa:51:04:2a:4d:7a:a7:83:2d:c7:2b:a4:b0:ca:db:69: 73:7d:2a:4a:5b:fd:7e:e3:3d:12:dd:bc:9c:c5:2a:d3:1e:06: 6e:94:43:12:6d:e3:dc:e2:60:35:7f:a2:33:1e:cf:93:94:19: dd:79:a9:6e:55:4a:cf:c2:0c:da:d3:12:60:db:89:ef:3c:2e: a5:0d:2e:b1:2e:f2:4f:b4:a2:dc:b5:27:a2:b3:af:e9:16:cf: d3:c9:63:b6:52:5d:17:95:4c:3d:dd:e3:3a:a2:86:83:4a:d7: 45:0b:45:b9:61:ee:6c:10:bf:ec:b7:51:2e:0f:c7:e8:7e:44: e1:ec:8a:8a:65:2f:5b:85:8c:3f:4d:f4:32:79:7e:a9:6a:50: 56:c1:a0:fb:66:95:93:20:26:02:c7:0e:55:7a:8e:5a:44:93: f1:64:5a:d9:4a:0b:a8:26:e1:c5:2a:14:80:a6:6c:7d:04:62: 11:b4:a9:76:18:aa:5d:01:b4:63:85:88:eb:66:7e:df:04:3a: 75:7a:0f:52:81:00:9c:80:1f:91:3b:df:3a:ce:bf:1d:40:50: 48:35:92:ef:63:d3:d7:b5:fe:1f:0f:b2:61:92:9f:89:73:b6: ed:78:fc:54 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUU4AEPsdBVxNSoaHIW2lG9zs3Pm4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTRaFw0yNjA3MDMwNjUyNTRaMDMxMTAvBgNV BAMTKDEzMjFEMzRDRUI0NEZCQjEyQzBBNTI3QjhBQUU2Qzc5QjU3OEU0MDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlRa+5j07s6DLfTYchx98uRiSs j7PrOaP60etxq3J1+ZLEHeW0+FtQzuaqkmkm4AqVGhyNZnvT6NZ7JhWaeRvizeoW qJrUy2on0ca/VnLGYqBAKJwxa5pHZRPXwAR8oHfdJ+fCf/rv/7FYtI/O2ZkfS5eO E5jKvdvsHnM2Z/2GK2AjWTPBBcJaaaOYmisM1mUVtA5xoTcnIX08GVmSFP6ZDswe VOkmEBUtO7jL6OMc2Rvtes531m0xCB3ofEfu2n+0PUoKerzfBNb2l3Qnh/+cdgHx SUdCKRtFWb2h0i6/a4AS6dmHU7NpmRSbI9kDc9IQD8WDUhMbwhxx0uqRD6yhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEyHTTOtE+7EsClJ7iq5sebV45AQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5Mzc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDAwDQYJKoZIhvcNAQELBQADggEBADjB jcmmof4oHdvgRrIZgxcRGCVx+lEEKk16p4MtxyuksMrbaXN9Kkpb/X7jPRLdvJzF KtMeBm6UQxJt49ziYDV/ojMez5OUGd15qW5VSs/CDNrTEmDbie88LqUNLrEu8k+0 oty1J6Kzr+kWz9PJY7ZSXReVTD3d4zqihoNK10ULRblh7mwQv+y3US4Px+h+ROHs ioplL1uFjD9N9DJ5fqlqUFbBoPtmlZMgJgLHDlV6jlpEk/FkWtlKC6gm4cUqFICm bH0EYhG0qXYYql0BtGOFiOtmft8EOnV6D1KBAJyAH5E73zrOvx1AUEg1ku9j09e1 /h8PsmGSn4lztu14/FQ= -----END CERTIFICATE-----Generated at Sat Jul 5 03:52:39 2025 by rpki-client