$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199488.roa File: AS199488.roa (raw, json) Hash identifier: HQ88Q7ql+5lG1Z/s2w01b13mBo3DpOBXNUhVBRR5Zmo= Subject key identifier: 6F:25:FE:38:30:FC:4B:58:6D:0D:E1:B1:AF:B1:C8:5B:B6:60:3B:C2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0D99017E2B0D7EED0CFDE162A2A4D570B912F4CB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199488.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 199488 IP address blocks: 2a0a:6040:8500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:99:01:7e:2b:0d:7e:ed:0c:fd:e1:62:a2:a4:d5:70:b9:12:f4:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=6F25FE3830FC4B586D0DE1B1AFB1C85BB6603BC2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:91:79:b2:31:b1:fe:f5:58:a5:8d:29:78:af: 5d:3c:6b:be:d5:f7:43:69:11:b3:d5:1c:9b:9c:2c: a7:73:bd:9b:86:6d:66:f9:05:e0:77:d2:c1:18:4b: de:a6:f8:76:ea:0a:10:f4:65:3e:a9:8e:d7:2a:d6: 96:e1:7f:d0:ca:45:0b:c9:f4:91:22:4b:f4:cc:78: 51:3a:f5:09:b0:38:f3:20:37:c3:91:d6:0d:e9:d3: 19:8c:c3:f4:d6:9e:dc:34:e6:34:37:ad:25:5e:fc: ae:ba:7b:f0:44:6c:9a:d6:c8:a0:b8:f5:d2:a3:a5: 1e:15:53:fd:66:0f:da:fc:15:50:bb:64:26:22:45: 46:4b:d1:8a:93:f8:6f:87:fd:dc:8f:eb:65:1d:c4: 02:e0:74:a6:62:c8:09:ef:b6:aa:0e:6c:c6:39:00: ca:95:21:4b:54:b0:68:10:28:94:74:15:21:61:8d: c2:4e:dc:69:03:5d:fb:6e:c8:a2:f3:21:b7:42:86: 61:5b:37:a0:b4:8f:47:ea:3e:f1:4d:33:b2:d7:f5: f9:2f:c0:e8:8d:1a:69:95:ee:d4:fd:22:2f:d2:8f: b9:38:12:49:b8:c6:73:51:9f:ef:e1:8a:03:be:f3: 0f:4e:35:b0:1a:c5:46:b8:60:4a:fc:19:4a:d2:48: 6c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:25:FE:38:30:FC:4B:58:6D:0D:E1:B1:AF:B1:C8:5B:B6:60:3B:C2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199488.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8500::/40 Signature Algorithm: sha256WithRSAEncryption cc:5d:cf:19:5e:c1:bc:46:51:51:e1:e4:f4:53:da:1e:ce:18: 0e:ca:6e:13:43:9a:4c:8d:38:a8:05:43:78:9e:d3:87:22:d1: 82:30:13:63:aa:b9:8b:00:49:b5:09:44:69:0a:5d:87:69:ef: b0:22:51:6a:2a:29:5c:8b:0c:7e:e2:46:c1:7b:8d:b1:63:f5: 2f:05:03:03:ad:41:89:21:9c:54:a7:1d:c9:99:0d:fe:ad:a6: 98:34:56:8e:25:19:e4:eb:5b:28:b7:df:de:ba:5f:ac:5b:c4: f1:94:2e:81:52:f3:9a:b7:8f:04:77:11:25:49:46:e8:6b:3c: af:f8:da:e4:75:f3:c3:3a:7c:4a:3b:02:62:b6:c1:e8:9c:91: ad:a1:4a:77:84:a5:5b:f0:d5:50:bf:dc:46:b2:b0:86:1b:e0: fc:bc:a4:2b:19:d9:d1:48:82:0d:fb:6a:bd:72:23:b1:f9:1b: 73:84:6c:7a:5e:48:bb:68:2c:35:5f:bb:93:d4:9c:08:19:e4: 46:1f:97:7c:a7:e2:95:c7:c8:45:48:ba:d2:c4:65:e3:42:80: 1c:57:0a:38:b9:3e:d6:c6:70:7f:99:ff:99:2d:51:08:24:02: 01:93:10:20:df:1b:93:62:5a:65:89:2c:9e:32:00:31:ba:e3: 58:83:e2:d4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDZkBfisNfu0M/eFioqTVcLkS9MswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKDZGMjVGRTM4MzBGQzRCNTg2RDBERTFCMUFGQjFDODVCQjY2MDNCQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLkXmyMbH+9ViljSl4r108a77V 90NpEbPVHJucLKdzvZuGbWb5BeB30sEYS96m+HbqChD0ZT6pjtcq1pbhf9DKRQvJ 9JEiS/TMeFE69QmwOPMgN8OR1g3p0xmMw/TWntw05jQ3rSVe/K66e/BEbJrWyKC4 9dKjpR4VU/1mD9r8FVC7ZCYiRUZL0YqT+G+H/dyP62UdxALgdKZiyAnvtqoObMY5 AMqVIUtUsGgQKJR0FSFhjcJO3GkDXftuyKLzIbdChmFbN6C0j0fqPvFNM7LX9fkv wOiNGmmV7tT9Ii/Sj7k4Ekm4xnNRn+/higO+8w9ONbAaxUa4YEr8GUrSSGzVAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUbyX+ODD8S1htDeGxr7HIW7ZgO8IwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NDg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIUwDQYJKoZIhvcNAQELBQADggEBAMxd zxlewbxGUVHh5PRT2h7OGA7KbhNDmkyNOKgFQ3ie04ci0YIwE2OquYsASbUJRGkK XYdp77AiUWoqKVyLDH7iRsF7jbFj9S8FAwOtQYkhnFSnHcmZDf6tppg0Vo4lGeTr Wyi33966X6xbxPGULoFS85q3jwR3ESVJRuhrPK/42uR188M6fEo7AmK2weicka2h SneEpVvw1VC/3EaysIYb4Py8pCsZ2dFIgg37ar1yI7H5G3OEbHpeSLtoLDVfu5PU nAgZ5EYfl3yn4pXHyEVIutLEZeNCgBxXCji5PtbGcH+Z/5ktUQgkAgGTECDfG5Ni WmWJLJ4yADG641iD4tQ= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:53 2025 by rpki-client