$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199497.roa File: AS199497.roa (raw, json) Hash identifier: arCAU8TCU93nfkngBpM09+8F48xei2kWgOpfBovH3ng= Subject key identifier: 3D:88:73:46:3D:8E:9D:77:96:E1:E4:D0:7D:A7:21:31:47:35:A9:26 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0814EC5DB9A58B33702F26AD19689BBFFE4893AA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199497.roa Signing time: Fri 04 Jul 2025 06:53:17 +0000 ROA not before: Fri 04 Jul 2025 06:48:17 +0000 ROA not after: Fri 03 Jul 2026 06:53:17 +0000 asID: 199497 IP address blocks: 2a0a:6040:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:14:ec:5d:b9:a5:8b:33:70:2f:26:ad:19:68:9b:bf:fe:48:93:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:17 2025 GMT Not After : Jul 3 06:53:17 2026 GMT Subject: CN=3D8873463D8E9D7796E1E4D07DA721314735A926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:90:5d:8a:ba:93:79:ce:69:74:33:1d:2c:4b: 2c:2d:d8:fb:2e:fd:5b:c1:c0:fc:84:52:5a:86:d9: b4:65:00:b6:43:2f:49:54:b7:3f:e5:c1:6b:57:ea: 2f:5c:02:c4:01:c9:18:74:02:13:57:83:a6:e8:f1: 89:97:e5:f3:d8:8a:56:77:b0:a0:6a:6d:b4:7f:98: 8e:93:5f:cb:85:e5:ac:9a:ec:9d:b3:71:dd:6b:67: 1a:0f:1c:89:80:40:64:b9:fe:4c:32:18:4a:f6:d9: fd:fe:74:9d:3a:3b:13:49:ab:84:1e:08:4d:a3:98: 60:96:c9:00:8c:51:1a:95:a0:2b:50:a7:d9:54:d4: 96:9e:08:72:3f:37:d5:14:ed:27:96:7c:d0:7c:57: 68:e6:19:d6:e0:9c:15:aa:2e:7f:aa:73:0d:ff:d7: b2:81:46:02:ef:80:ff:3a:c1:80:05:52:60:6d:1d: 25:bc:03:70:55:15:53:40:e7:d1:82:3d:09:59:f5: ff:ff:dd:a0:5e:94:b6:10:f5:21:0e:0f:8e:1b:f3: 02:d3:0f:a0:04:20:f5:83:a7:d5:31:c1:d6:20:3e: 66:2e:4f:38:10:aa:b5:6c:49:de:27:44:cd:76:2b: 21:e1:b4:9b:fb:4a:fc:13:5e:9e:9e:9e:35:79:b5: 28:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:88:73:46:3D:8E:9D:77:96:E1:E4:D0:7D:A7:21:31:47:35:A9:26 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199497.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 7a:f9:86:b0:ec:50:e9:b0:14:89:b7:39:4d:be:01:ef:c9:33: 65:4a:9e:9b:40:ba:a8:96:d4:7a:db:de:d0:fb:4b:09:4b:c1: 26:13:d7:f6:46:97:17:50:6a:91:5c:d0:2b:7b:b9:7d:d0:24: dd:b1:fe:a4:86:a3:54:17:bd:f0:7d:11:92:b2:8c:10:d8:96: cd:22:58:7a:38:06:1c:2f:04:1a:63:19:83:97:83:ef:28:d8: db:a3:5c:fb:c7:73:ce:65:59:a3:7b:65:28:08:f0:d0:35:c7: a1:4d:49:4c:ad:99:53:7d:d2:60:c1:07:12:6c:e4:67:33:aa: d7:80:7b:3c:08:58:6b:22:d2:b8:f0:fa:96:38:43:99:18:e3: 0e:1e:d2:ab:9c:7e:0d:52:66:2c:17:a9:27:9f:c0:fe:af:f5: 20:c6:aa:27:d9:fe:57:b2:65:84:d6:f9:45:0a:95:8f:22:b7: 81:53:df:56:92:88:98:f7:bf:ca:b1:3d:5e:98:50:6d:c4:e9: f1:09:12:0e:cc:8f:f8:d1:fc:b8:64:44:15:54:a9:b7:e5:d3: 46:5c:36:42:56:bc:a6:69:19:cd:46:21:35:3f:ba:70:00:77: e2:0c:81:80:4b:1c:6f:bd:59:2a:eb:33:72:4d:1d:6f:ce:62: 4e:e2:4c:28 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCBTsXbmlizNwLyatGWibv/5Ik6owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTdaFw0yNjA3MDMwNjUzMTdaMDMxMTAvBgNV BAMTKDNEODg3MzQ2M0Q4RTlENzc5NkUxRTREMDdEQTcyMTMxNDczNUE5MjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnkF2KupN5zml0Mx0sSywt2Psu /VvBwPyEUlqG2bRlALZDL0lUtz/lwWtX6i9cAsQByRh0AhNXg6bo8YmX5fPYilZ3 sKBqbbR/mI6TX8uF5aya7J2zcd1rZxoPHImAQGS5/kwyGEr22f3+dJ06OxNJq4Qe CE2jmGCWyQCMURqVoCtQp9lU1JaeCHI/N9UU7SeWfNB8V2jmGdbgnBWqLn+qcw3/ 17KBRgLvgP86wYAFUmBtHSW8A3BVFVNA59GCPQlZ9f//3aBelLYQ9SEOD44b8wLT D6AEIPWDp9UxwdYgPmYuTzgQqrVsSd4nRM12KyHhtJv7SvwTXp6enjV5tSiFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUPYhzRj2OnXeW4eTQfachMUc1qSYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NDk3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQOswDQYJKoZIhvcNAQELBQADggEBAHr5 hrDsUOmwFIm3OU2+Ae/JM2VKnptAuqiW1Hrb3tD7SwlLwSYT1/ZGlxdQapFc0Ct7 uX3QJN2x/qSGo1QXvfB9EZKyjBDYls0iWHo4BhwvBBpjGYOXg+8o2NujXPvHc85l WaN7ZSgI8NA1x6FNSUytmVN90mDBBxJs5GczqteAezwIWGsi0rjw+pY4Q5kY4w4e 0qucfg1SZiwXqSefwP6v9SDGqifZ/leyZYTW+UUKlY8it4FT31aSiJj3v8qxPV6Y UG3E6fEJEg7Mj/jR/LhkRBVUqbfl00ZcNkJWvKZpGc1GITU/unAAd+IMgYBLHG+9 WSrrM3JNHW/OYk7iTCg= -----END CERTIFICATE-----Generated at Sat Jul 5 06:07:13 2025 by rpki-client