$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199504.roa File: AS199504.roa (raw, json) Hash identifier: M6Bz9PqIU2FoMxtyz8DGuxAReIcnIVjudSjlhEfw948= Subject key identifier: 44:CD:40:FC:DA:DB:16:77:DB:68:17:14:DB:03:F5:52:2D:7F:22:71 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 334F9552FC95E2B9B1305A570C13C3A8DFF67C6B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199504.roa Signing time: Fri 04 Jul 2025 06:52:58 +0000 ROA not before: Fri 04 Jul 2025 06:47:58 +0000 ROA not after: Fri 03 Jul 2026 06:52:58 +0000 asID: 199504 IP address blocks: 2a0a:6040:b500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:4f:95:52:fc:95:e2:b9:b1:30:5a:57:0c:13:c3:a8:df:f6:7c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:58 2025 GMT Not After : Jul 3 06:52:58 2026 GMT Subject: CN=44CD40FCDADB1677DB681714DB03F5522D7F2271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cc:1c:a2:46:fc:8e:d2:7c:c9:86:05:ec:91: 26:3b:96:44:54:fa:8c:0c:54:c2:24:a3:7c:be:5c: 4f:ea:88:69:20:b2:75:9b:4b:65:47:07:2a:04:66: 2b:b0:d3:dd:35:55:9c:bd:33:7c:e7:95:2b:8f:18: 47:d3:55:75:2e:40:0e:fb:f9:f2:49:46:3c:2c:f9: 7a:28:60:65:76:a0:7e:e5:b0:42:36:dc:fc:12:46: 0b:8b:b0:80:da:4b:af:b4:0e:b6:31:2d:b6:e0:a5: c1:c3:3d:5e:93:f9:56:87:84:d1:5f:80:71:4f:b7: 65:f2:4d:48:8f:56:42:16:56:0b:cc:7d:17:69:a9: 7d:21:05:60:bb:a3:4c:e9:bf:2a:4f:af:28:b4:50: d8:20:03:cb:9c:37:aa:9f:87:52:a8:f4:0c:5b:a0: 63:92:1f:a2:3d:41:73:3e:ef:a7:89:8f:3b:7f:60: 47:31:06:d8:31:44:ef:64:5b:44:d5:77:14:36:39: 2a:c7:5d:93:ce:d2:a3:3e:31:fa:13:c2:e1:ee:04: 9d:a0:f1:8b:65:71:1d:2e:d1:fb:40:f1:db:e3:a6: 7f:3c:74:d3:bc:d8:fb:3f:14:fe:2a:09:ad:4b:cd: 61:5c:8b:4a:79:c6:27:e0:3b:de:cb:00:7a:71:5d: 28:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:CD:40:FC:DA:DB:16:77:DB:68:17:14:DB:03:F5:52:2D:7F:22:71 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b500::/40 Signature Algorithm: sha256WithRSAEncryption 95:a5:a1:9f:83:ed:8d:5d:e7:c2:7b:e2:30:30:fd:2a:02:dc: 86:94:e3:f5:7c:f4:aa:cc:db:9e:c4:b3:00:22:9d:57:43:6e: 65:c9:89:01:d5:99:ec:9f:ae:b0:34:98:97:d5:fc:7f:26:2e: 76:b6:41:13:82:1f:59:29:20:5c:95:4c:4a:aa:f2:9b:63:a9: 7a:b1:b8:f3:63:bb:d6:00:3f:38:4c:49:3d:d2:fe:ef:71:d1: 4e:b0:c4:cd:29:c0:71:10:ca:5d:50:3f:21:a3:ab:04:7f:07: 9c:68:69:b5:86:15:ed:a0:1d:c8:f3:2e:e6:d5:d6:0f:e7:c4: 60:10:f9:e8:2d:8a:bc:4f:94:04:94:d6:5d:d3:03:74:29:17: ac:ed:16:c9:23:f8:05:d1:a4:a4:ba:a4:31:34:cf:3b:35:f9: 07:78:82:5f:4d:11:09:80:27:52:c7:d0:40:ca:0b:87:29:52: 23:92:83:4c:52:fa:ea:90:29:29:f0:ca:31:8e:fc:cf:b2:a4: f9:6c:ef:27:8f:cb:96:73:ac:4c:a2:1b:d8:ca:34:5b:69:68: bd:b5:1d:58:3d:22:05:6b:b8:e0:36:30:59:df:35:43:ce:a9: 10:3f:a9:78:ea:d9:63:bf:5a:fa:4e:23:a1:19:b5:20:ea:25: 7c:8f:44:a3 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUM0+VUvyV4rmxMFpXDBPDqN/2fGswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NThaFw0yNjA3MDMwNjUyNThaMDMxMTAvBgNV BAMTKDQ0Q0Q0MEZDREFEQjE2NzdEQjY4MTcxNERCMDNGNTUyMkQ3RjIyNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWzByiRvyO0nzJhgXskSY7lkRU +owMVMIko3y+XE/qiGkgsnWbS2VHByoEZiuw0901VZy9M3znlSuPGEfTVXUuQA77 +fJJRjws+XooYGV2oH7lsEI23PwSRguLsIDaS6+0DrYxLbbgpcHDPV6T+VaHhNFf gHFPt2XyTUiPVkIWVgvMfRdpqX0hBWC7o0zpvypPryi0UNggA8ucN6qfh1Ko9Axb oGOSH6I9QXM+76eJjzt/YEcxBtgxRO9kW0TVdxQ2OSrHXZPO0qM+MfoTwuHuBJ2g 8YtlcR0u0ftA8dvjpn88dNO82Ps/FP4qCa1LzWFci0p5xifgO97LAHpxXShvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQURM1A/NrbFnfbaBcU2wP1Ui1/InEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLUwDQYJKoZIhvcNAQELBQADggEBAJWl oZ+D7Y1d58J74jAw/SoC3IaU4/V89KrM257EswAinVdDbmXJiQHVmeyfrrA0mJfV /H8mLna2QROCH1kpIFyVTEqq8ptjqXqxuPNju9YAPzhMST3S/u9x0U6wxM0pwHEQ yl1QPyGjqwR/B5xoabWGFe2gHcjzLubV1g/nxGAQ+egtirxPlASU1l3TA3QpF6zt Fskj+AXRpKS6pDE0zzs1+Qd4gl9NEQmAJ1LH0EDKC4cpUiOSg0xS+uqQKSnwyjGO /M+ypPls7yePy5ZzrEyiG9jKNFtpaL21HVg9IgVruOA2MFnfNUPOqRA/qXjq2WO/ WvpOI6EZtSDqJXyPRKM= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:53 2025 by rpki-client