$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199566.roa File: AS199566.roa (raw, json) Hash identifier: di8WX52bfjCQSjbp7VDNGd7FXooCnGIddrqoWZGUjc0= Subject key identifier: 5E:2C:86:18:03:69:3A:6C:BA:EC:08:6E:A2:6E:EE:78:BC:CE:7A:4E Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 76114741A89E27007ABFA5C97F1031DF31CB96EC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199566.roa Signing time: Fri 04 Jul 2025 06:52:56 +0000 ROA not before: Fri 04 Jul 2025 06:47:56 +0000 ROA not after: Fri 03 Jul 2026 06:52:56 +0000 asID: 199566 IP address blocks: 2a0a:6040:bc00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:11:47:41:a8:9e:27:00:7a:bf:a5:c9:7f:10:31:df:31:cb:96:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:56 2025 GMT Not After : Jul 3 06:52:56 2026 GMT Subject: CN=5E2C861803693A6CBAEC086EA26EEE78BCCE7A4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:95:0b:ed:c7:00:91:a4:7b:f0:88:1f:e1: 7d:da:f7:27:f3:ac:cc:30:92:90:ea:ce:23:ca:93: 2a:97:96:84:06:98:89:cf:8a:8b:05:2c:16:5b:32: b7:dd:2f:9e:2f:7f:ce:13:79:e9:fb:5f:c3:9f:ec: ff:84:17:3b:be:74:e7:e6:88:2b:89:93:d9:77:b6: f1:06:84:b9:05:bf:74:1f:c5:e0:f3:6a:09:4f:fc: 2e:bd:f5:45:2e:87:29:05:3d:5d:d0:cd:1d:0c:8a: 26:1b:41:e7:47:73:51:9a:11:79:42:60:33:7f:43: b7:9a:16:e5:37:ff:2e:b9:6b:5c:e6:ef:cd:01:ca: c8:5d:65:6b:f4:a7:70:ce:b2:33:be:06:f8:96:2a: 46:21:c2:26:13:02:55:37:be:0d:2d:e5:5a:3d:32: 9b:31:a7:c7:22:be:62:74:9e:f0:f3:92:a9:4a:7c: 1b:1d:37:2f:b4:6d:ed:fc:ac:f3:d3:22:d9:24:96: 12:a5:61:c9:59:78:92:4d:83:07:10:ea:4a:78:4d: 18:ec:14:c0:33:23:11:14:1e:51:cc:66:f3:39:2c: 13:10:b0:e5:bf:ab:3e:aa:f0:48:15:fb:a9:62:2e: 5e:9b:cf:8a:93:6d:84:f7:41:72:fc:d2:51:23:e2: fb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2C:86:18:03:69:3A:6C:BA:EC:08:6E:A2:6E:EE:78:BC:CE:7A:4E X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199566.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:bc00::/40 Signature Algorithm: sha256WithRSAEncryption ad:40:e3:c2:12:09:b4:72:a1:c7:16:96:97:15:ae:27:e2:46: aa:72:93:48:82:6e:5b:a8:a5:2e:5b:3e:9a:4d:b1:0d:b8:a0: 3b:b3:1d:fd:3d:fa:0a:dd:c6:6f:03:77:58:65:27:d1:bd:41: 3b:08:4b:4e:07:d7:f3:ef:ae:1d:24:d2:48:54:e7:03:a8:cd: e6:ea:e1:23:17:b0:8e:d1:e1:2d:55:0f:7c:3e:dc:e0:9d:13: 15:bf:42:c1:84:85:11:89:be:e5:c5:53:b8:39:4b:b6:51:01: f3:f5:19:51:36:5a:a8:4c:45:74:23:6b:d6:1e:fd:93:9e:48: e0:1e:e1:37:28:ca:02:4f:88:a1:90:ba:aa:e4:b4:98:38:71: e5:b4:08:37:a5:cc:71:9f:89:0b:18:7b:6b:b7:aa:85:03:1b: da:5a:5b:55:59:16:89:7f:45:92:c1:80:fb:5a:3e:76:f2:82: 3d:a7:c5:a4:b6:c8:64:e2:c8:38:82:ca:dd:75:71:9f:e3:60: c0:78:cc:69:d2:c0:46:75:0e:84:3d:a1:65:20:36:42:15:14: 8b:8b:2d:75:f5:18:cd:86:69:1d:f2:41:b5:41:31:a5:c6:dc: ae:8a:f6:71:ee:3e:f3:3a:24:91:24:50:97:0d:45:c1:cd:45: 00:60:6d:51 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUdhFHQaieJwB6v6XJfxAx3zHLluwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTZaFw0yNjA3MDMwNjUyNTZaMDMxMTAvBgNV BAMTKDVFMkM4NjE4MDM2OTNBNkNCQUVDMDg2RUEyNkVFRTc4QkNDRTdBNEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDR55UL7ccAkaR78Igf4X3a9yfz rMwwkpDqziPKkyqXloQGmInPiosFLBZbMrfdL54vf84Teen7X8Of7P+EFzu+dOfm iCuJk9l3tvEGhLkFv3QfxeDzaglP/C699UUuhykFPV3QzR0MiiYbQedHc1GaEXlC YDN/Q7eaFuU3/y65a1zm780ByshdZWv0p3DOsjO+BviWKkYhwiYTAlU3vg0t5Vo9 Mpsxp8civmJ0nvDzkqlKfBsdNy+0be38rPPTItkklhKlYclZeJJNgwcQ6kp4TRjs FMAzIxEUHlHMZvM5LBMQsOW/qz6q8EgV+6liLl6bz4qTbYT3QXL80lEj4vujAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXiyGGANpOmy67Ahuom7ueLzOek4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NTY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLwwDQYJKoZIhvcNAQELBQADggEBAK1A 48ISCbRyoccWlpcVrifiRqpyk0iCbluopS5bPppNsQ24oDuzHf09+grdxm8Dd1hl J9G9QTsIS04H1/Pvrh0k0khU5wOozebq4SMXsI7R4S1VD3w+3OCdExW/QsGEhRGJ vuXFU7g5S7ZRAfP1GVE2WqhMRXQja9Ye/ZOeSOAe4TcoygJPiKGQuqrktJg4ceW0 CDelzHGfiQsYe2u3qoUDG9paW1VZFol/RZLBgPtaPnbygj2nxaS2yGTiyDiCyt11 cZ/jYMB4zGnSwEZ1DoQ9oWUgNkIVFIuLLXX1GM2GaR3yQbVBMaXG3K6K9nHuPvM6 JJEkUJcNRcHNRQBgbVE= -----END CERTIFICATE-----Generated at Sat Jul 5 06:04:31 2025 by rpki-client