$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199605.roa File: AS199605.roa (raw, json) Hash identifier: /6wBt7RG94o8S9fY4DW28XOpIpu2j/DGQXWY5LusPi4= Subject key identifier: 2B:E5:44:E1:FF:3A:91:13:8D:59:D6:ED:B5:A9:2E:9A:25:78:8E:43 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2388FF91AC96699FA08E4F6C2B8E9B8E526977E0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199605.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 199605 IP address blocks: 2a0a:6040:7e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:88:ff:91:ac:96:69:9f:a0:8e:4f:6c:2b:8e:9b:8e:52:69:77:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=2BE544E1FF3A91138D59D6EDB5A92E9A25788E43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:06:18:17:ce:bc:64:44:13:14:ae:90:98:89: d4:38:6f:19:78:7f:8d:a1:ab:58:3a:38:cd:13:68: ec:6d:98:75:1d:e5:fb:ac:8b:5c:15:55:28:5b:1b: e7:ff:17:f2:85:29:b9:ad:21:e5:89:a1:00:9a:9b: 25:5f:17:53:d2:66:50:9c:02:87:e4:6e:8f:08:1e: 85:4a:fe:7c:b5:7b:27:47:cb:93:7f:1a:f3:5d:3f: 51:10:3a:6f:39:07:cc:2b:a9:b3:63:ae:7d:90:76: c0:b4:5e:c4:87:a8:03:e2:b2:79:6b:64:27:3f:cf: 1d:97:56:59:3c:32:90:f4:06:a5:25:cd:52:ae:4a: fa:da:7a:08:50:b5:5d:33:bd:af:79:c9:a5:29:a0: 6a:4c:ae:58:1f:28:1e:25:9c:a3:03:44:bf:e4:1c: 3e:85:6a:c6:60:28:71:c4:e9:f9:14:b9:b7:bd:e0: 7b:a1:4f:b0:64:fa:40:25:2f:5d:29:42:75:fe:3b: 2a:99:8e:dc:20:82:85:be:0f:e4:f7:d9:79:0c:06: 3d:d7:3e:b0:22:d0:b7:a6:81:70:0f:17:3f:5b:25: f0:67:f0:99:5e:4c:dc:6b:ed:20:c7:86:ad:d7:95: eb:59:fe:45:29:ba:dc:6b:b7:0d:40:37:ae:5f:7e: a0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E5:44:E1:FF:3A:91:13:8D:59:D6:ED:B5:A9:2E:9A:25:78:8E:43 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199605.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7e00::/40 Signature Algorithm: sha256WithRSAEncryption 27:b4:93:c0:c7:81:59:76:a0:9d:d4:f4:1a:a9:3a:11:cb:fa: 45:be:8c:e4:44:b6:5d:60:90:08:07:09:8b:ef:98:d8:fc:08: 30:cd:28:d3:99:f0:05:41:42:f5:1d:a2:bc:02:77:e3:8f:9f: 8c:09:54:86:0b:0c:18:83:07:fb:8f:93:5e:c4:38:c7:1c:dc: 67:d5:cd:9e:d8:73:00:ca:1d:4a:24:e9:36:a3:f5:df:e7:f6: fd:90:c3:fd:42:c5:da:50:5b:62:43:09:d9:2b:3e:e3:21:18: 5e:f9:0b:e0:cc:35:84:b2:74:ff:20:45:ac:03:8e:03:0d:5f: fd:ee:d8:a7:42:c6:0a:b9:f4:48:1f:b6:be:5f:fd:ae:a8:1d: 76:ec:5a:6a:52:be:ad:1a:6d:da:6f:b9:68:41:ff:0b:e6:59: 14:81:21:4e:b6:f3:16:de:87:97:50:8c:b7:56:18:8b:d2:e2: 91:40:97:e7:f1:e8:37:cd:dc:cd:da:bc:cd:89:f9:57:6d:43: 36:6c:e0:81:63:61:0b:ec:e0:d9:d9:4a:ce:1d:97:57:1e:a5: 33:36:f2:ed:ab:27:05:aa:01:8e:21:a0:16:07:47:5a:28:95: ab:fa:17:af:fa:21:c9:6b:22:b2:7e:86:77:5b:5b:44:29:15: 33:f8:a1:62 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUI4j/kayWaZ+gjk9sK46bjlJpd+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDJCRTU0NEUxRkYzQTkxMTM4RDU5RDZFREI1QTkyRTlBMjU3ODhFNDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDBhgXzrxkRBMUrpCYidQ4bxl4 f42hq1g6OM0TaOxtmHUd5fusi1wVVShbG+f/F/KFKbmtIeWJoQCamyVfF1PSZlCc Aofkbo8IHoVK/ny1eydHy5N/GvNdP1EQOm85B8wrqbNjrn2QdsC0XsSHqAPisnlr ZCc/zx2XVlk8MpD0BqUlzVKuSvraeghQtV0zva95yaUpoGpMrlgfKB4lnKMDRL/k HD6FasZgKHHE6fkUube94HuhT7Bk+kAlL10pQnX+OyqZjtwggoW+D+T32XkMBj3X PrAi0LemgXAPFz9bJfBn8JleTNxr7SDHhq3XletZ/kUputxrtw1AN65ffqAZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUK+VE4f86kRONWdbttakumiV4jkMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjA1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQH4wDQYJKoZIhvcNAQELBQADggEBACe0 k8DHgVl2oJ3U9BqpOhHL+kW+jOREtl1gkAgHCYvvmNj8CDDNKNOZ8AVBQvUdorwC d+OPn4wJVIYLDBiDB/uPk17EOMcc3GfVzZ7YcwDKHUok6Taj9d/n9v2Qw/1CxdpQ W2JDCdkrPuMhGF75C+DMNYSydP8gRawDjgMNX/3u2KdCxgq59Egftr5f/a6oHXbs WmpSvq0abdpvuWhB/wvmWRSBIU628xbeh5dQjLdWGIvS4pFAl+fx6DfN3M3avM2J +VdtQzZs4IFjYQvs4NnZSs4dl1cepTM28u2rJwWqAY4hoBYHR1oolav6F6/6Iclr IrJ+hndbW0QpFTP4oWI= -----END CERTIFICATE-----Generated at Sat Jul 5 04:01:30 2025 by rpki-client