$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199607.roa File: AS199607.roa (raw, json) Hash identifier: 6Jpnk3tsM6xnYtolpFfzauLp09wUctunh3+W1A4H+1k= Subject key identifier: C2:C8:0A:7A:E6:25:90:90:36:51:07:6D:6D:33:0C:F5:D2:86:8C:76 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4F71397D8BB731DE0C93B04B7399DCE901EB9087 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199607.roa Signing time: Fri 04 Jul 2025 06:52:55 +0000 ROA not before: Fri 04 Jul 2025 06:47:55 +0000 ROA not after: Fri 03 Jul 2026 06:52:55 +0000 asID: 199607 IP address blocks: 2a0a:6040:7f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:71:39:7d:8b:b7:31:de:0c:93:b0:4b:73:99:dc:e9:01:eb:90:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:55 2025 GMT Not After : Jul 3 06:52:55 2026 GMT Subject: CN=C2C80A7AE62590903651076D6D330CF5D2868C76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0f:06:16:8c:57:07:cb:2b:47:f6:af:91:4d: b6:4d:1c:a6:1b:0e:6c:f5:9b:68:1c:b1:5a:fe:e6: 96:98:56:da:e9:9f:26:bd:23:2a:ea:5f:16:be:db: 9d:e7:80:da:fc:bd:df:69:6a:f9:65:48:32:ee:f5: f6:20:45:05:d6:52:d5:ae:9a:d7:8b:41:cb:0f:62: 20:67:52:5c:0c:38:2a:7b:f9:e6:18:26:28:dc:e2: 60:9d:fa:a4:5e:d4:6f:35:58:8e:8e:2b:a7:63:9b: b6:c7:74:ad:62:33:64:b0:03:a6:57:33:5c:82:ac: 8e:3a:c6:94:7d:e6:9b:29:a2:ee:9d:52:21:44:be: ea:28:f1:98:f8:af:f3:38:b6:64:32:c7:b4:67:c9: 93:e5:c8:98:76:b7:92:96:71:5d:f1:74:1b:44:f0: 09:4d:85:90:f0:c4:c3:a7:4c:61:d9:5a:4e:d8:77: 30:5b:34:ba:31:39:f8:d1:0a:5d:08:10:18:0d:fe: 7a:10:75:8d:17:a2:0c:be:ca:9f:10:08:00:ae:39: 94:be:4e:27:c2:1e:25:f0:29:a8:8a:71:de:0f:05: 25:e2:35:8d:26:ed:ea:c1:43:51:62:43:6f:c5:c4: c2:62:04:56:21:3e:f3:83:08:9c:b0:e3:76:3e:66: fe:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:C8:0A:7A:E6:25:90:90:36:51:07:6D:6D:33:0C:F5:D2:86:8C:76 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199607.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7f00::/40 Signature Algorithm: sha256WithRSAEncryption c8:7b:71:4d:8a:5d:70:35:fe:e9:ef:97:3d:98:9e:21:4c:cb: 97:29:47:e1:45:d8:01:b7:5e:6b:2a:c7:2a:6b:94:29:c1:ce: 4c:c4:35:f1:5b:da:d2:a9:e0:92:14:36:dd:eb:0e:20:c3:06: 5b:fc:84:88:5e:5b:1f:f7:87:ef:dd:ab:1b:5b:0d:c7:c3:a2: 0d:7b:ec:13:46:b7:a4:30:e0:40:2a:df:67:e5:80:4f:d1:c7: e3:ad:8f:3b:c6:ce:58:72:00:b7:46:2e:ed:bf:10:8c:76:2d: d1:56:5a:45:24:cd:a6:67:e8:4d:40:ac:2b:2e:97:9a:86:9c: 77:9f:27:ea:34:ce:ae:76:53:d1:36:23:8b:a1:96:97:a7:99: 89:c3:76:ce:ba:97:43:e4:a7:5f:8e:19:a4:02:9d:0e:81:fc: e7:de:89:5c:25:38:d7:2d:65:87:1e:59:a6:11:d2:68:55:f9: 1f:fb:2e:3d:ea:15:e6:0e:3b:28:6e:01:4e:d7:43:cb:b6:ab: 60:14:6c:d9:73:05:fe:7c:e0:35:76:e1:7f:19:d8:41:ee:c6: 97:d2:92:b6:4b:f2:8d:01:7f:f8:c7:d7:e4:c8:08:2f:67:a6: 3e:05:c4:87:85:7d:01:b2:92:4a:e0:36:7f:4a:3b:b3:08:a2: 68:07:d8:ad -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUT3E5fYu3Md4Mk7BLc5nc6QHrkIcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTVaFw0yNjA3MDMwNjUyNTVaMDMxMTAvBgNV BAMTKEMyQzgwQTdBRTYyNTkwOTAzNjUxMDc2RDZEMzMwQ0Y1RDI4NjhDNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBDwYWjFcHyytH9q+RTbZNHKYb Dmz1m2gcsVr+5paYVtrpnya9IyrqXxa+253ngNr8vd9pavllSDLu9fYgRQXWUtWu mteLQcsPYiBnUlwMOCp7+eYYJijc4mCd+qRe1G81WI6OK6djm7bHdK1iM2SwA6ZX M1yCrI46xpR95pspou6dUiFEvuoo8Zj4r/M4tmQyx7RnyZPlyJh2t5KWcV3xdBtE 8AlNhZDwxMOnTGHZWk7YdzBbNLoxOfjRCl0IEBgN/noQdY0Xogy+yp8QCACuOZS+ TifCHiXwKaiKcd4PBSXiNY0m7erBQ1FiQ2/FxMJiBFYhPvODCJyw43Y+Zv4XAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUwsgKeuYlkJA2UQdtbTMM9dKGjHYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjA3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQH8wDQYJKoZIhvcNAQELBQADggEBAMh7 cU2KXXA1/unvlz2YniFMy5cpR+FF2AG3XmsqxyprlCnBzkzENfFb2tKp4JIUNt3r DiDDBlv8hIheWx/3h+/dqxtbDcfDog177BNGt6Qw4EAq32flgE/Rx+OtjzvGzlhy ALdGLu2/EIx2LdFWWkUkzaZn6E1ArCsul5qGnHefJ+o0zq52U9E2I4uhlpenmYnD ds66l0Pkp1+OGaQCnQ6B/OfeiVwlONctZYceWaYR0mhV+R/7Lj3qFeYOOyhuAU7X Q8u2q2AUbNlzBf584DV24X8Z2EHuxpfSkrZL8o0Bf/jH1+TICC9npj4FxIeFfQGy kkrgNn9KO7MIomgH2K0= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:44 2025 by rpki-client