$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199626.roa File: AS199626.roa (raw, json) Hash identifier: Riyq02SVy0BhLNzNjmp8i7JCJZmXn3dcEKyxu5INlOQ= Subject key identifier: AF:F2:37:9A:33:6E:EA:51:D0:95:EA:A7:2E:B3:D5:75:C7:E7:91:C2 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6CDFFE4DF63BFB273758682A4519EBD4AC8A620D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199626.roa Signing time: Fri 04 Jul 2025 06:52:56 +0000 ROA not before: Fri 04 Jul 2025 06:47:56 +0000 ROA not after: Fri 03 Jul 2026 06:52:56 +0000 asID: 199626 IP address blocks: 2a0a:6040:7a00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:df:fe:4d:f6:3b:fb:27:37:58:68:2a:45:19:eb:d4:ac:8a:62:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:56 2025 GMT Not After : Jul 3 06:52:56 2026 GMT Subject: CN=AFF2379A336EEA51D095EAA72EB3D575C7E791C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:de:02:37:c6:e8:af:a9:25:05:bf:f4:3b:1d: eb:ee:2f:d3:10:e0:d3:18:7a:65:98:ad:a4:c5:14: 64:32:1c:77:42:ba:fc:a6:bc:0e:b7:b9:fc:b5:ed: a4:1a:9b:bd:2c:57:f4:0a:15:27:b5:14:e2:d8:d2: ce:72:8a:bb:88:85:5d:61:5b:dd:1f:52:63:83:b3: f7:92:e9:bd:2c:e6:26:d8:60:33:6f:f0:94:0d:84: 8a:27:07:07:e9:58:fb:47:e2:35:19:87:d0:ec:38: 3b:e7:dd:1b:3d:eb:66:64:cd:53:2f:82:ae:1d:9e: 8f:d5:e4:1a:43:12:06:1b:2a:3f:4c:d6:72:58:12: 83:44:5f:39:63:f6:e1:ae:2f:4e:8b:a2:c7:f0:c0: 7f:9a:42:a8:11:5f:3b:70:0c:ce:7e:ae:f4:ca:f0: 50:4c:d1:cf:0c:cd:24:84:de:4f:7d:70:77:5a:8b: 8d:20:0c:de:45:f0:92:07:3c:ac:84:80:d4:8f:b4: 40:57:dd:a2:0e:d8:b7:e7:19:47:27:a7:55:e0:1d: f0:c2:3f:dd:a3:04:f6:36:08:3a:55:30:2f:94:0e: 23:31:1f:ed:a7:dd:98:b0:63:e8:0d:2f:e2:5b:38: b9:96:f5:3b:94:2f:74:27:37:d6:af:d0:c2:04:a4: 2a:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F2:37:9A:33:6E:EA:51:D0:95:EA:A7:2E:B3:D5:75:C7:E7:91:C2 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199626.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7a00::/40 Signature Algorithm: sha256WithRSAEncryption 92:d7:73:c5:21:9c:c0:5b:39:eb:89:4c:90:88:4c:b4:2c:c5: ed:e3:6c:bc:ae:cd:e9:73:b6:8c:97:b6:a5:bd:fa:ff:35:4c: cd:4a:6d:e1:60:bc:7a:83:60:c3:6e:9a:47:c4:d1:d2:d3:69: d3:f4:bb:f4:cd:ed:a0:2d:08:f4:5d:ca:c5:69:06:bf:8f:bf: 4b:b6:98:ff:e6:2b:e5:30:71:fd:9e:3f:39:8f:61:16:1c:e2: 91:3a:eb:e0:43:7c:5a:03:c7:0d:0f:c0:39:1e:fd:c2:bb:69: 8c:c0:1b:98:0e:cb:22:23:e6:b7:d3:c5:ba:92:6a:a2:ea:23: 82:c5:72:0a:34:d3:0d:4f:bb:56:58:5a:7a:e7:06:2a:e9:0b: 84:31:48:52:2b:19:da:96:28:8e:e3:27:a3:dc:fe:3d:fc:ac: f8:06:cd:26:65:31:0a:83:90:f8:0b:1d:e1:1c:8f:cc:38:b4: 25:17:ce:13:4e:a3:82:c3:ce:84:cd:c9:67:f6:05:82:0f:17: 70:05:52:0e:5d:d6:e6:55:a0:7f:c1:26:06:73:91:bd:e2:b0: 77:19:ef:67:a3:26:b1:cc:7f:03:fe:fd:4b:80:df:d4:cb:79: fa:92:b3:14:9a:90:ff:81:e2:5c:dd:30:c8:e1:14:44:dc:0f: 6b:7a:ed:ba -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUbN/+TfY7+yc3WGgqRRnr1KyKYg0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTZaFw0yNjA3MDMwNjUyNTZaMDMxMTAvBgNV BAMTKEFGRjIzNzlBMzM2RUVBNTFEMDk1RUFBNzJFQjNENTc1QzdFNzkxQzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI3gI3xuivqSUFv/Q7HevuL9MQ 4NMYemWYraTFFGQyHHdCuvymvA63ufy17aQam70sV/QKFSe1FOLY0s5yiruIhV1h W90fUmODs/eS6b0s5ibYYDNv8JQNhIonBwfpWPtH4jUZh9DsODvn3Rs962ZkzVMv gq4dno/V5BpDEgYbKj9M1nJYEoNEXzlj9uGuL06LosfwwH+aQqgRXztwDM5+rvTK 8FBM0c8MzSSE3k99cHdai40gDN5F8JIHPKyEgNSPtEBX3aIO2LfnGUcnp1XgHfDC P92jBPY2CDpVMC+UDiMxH+2n3ZiwY+gNL+JbOLmW9TuUL3QnN9av0MIEpCr7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUr/I3mjNu6lHQleqnLrPVdcfnkcIwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjI2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHowDQYJKoZIhvcNAQELBQADggEBAJLX c8UhnMBbOeuJTJCITLQsxe3jbLyuzelztoyXtqW9+v81TM1KbeFgvHqDYMNumkfE 0dLTadP0u/TN7aAtCPRdysVpBr+Pv0u2mP/mK+Uwcf2ePzmPYRYc4pE66+BDfFoD xw0PwDke/cK7aYzAG5gOyyIj5rfTxbqSaqLqI4LFcgo00w1Pu1ZYWnrnBirpC4Qx SFIrGdqWKI7jJ6Pc/j38rPgGzSZlMQqDkPgLHeEcj8w4tCUXzhNOo4LDzoTNyWf2 BYIPF3AFUg5d1uZVoH/BJgZzkb3isHcZ72ejJrHMfwP+/UuA39TLefqSsxSakP+B 4lzdMMjhFETcD2t67bo= -----END CERTIFICATE-----Generated at Sat Jul 5 04:05:00 2025 by rpki-client