$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199650.roa File: AS199650.roa (raw, json) Hash identifier: hNnyl7SMHLucEfjnWDe9ZtTJfH6tZUQspoRO+VLCXxE= Subject key identifier: E5:0B:3C:0B:35:0A:84:83:A6:D8:47:E4:8F:35:DC:E8:25:31:26:DF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3454C3DFE5C8426EA2D6D6B64FDAAEC4BE9B8758 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199650.roa Signing time: Fri 04 Jul 2025 06:53:07 +0000 ROA not before: Fri 04 Jul 2025 06:48:07 +0000 ROA not after: Fri 03 Jul 2026 06:53:07 +0000 asID: 199650 IP address blocks: 2a0a:6040:7b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:54:c3:df:e5:c8:42:6e:a2:d6:d6:b6:4f:da:ae:c4:be:9b:87:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:07 2025 GMT Not After : Jul 3 06:53:07 2026 GMT Subject: CN=E50B3C0B350A8483A6D847E48F35DCE8253126DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:79:7a:92:c7:df:29:f9:fd:8f:a8:9d:5a:6f: 01:d8:8e:4a:4c:13:1b:b5:8e:b2:1b:65:f0:1a:85: 4d:d0:c6:95:f3:c3:92:dc:82:ca:1b:9d:32:5e:e8: 08:0a:0c:bb:82:03:a7:32:79:66:bb:bd:30:de:53: 8c:ba:3d:ba:4c:24:ba:7a:2b:a5:1c:b7:30:f7:e6: 30:77:7c:c6:75:86:c4:46:55:da:2d:e4:27:72:2d: 27:fa:1a:c0:21:eb:f5:09:93:b3:8a:d6:4e:7b:bc: 11:25:c3:ce:f7:7c:6e:ee:85:5e:e0:d3:e0:19:ec: a3:6d:62:43:cc:e5:6e:18:c7:67:32:23:6c:e5:b4: 23:d8:d3:66:fa:4e:78:fe:95:80:9f:93:6f:92:81: 3f:4f:da:26:7a:3c:a8:57:36:c4:33:28:74:bf:90: b1:75:37:67:f5:59:5d:f6:5a:af:52:a0:2e:f8:0c: d9:23:3b:d0:dd:53:ec:fa:88:90:ef:92:37:f2:b7: 89:9b:ff:c5:e0:4b:54:00:dc:ed:39:2b:b2:d1:52: 5e:18:7b:6f:f7:09:e2:84:0a:20:e8:bd:b1:1a:21: 0a:d6:19:d0:8d:76:58:fa:b1:c0:5f:f2:50:ed:76: 93:28:a8:ed:2b:e4:29:2e:f2:59:d9:73:46:dc:1c: 78:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:0B:3C:0B:35:0A:84:83:A6:D8:47:E4:8F:35:DC:E8:25:31:26:DF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7b00::/40 Signature Algorithm: sha256WithRSAEncryption 26:ef:45:ef:e0:d8:9f:ec:6b:78:5a:e1:5c:c1:6d:16:24:31: 26:c4:fe:b8:69:19:43:5a:92:05:ac:aa:ec:8f:6d:74:df:ac: 2b:6c:d6:4d:4c:46:cd:3f:bf:49:f1:72:1e:70:3e:25:a3:6c: a7:70:9b:89:1f:4c:19:4f:5c:20:35:27:b4:d9:0d:81:23:4c: 43:ab:89:7f:63:ee:1e:ff:2a:17:bc:64:3e:ef:02:86:37:1f: 24:61:bb:f2:d4:b2:ec:95:58:44:f1:17:cf:a9:db:17:6b:1e: 23:88:23:75:4f:73:86:8f:03:02:cf:8a:44:78:06:f2:ee:97: 53:cc:5d:bd:33:aa:ec:67:8b:2b:df:ff:e1:62:a5:a3:49:12: 13:4e:b7:6b:92:8f:78:a2:aa:c7:d8:a2:f9:9c:9c:00:58:5d: ec:ef:8a:cc:05:df:66:5c:13:6f:e4:06:37:9d:53:af:7d:be: 6d:24:98:7b:3d:1d:ee:2e:09:2e:96:06:c1:a9:45:58:0f:3e: 03:6f:ca:87:af:65:bc:c2:0c:fb:77:ca:4f:df:cb:ed:a9:10: 5c:cb:1a:26:3c:ff:d4:76:9a:c5:9e:00:c1:0a:b2:94:d9:38: 3b:93:2c:b9:ef:75:3e:a9:e7:94:7b:6f:39:72:4a:5d:64:dc: e7:6d:99:20 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNFTD3+XIQm6i1ta2T9quxL6bh1gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDdaFw0yNjA3MDMwNjUzMDdaMDMxMTAvBgNV BAMTKEU1MEIzQzBCMzUwQTg0ODNBNkQ4NDdFNDhGMzVEQ0U4MjUzMTI2REYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7eXqSx98p+f2PqJ1abwHYjkpM Exu1jrIbZfAahU3QxpXzw5LcgsobnTJe6AgKDLuCA6cyeWa7vTDeU4y6PbpMJLp6 K6UctzD35jB3fMZ1hsRGVdot5CdyLSf6GsAh6/UJk7OK1k57vBElw873fG7uhV7g 0+AZ7KNtYkPM5W4Yx2cyI2zltCPY02b6Tnj+lYCfk2+SgT9P2iZ6PKhXNsQzKHS/ kLF1N2f1WV32Wq9SoC74DNkjO9DdU+z6iJDvkjfyt4mb/8XgS1QA3O05K7LRUl4Y e2/3CeKECiDovbEaIQrWGdCNdlj6scBf8lDtdpMoqO0r5Cku8lnZc0bcHHgJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5Qs8CzUKhIOm2EfkjzXc6CUxJt8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHswDQYJKoZIhvcNAQELBQADggEBACbv Re/g2J/sa3ha4VzBbRYkMSbE/rhpGUNakgWsquyPbXTfrCts1k1MRs0/v0nxch5w PiWjbKdwm4kfTBlPXCA1J7TZDYEjTEOriX9j7h7/Khe8ZD7vAoY3HyRhu/LUsuyV WETxF8+p2xdrHiOII3VPc4aPAwLPikR4BvLul1PMXb0zquxniyvf/+FipaNJEhNO t2uSj3iiqsfYovmcnABYXezviswF32ZcE2/kBjedU699vm0kmHs9He4uCS6WBsGp RVgPPgNvyoevZbzCDPt3yk/fy+2pEFzLGiY8/9R2msWeAMEKspTZODuTLLnvdT6p 55R7bzlySl1k3OdtmSA= -----END CERTIFICATE-----Generated at Sat Jul 5 06:07:12 2025 by rpki-client