$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199680.roa File: AS199680.roa (raw, json) Hash identifier: ws8r/DdQ6nnFQnexfPLKshh5qSq9+ViSH7nI8M5bQsM= Subject key identifier: 9F:88:E6:7A:14:DA:AC:B0:E8:29:68:13:90:EC:4A:CC:BF:C2:6E:B9 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 07007D3F5CBB61251FFADE34C04BB53E572C7169 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199680.roa Signing time: Fri 04 Jul 2025 06:53:17 +0000 ROA not before: Fri 04 Jul 2025 06:48:17 +0000 ROA not after: Fri 03 Jul 2026 06:53:17 +0000 asID: 199680 IP address blocks: 2a0a:6040:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:00:7d:3f:5c:bb:61:25:1f:fa:de:34:c0:4b:b5:3e:57:2c:71:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:17 2025 GMT Not After : Jul 3 06:53:17 2026 GMT Subject: CN=9F88E67A14DAACB0E829681390EC4ACCBFC26EB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ed:99:ee:2a:e8:8c:00:b2:d6:76:b8:73:7a: d6:88:60:db:3a:c9:2b:db:e7:92:85:fd:a8:18:69: f6:12:6a:b5:42:23:f5:07:88:a3:7d:b5:eb:6b:be: 27:4e:13:12:55:83:e9:31:92:52:88:86:43:3b:b7: b1:5e:7d:b0:7c:26:63:b7:f4:ea:f0:99:e5:5c:e2: 87:0e:14:84:b4:ea:bd:28:bb:33:4d:8e:2e:a4:52: 28:ed:69:39:a4:79:23:2b:7e:cc:ae:cd:be:e7:d2: e0:e9:8d:23:39:54:69:7d:f3:12:dc:d8:28:bc:ba: 49:c0:65:02:26:dc:00:f3:00:98:b9:e5:92:bd:a9: 8b:d9:7c:ca:bc:7a:96:3b:73:fd:61:48:fe:1d:3f: aa:03:f7:7c:c5:d9:ca:87:86:ba:a9:a9:f4:ea:89: 88:04:f2:f0:a0:18:53:6e:b1:49:48:d6:a9:ec:13: 39:1a:b1:8b:45:19:a5:50:ba:cb:8f:91:e7:b5:f3: 24:38:26:8b:e3:c9:64:99:c0:88:01:87:89:a0:87: c9:2a:1a:21:fa:ae:c7:1f:43:68:4b:91:c8:1d:0c: 9f:2c:0f:a3:3b:f4:38:7e:8b:d3:00:f7:52:0f:d1: 1a:04:e7:28:30:e5:90:1b:f5:50:05:3d:33:b4:99: ec:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:88:E6:7A:14:DA:AC:B0:E8:29:68:13:90:EC:4A:CC:BF:C2:6E:B9 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7800::/40 Signature Algorithm: sha256WithRSAEncryption 05:b3:f4:61:a3:16:b3:c4:a0:c8:0d:e7:fc:99:64:0d:45:ce: 88:ab:61:b7:a7:6c:3e:ae:b0:75:da:14:65:7a:8a:9c:cb:58: 1d:f0:64:67:17:2b:19:82:87:09:ca:a1:5a:96:93:00:f0:cb: bf:74:dd:09:9f:37:b9:5a:bf:a3:b7:13:3d:ca:6c:0e:58:76: 32:2b:6c:88:d3:a2:fc:db:6a:48:f6:d1:e2:16:d9:23:75:1d: 3d:a3:5f:dd:fa:9c:7f:05:33:3b:ba:0a:ca:7d:13:27:5a:ca: 4d:cb:bc:f0:c4:af:ea:0f:b1:fd:70:6f:97:4a:27:5f:2c:2a: 9f:7b:ff:e1:e8:07:d6:34:43:f0:68:39:24:25:37:3d:12:4a: de:54:a7:48:97:b1:98:86:af:dc:12:09:3c:56:04:4f:14:0b: 8e:83:fd:aa:77:43:3d:df:77:a0:3f:9e:c7:a3:f1:1c:77:f0: 90:12:af:3c:70:ae:76:7f:82:63:b0:a0:32:aa:1f:03:22:f4: 04:8f:09:a5:f0:c3:0c:e9:54:fe:e3:19:1c:d8:e4:04:76:7a: a0:70:f2:b3:17:61:51:3f:2a:87:ee:91:03:c4:e0:ed:80:a2: 4a:06:53:4a:f0:2d:68:6b:d4:14:23:52:ef:91:0c:d6:72:cb: 26:31:69:e0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBwB9P1y7YSUf+t40wEu1PlcscWkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTdaFw0yNjA3MDMwNjUzMTdaMDMxMTAvBgNV BAMTKDlGODhFNjdBMTREQUFDQjBFODI5NjgxMzkwRUM0QUNDQkZDMjZFQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDk7ZnuKuiMALLWdrhzetaIYNs6 ySvb55KF/agYafYSarVCI/UHiKN9tetrvidOExJVg+kxklKIhkM7t7FefbB8JmO3 9OrwmeVc4ocOFIS06r0ouzNNji6kUijtaTmkeSMrfsyuzb7n0uDpjSM5VGl98xLc 2Ci8uknAZQIm3ADzAJi55ZK9qYvZfMq8epY7c/1hSP4dP6oD93zF2cqHhrqpqfTq iYgE8vCgGFNusUlI1qnsEzkasYtFGaVQusuPkee18yQ4JovjyWSZwIgBh4mgh8kq GiH6rscfQ2hLkcgdDJ8sD6M79Dh+i9MA91IP0RoE5ygw5ZAb9VAFPTO0meyfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUn4jmehTarLDoKWgTkOxKzL/CbrkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHgwDQYJKoZIhvcNAQELBQADggEBAAWz 9GGjFrPEoMgN5/yZZA1FzoirYbenbD6usHXaFGV6ipzLWB3wZGcXKxmChwnKoVqW kwDwy7903QmfN7lav6O3Ez3KbA5YdjIrbIjTovzbakj20eIW2SN1HT2jX936nH8F Mzu6Csp9Eydayk3LvPDEr+oPsf1wb5dKJ18sKp97/+HoB9Y0Q/BoOSQlNz0SSt5U p0iXsZiGr9wSCTxWBE8UC46D/ap3Qz3fd6A/nsej8Rx38JASrzxwrnZ/gmOwoDKq HwMi9ASPCaXwwwzpVP7jGRzY5AR2eqBw8rMXYVE/KofukQPE4O2AokoGU0rwLWhr 1BQjUu+RDNZyyyYxaeA= -----END CERTIFICATE-----Generated at Sat Jul 5 06:05:27 2025 by rpki-client