$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199680.roa File: AS199680.roa (raw, json) Hash identifier: Oxj5TK2trOw5rmil9VSTVifAx83Is2PrncbT3KLZWec= Subject key identifier: BA:00:BD:6D:C8:07:A6:94:C2:6C:60:C4:22:EF:AB:2F:B0:8A:EC:35 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 618338DC9689C1A257A4A3ECE13DD99CB920DDFC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199680.roa Signing time: Fri 05 Jun 2026 07:12:16 +0000 ROA not before: Fri 05 Jun 2026 07:07:16 +0000 ROA not after: Fri 04 Jun 2027 07:12:16 +0000 asID: 199680 IP address blocks: 2a0a:6040:7800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Jun 2026 02:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:83:38:dc:96:89:c1:a2:57:a4:a3:ec:e1:3d:d9:9c:b9:20:dd:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:16 2026 GMT Not After : Jun 4 07:12:16 2027 GMT Subject: CN=BA00BD6DC807A694C26C60C422EFAB2FB08AEC35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7f:b4:fb:45:4e:d5:03:75:ec:f1:bb:0f:36: 83:51:6d:41:b9:97:86:39:ea:21:ac:a5:54:6c:ea: c1:49:8f:bc:73:3c:33:a4:08:8d:93:62:42:85:c5: 6c:1f:14:9e:76:15:8d:f5:62:ae:83:ae:57:10:3f: f0:e5:d7:6a:24:cd:1e:60:89:7e:b3:50:b7:64:a6: e7:42:2f:89:c1:3b:44:0b:67:6a:41:ee:e5:23:95: 5d:b5:39:d4:f1:dc:e3:47:de:21:cb:13:d0:9e:ff: 1e:bb:1c:a3:a1:9d:57:24:a9:8f:24:2e:8a:8c:a7: c0:a7:d8:85:78:14:76:88:02:d1:3d:17:be:2d:4b: 31:e5:9d:8e:6e:98:b5:8d:ae:26:d3:7e:94:00:3a: 7c:6e:11:08:a6:00:af:55:2a:77:7e:15:e1:95:9b: 0f:1b:3e:df:1a:01:65:45:45:ad:ce:81:e6:2f:05: 9c:45:6f:13:e2:84:20:2a:95:a4:46:1b:fb:fa:3f: 3c:4c:48:d0:ea:ec:c1:c3:ea:c4:5b:9e:c6:9d:f9: 34:86:ae:c6:9d:a6:6c:f7:88:82:17:11:da:df:60: 98:32:d2:78:85:a3:85:80:93:b3:55:02:78:dc:d6: 66:85:02:2f:fb:94:03:52:e6:d4:fa:9d:30:98:8e: a8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:00:BD:6D:C8:07:A6:94:C2:6C:60:C4:22:EF:AB:2F:B0:8A:EC:35 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199680.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7800::/40 Signature Algorithm: sha256WithRSAEncryption c6:c2:ae:5a:2d:8b:01:8e:66:3f:19:ce:a3:3a:df:fd:8e:4d: 07:2c:24:26:fa:4c:02:f3:45:f4:b2:05:06:6a:b4:88:01:18: fc:56:75:6d:f7:25:da:02:f5:8b:40:06:75:3d:8f:e5:e4:d6: 76:ba:9a:b1:15:49:ce:1a:94:eb:91:e4:f4:3e:fe:d8:48:c9: 39:6e:1e:bc:1d:09:a7:aa:94:00:65:dc:d0:19:90:f6:11:60: bc:f2:4f:ec:e5:97:f4:4f:d1:27:39:49:47:e0:77:97:84:95: fe:3e:94:17:ab:37:af:bb:75:93:7e:93:d4:3a:5c:e1:63:90: 05:49:27:87:ff:4d:a9:f6:d8:ec:26:93:d1:9e:69:dd:20:fd: 6d:6a:1c:83:cc:15:f0:1f:9f:47:c8:e7:23:cb:7a:49:2c:0a: 5d:4f:51:a9:76:f6:d5:b7:ba:1b:1f:08:1f:dc:42:35:8a:a4: ea:31:8e:f8:a4:34:7a:0f:23:b7:2c:6f:43:e2:25:e0:33:4c: 4f:08:b1:e3:77:35:01:be:61:65:94:c3:11:fb:ec:e2:66:5b: b7:db:d9:ec:9a:19:bf:50:55:b6:4b:7e:08:3c:e9:6a:26:f0: d2:42:cb:8f:78:93:56:0a:91:eb:91:e2:a2:e7:26:dc:eb:d2: e5:c5:c0:8b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYYM43JaJwaJXpKPs4T3ZnLkg3fwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTZaFw0yNzA2MDQwNzEyMTZaMDMxMTAvBgNV BAMTKEJBMDBCRDZEQzgwN0E2OTRDMjZDNjBDNDIyRUZBQjJGQjA4QUVDMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuf7T7RU7VA3Xs8bsPNoNRbUG5 l4Y56iGspVRs6sFJj7xzPDOkCI2TYkKFxWwfFJ52FY31Yq6DrlcQP/Dl12okzR5g iX6zULdkpudCL4nBO0QLZ2pB7uUjlV21OdTx3ONH3iHLE9Ce/x67HKOhnVckqY8k LoqMp8Cn2IV4FHaIAtE9F74tSzHlnY5umLWNribTfpQAOnxuEQimAK9VKnd+FeGV mw8bPt8aAWVFRa3OgeYvBZxFbxPihCAqlaRGG/v6PzxMSNDq7MHD6sRbnsad+TSG rsadpmz3iIIXEdrfYJgy0niFo4WAk7NVAnjc1maFAi/7lANS5tT6nTCYjqiXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUugC9bcgHppTCbGDEIu+rL7CK7DUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjgwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHgwDQYJKoZIhvcNAQELBQADggEBAMbC rlotiwGOZj8ZzqM63/2OTQcsJCb6TALzRfSyBQZqtIgBGPxWdW33JdoC9YtABnU9 j+Xk1na6mrEVSc4alOuR5PQ+/thIyTluHrwdCaeqlABl3NAZkPYRYLzyT+zll/RP 0Sc5SUfgd5eElf4+lBerN6+7dZN+k9Q6XOFjkAVJJ4f/Tan22Owmk9Gead0g/W1q HIPMFfAfn0fI5yPLekksCl1PUal29tW3uhsfCB/cQjWKpOoxjvikNHoPI7csb0Pi JeAzTE8IseN3NQG+YWWUwxH77OJmW7fb2eyaGb9QVbZLfgg86Wom8NJCy494k1YK keuR4qLnJtzr0uXFwIs= -----END CERTIFICATE-----Generated at Sat Jun 6 06:41:08 2026 by rpki-client