$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199688.roa File: AS199688.roa (raw, json) Hash identifier: WaafM62FwlW7PNkW/JCFIedwE5TEnXmB3qduN+G6EBw= Subject key identifier: 7D:41:EF:32:C8:6E:A8:16:6A:DE:23:0C:60:E4:B8:96:88:67:96:7D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2158CF9E0E903EDF27754663B679644A8DD633EC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199688.roa Signing time: Fri 04 Jul 2025 06:53:00 +0000 ROA not before: Fri 04 Jul 2025 06:48:00 +0000 ROA not after: Fri 03 Jul 2026 06:53:00 +0000 asID: 199688 IP address blocks: 2a0a:6040:7600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:58:cf:9e:0e:90:3e:df:27:75:46:63:b6:79:64:4a:8d:d6:33:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:00 2025 GMT Not After : Jul 3 06:53:00 2026 GMT Subject: CN=7D41EF32C86EA8166ADE230C60E4B8968867967D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:4b:e3:14:9c:a7:67:d2:8a:b5:8f:2a:7d:ca: 6b:8c:96:62:e9:f3:16:ba:3b:12:fb:5b:2f:db:8f: 1e:01:26:ef:72:d1:b1:96:56:07:02:4f:73:d6:59: 28:c1:81:eb:91:e2:fc:4c:19:b6:a8:50:41:a6:a1: 40:84:80:48:7a:bf:0b:ac:46:57:aa:ce:ff:9e:23: ae:98:1d:e2:8e:61:ce:c5:ce:f5:87:f5:68:a9:ca: 4f:11:2c:45:da:4a:a5:d6:76:7e:58:de:e6:21:cd: 47:fd:b8:2b:cd:dd:c3:c4:48:75:af:8c:9b:94:21: a9:18:83:62:3c:ab:40:b4:2b:53:c6:eb:9d:9b:e8: cb:5e:5f:17:ee:59:a2:0b:4b:dc:13:ee:f9:e5:e9: 46:40:dd:41:21:02:03:f8:64:77:0d:c8:c8:83:c7: 24:e1:5f:ea:8d:39:a8:5d:a9:6c:75:43:4a:23:8b: 5c:94:26:16:1a:33:ac:04:1a:c8:28:22:8e:96:6f: 88:67:0f:87:f1:15:cd:b3:0e:7f:d1:fe:ec:97:f9: 29:65:bf:f5:a3:fb:e2:92:7f:93:a2:15:37:85:f7: 7f:ca:c7:dc:d1:77:52:07:28:7f:95:b9:b1:38:70: 0e:11:60:a1:cd:36:a8:93:e3:1d:bc:d9:8c:d0:53: c2:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:41:EF:32:C8:6E:A8:16:6A:DE:23:0C:60:E4:B8:96:88:67:96:7D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199688.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7600::/40 Signature Algorithm: sha256WithRSAEncryption bb:c3:e4:3e:b1:40:e4:7e:af:52:e9:22:a7:36:3f:59:ac:a9: f0:09:00:fa:5a:6d:64:8b:ae:ac:0f:a1:23:5b:fa:f9:6f:c0: 85:79:e1:3f:0e:9b:97:33:6b:c1:38:38:bf:57:38:36:10:f2: 07:1a:39:df:05:d9:d7:31:b5:92:01:30:3d:7a:b6:08:5d:25: cb:22:ec:64:42:69:3c:38:6e:27:c3:ba:05:6a:95:8e:74:20: 9f:b0:a9:fa:7c:48:b6:74:77:d2:ec:b8:90:db:a3:23:44:08: 62:38:98:e2:fa:ca:53:95:14:90:53:fb:c7:e4:f3:f7:72:32: fc:6b:95:38:58:f7:db:30:ac:86:be:2a:37:ed:33:83:17:86: 73:1c:76:f9:08:3f:a2:e1:eb:12:39:36:00:5a:bf:f0:7d:ef: e9:2e:2b:9f:f3:75:e2:ea:2b:eb:bc:3a:df:92:0d:e9:a0:29: 36:fe:4a:cd:6f:9c:1f:8b:67:2b:3b:de:c0:e5:4f:6e:9e:2a: e6:9f:3d:d3:03:6c:50:6d:5b:37:30:8f:3a:d0:34:ee:27:8e: 4e:77:65:e4:07:a8:f3:6b:47:4f:91:7e:a4:27:18:87:09:e7: 13:72:3a:94:8c:2a:5a:d9:8d:f6:80:61:55:8a:ef:7e:38:21: bb:ca:29:b4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIVjPng6QPt8ndUZjtnlkSo3WM+wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDBaFw0yNjA3MDMwNjUzMDBaMDMxMTAvBgNV BAMTKDdENDFFRjMyQzg2RUE4MTY2QURFMjMwQzYwRTRCODk2ODg2Nzk2N0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpS+MUnKdn0oq1jyp9ymuMlmLp 8xa6OxL7Wy/bjx4BJu9y0bGWVgcCT3PWWSjBgeuR4vxMGbaoUEGmoUCEgEh6vwus Rleqzv+eI66YHeKOYc7FzvWH9Wipyk8RLEXaSqXWdn5Y3uYhzUf9uCvN3cPESHWv jJuUIakYg2I8q0C0K1PG652b6MteXxfuWaILS9wT7vnl6UZA3UEhAgP4ZHcNyMiD xyThX+qNOahdqWx1Q0oji1yUJhYaM6wEGsgoIo6Wb4hnD4fxFc2zDn/R/uyX+Sll v/Wj++KSf5OiFTeF93/Kx9zRd1IHKH+VubE4cA4RYKHNNqiT4x282YzQU8LhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUfUHvMshuqBZq3iMMYOS4lohnln0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5Njg4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHYwDQYJKoZIhvcNAQELBQADggEBALvD 5D6xQOR+r1LpIqc2P1msqfAJAPpabWSLrqwPoSNb+vlvwIV54T8Om5cza8E4OL9X ODYQ8gcaOd8F2dcxtZIBMD16tghdJcsi7GRCaTw4bifDugVqlY50IJ+wqfp8SLZ0 d9LsuJDboyNECGI4mOL6ylOVFJBT+8fk8/dyMvxrlThY99swrIa+KjftM4MXhnMc dvkIP6Lh6xI5NgBav/B97+kuK5/zdeLqK+u8Ot+SDemgKTb+Ss1vnB+LZys73sDl T26eKuafPdMDbFBtWzcwjzrQNO4njk53ZeQHqPNrR0+RfqQnGIcJ5xNyOpSMKlrZ jfaAYVWK7344IbvKKbQ= -----END CERTIFICATE-----Generated at Sat Jul 5 03:44:16 2025 by rpki-client