$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199741.roa File: AS199741.roa (raw, json) Hash identifier: OWouc0Dc2xEaM7bJffE2ngD7ImZivem72CRLPL6LTlE= Subject key identifier: 3A:E2:C9:AC:25:26:D9:5D:50:B5:43:27:00:6A:DB:B2:CB:B2:AC:34 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 42D36B3D20F87E94615162C5B0E145D02CF47CB0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199741.roa Signing time: Fri 05 Jun 2026 07:12:32 +0000 ROA not before: Fri 05 Jun 2026 07:07:32 +0000 ROA not after: Fri 04 Jun 2027 07:12:32 +0000 asID: 199741 IP address blocks: 2a0a:6040:6300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d3:6b:3d:20:f8:7e:94:61:51:62:c5:b0:e1:45:d0:2c:f4:7c:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:32 2026 GMT Not After : Jun 4 07:12:32 2027 GMT Subject: CN=3AE2C9AC2526D95D50B54327006ADBB2CBB2AC34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7c:19:07:d6:29:1d:fa:b8:13:2f:da:07:2e: 36:d8:91:f4:2d:1d:c5:a9:75:28:58:f9:09:44:2b: de:93:4c:26:5b:01:01:31:0b:20:53:ff:16:62:59: 01:c2:6c:ff:02:ce:d4:11:49:57:27:47:68:db:ee: 29:46:71:54:9c:fe:3a:a5:af:e1:f4:5f:d6:4a:09: 9f:0c:5f:d6:3c:81:02:56:11:16:9f:52:c5:c2:91: a2:19:22:a0:4a:ae:73:ad:5d:77:87:9e:8d:59:ce: 06:eb:62:0e:d9:dd:d9:e4:0f:c0:92:16:54:ca:18: e6:5c:a6:1f:23:da:04:40:d0:36:9f:80:23:4f:9e: d3:88:08:16:bb:ba:95:c2:6f:9d:7f:5f:86:81:bf: 65:86:83:5a:6a:c6:d8:c5:cc:0c:bd:5f:7d:2d:ae: 57:68:66:b7:da:f1:90:6a:d1:07:ba:d6:b6:df:db: 28:20:17:87:55:3d:d0:51:26:c5:ad:1e:1f:9b:65: 09:25:54:33:39:d2:8f:4e:37:dd:82:85:49:82:bc: ac:2d:2d:e9:45:8c:f5:f4:a6:8c:81:90:88:e2:f1: ce:bb:e2:7b:ee:70:31:dc:28:8d:c8:1c:96:52:ae: 79:89:54:87:7d:8f:5d:ba:42:da:23:8b:2b:2a:de: d5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:E2:C9:AC:25:26:D9:5D:50:B5:43:27:00:6A:DB:B2:CB:B2:AC:34 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199741.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6300::/40 Signature Algorithm: sha256WithRSAEncryption 80:1c:87:22:50:a4:b5:88:09:58:05:ac:74:d1:f9:1e:c3:e5: 6c:60:05:e3:f5:0d:c1:d5:59:07:c7:5b:dd:6c:c5:a7:5f:5d: c4:ca:22:1e:13:75:16:c7:dc:e7:2e:43:f5:37:56:1f:3e:05: 2b:10:fe:ec:3a:5b:56:fc:84:a3:bb:0c:76:48:c2:99:01:1d: c1:cb:89:80:d7:eb:4e:9c:57:4f:d9:7f:97:6b:e6:71:09:cd: af:e9:89:18:13:92:d5:e7:66:b0:f6:2d:d6:eb:cd:b0:9e:aa: 2b:3c:2e:bf:17:a6:f7:03:51:bb:ac:e2:9d:77:bc:aa:95:38: 85:d4:46:ff:40:70:e4:fc:2b:34:4a:fc:ea:43:5e:17:60:a8: fd:bd:36:49:d8:00:93:b9:50:a8:db:b6:7b:48:f0:43:81:53: 43:ff:c7:df:0e:23:03:d4:e5:35:fb:06:d1:7b:39:ff:b0:8f: d1:ca:f1:f3:7b:07:aa:1a:be:e0:4d:4f:c9:85:a2:4e:8f:f7: c7:a1:47:8f:94:23:b7:93:da:ff:3c:1f:ec:0b:62:37:5b:c8: 80:4e:e4:44:0f:74:b9:a0:2a:ff:21:5e:18:99:f4:21:a0:8c: bd:22:84:2d:a4:61:cc:fd:2a:4a:d4:51:cd:41:a7:4a:3b:c3: 8e:d0:d4:bc -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQtNrPSD4fpRhUWLFsOFF0Cz0fLAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzJaFw0yNzA2MDQwNzEyMzJaMDMxMTAvBgNV BAMTKDNBRTJDOUFDMjUyNkQ5NUQ1MEI1NDMyNzAwNkFEQkIyQ0JCMkFDMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgfBkH1ikd+rgTL9oHLjbYkfQt HcWpdShY+QlEK96TTCZbAQExCyBT/xZiWQHCbP8CztQRSVcnR2jb7ilGcVSc/jql r+H0X9ZKCZ8MX9Y8gQJWERafUsXCkaIZIqBKrnOtXXeHno1ZzgbrYg7Z3dnkD8CS FlTKGOZcph8j2gRA0DafgCNPntOICBa7upXCb51/X4aBv2WGg1pqxtjFzAy9X30t rldoZrfa8ZBq0Qe61rbf2yggF4dVPdBRJsWtHh+bZQklVDM50o9ON92ChUmCvKwt LelFjPX0poyBkIji8c674nvucDHcKI3IHJZSrnmJVId9j126Qtojiysq3tVnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOuLJrCUm2V1QtUMnAGrbssuyrDQwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NzQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGMwDQYJKoZIhvcNAQELBQADggEBAIAc hyJQpLWICVgFrHTR+R7D5WxgBeP1DcHVWQfHW91sxadfXcTKIh4TdRbH3OcuQ/U3 Vh8+BSsQ/uw6W1b8hKO7DHZIwpkBHcHLiYDX606cV0/Zf5dr5nEJza/piRgTktXn ZrD2LdbrzbCeqis8Lr8XpvcDUbus4p13vKqVOIXURv9AcOT8KzRK/OpDXhdgqP29 NknYAJO5UKjbtntI8EOBU0P/x98OIwPU5TX7BtF7Of+wj9HK8fN7B6oavuBNT8mF ok6P98ehR4+UI7eT2v88H+wLYjdbyIBO5EQPdLmgKv8hXhiZ9CGgjL0ihC2kYcz9 KkrUUc1Bp0o7w47Q1Lw= -----END CERTIFICATE-----Generated at Thu Jun 11 21:38:30 2026 by rpki-client