$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199741.roa File: AS199741.roa (raw, json) Hash identifier: 6xxJUX+IXsEKlB78yobhhjB+RyTZOOk1fWg8BhscJro= Subject key identifier: 19:4C:ED:44:8B:6E:D8:00:5E:79:C3:E6:94:4C:98:EA:01:65:13:18 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 42E2D156DCB370C80B96A1E7B33AEDED607D7779 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199741.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 199741 IP address blocks: 2a0a:6040:6300::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:e2:d1:56:dc:b3:70:c8:0b:96:a1:e7:b3:3a:ed:ed:60:7d:77:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=194CED448B6ED8005E79C3E6944C98EA01651318 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f6:a5:02:d4:d1:ac:63:cc:9b:a7:f1:0c:a0: fb:56:37:11:1c:e2:3c:95:fb:c5:76:a8:76:02:f9: 7a:1f:1b:91:a7:29:41:e5:b5:95:59:47:e9:fc:4f: 3b:50:8f:4f:0f:bf:1e:9c:e1:47:59:95:cd:d9:96: ad:fa:c7:71:37:07:82:aa:1f:50:f6:33:6c:72:87: ea:fe:86:ca:03:a9:86:4f:f4:6e:4a:44:d3:27:15: da:7b:41:a3:0f:44:54:08:e8:b6:e2:21:87:a7:22: 05:87:7b:28:1d:a0:88:eb:5a:f3:2c:fe:27:a4:5e: d6:60:02:1b:69:af:e3:d9:02:8f:61:56:84:26:85: 4a:e9:ef:7c:fb:e7:67:43:6f:74:f8:83:9b:bc:60: d7:6d:42:22:8d:62:1f:13:52:f1:52:19:50:29:5b: ec:63:19:64:1c:5b:8e:b1:7e:97:ac:d6:eb:9e:ee: 5e:d6:56:70:8d:29:57:08:e3:24:49:0c:7d:7a:27: 5c:a3:79:eb:bc:a2:fd:34:62:7e:10:df:7c:b7:51: c1:e2:db:a1:ad:20:f3:5b:54:a2:39:a2:aa:ba:81: ab:45:15:4d:c5:17:9c:6f:0b:78:3c:3a:84:b4:8b: aa:9c:90:e8:79:b4:01:9f:3e:ac:f3:9b:86:b1:2b: ed:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4C:ED:44:8B:6E:D8:00:5E:79:C3:E6:94:4C:98:EA:01:65:13:18 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199741.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6300::/40 Signature Algorithm: sha256WithRSAEncryption df:9c:5e:ce:5c:2b:da:7f:bc:9a:ab:02:0d:63:1b:83:9a:42: 3c:29:37:1c:72:4b:16:50:7d:e3:9c:63:f1:04:43:e0:80:50: 91:3e:96:c0:08:d9:b6:28:e6:40:1d:1a:06:88:22:d4:74:a9: 1e:8f:60:c5:9e:26:45:64:7c:66:ae:90:8a:8e:59:9a:a8:b1: e7:7f:42:21:f3:b3:b4:85:cf:fb:44:22:2c:de:ae:42:9e:8f: 93:55:4c:ec:11:71:e8:bd:38:1a:d4:52:7f:34:ec:2d:0b:53: bd:e5:a8:63:cc:43:bd:3c:57:fb:13:31:7b:d2:9d:aa:50:79: 12:4b:68:21:3c:74:0d:16:7b:d5:50:b5:dc:fa:dd:09:3c:05: b8:df:d3:85:08:f9:4d:ef:37:62:8e:70:f1:43:57:03:6f:e9: 45:7d:e1:a9:60:65:73:c6:b0:c2:0c:7d:9a:d5:06:c8:a7:0b: b0:a1:33:d1:2e:48:f3:98:9d:92:b9:05:db:c2:8a:92:8e:43: ca:4e:e8:17:4c:4d:60:d2:44:64:b7:e2:d7:71:a1:b0:e3:05: ac:9d:8d:8a:7d:d0:eb:f9:78:70:5d:32:eb:46:8a:30:db:72: d4:bd:15:fa:c4:64:94:76:fb:56:e9:c9:5a:6c:ca:05:06:7c: ed:29:5e:ac -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQuLRVtyzcMgLlqHnszrt7WB9d3kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDE5NENFRDQ0OEI2RUQ4MDA1RTc5QzNFNjk0NEM5OEVBMDE2NTEzMTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC39qUC1NGsY8ybp/EMoPtWNxEc 4jyV+8V2qHYC+XofG5GnKUHltZVZR+n8TztQj08Pvx6c4UdZlc3Zlq36x3E3B4Kq H1D2M2xyh+r+hsoDqYZP9G5KRNMnFdp7QaMPRFQI6LbiIYenIgWHeygdoIjrWvMs /iekXtZgAhtpr+PZAo9hVoQmhUrp73z752dDb3T4g5u8YNdtQiKNYh8TUvFSGVAp W+xjGWQcW46xfpes1uue7l7WVnCNKVcI4yRJDH16J1yjeeu8ov00Yn4Q33y3UcHi 26GtIPNbVKI5oqq6gatFFU3FF5xvC3g8OoS0i6qckOh5tAGfPqzzm4axK+0VAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUGUztRItu2ABeecPmlEyY6gFlExgwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NzQxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGMwDQYJKoZIhvcNAQELBQADggEBAN+c Xs5cK9p/vJqrAg1jG4OaQjwpNxxySxZQfeOcY/EEQ+CAUJE+lsAI2bYo5kAdGgaI ItR0qR6PYMWeJkVkfGaukIqOWZqosed/QiHzs7SFz/tEIizerkKej5NVTOwRcei9 OBrUUn807C0LU73lqGPMQ708V/sTMXvSnapQeRJLaCE8dA0We9VQtdz63Qk8Bbjf 04UI+U3vN2KOcPFDVwNv6UV94algZXPGsMIMfZrVBsinC7ChM9EuSPOYnZK5BdvC ipKOQ8pO6BdMTWDSRGS34tdxobDjBaydjYp90Ov5eHBdMutGijDbctS9FfrEZJR2 +1bpyVpsygUGfO0pXqw= -----END CERTIFICATE-----Generated at Sat Jul 5 04:11:13 2025 by rpki-client