$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199825.roa File: AS199825.roa (raw, json) Hash identifier: QmopTrr1ipbf/icmqN3Ku9EP2QIloynK0vexrBsbMOs= Subject key identifier: 2F:21:C5:6A:BE:28:8B:E7:29:0B:3E:0C:FB:E3:2D:1F:31:38:23:E6 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6134CECFDEE1B967BAFC13561EDB47D5A3D81FDA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199825.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 199825 IP address blocks: 2a0a:6040:6700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:34:ce:cf:de:e1:b9:67:ba:fc:13:56:1e:db:47:d5:a3:d8:1f:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=2F21C56ABE288BE7290B3E0CFBE32D1F313823E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:eb:15:0e:a6:fb:00:cc:4f:5f:d1:64:2a: 8a:82:84:f1:be:e3:f5:ba:65:a3:5b:88:71:64:8c: 1c:00:50:42:b0:37:04:1f:32:00:6b:a9:39:17:63: fd:52:4e:75:88:3e:03:93:6f:61:f8:ba:43:8b:8a: a8:db:1c:eb:6e:2f:02:ed:29:c5:54:f8:fe:86:04: f9:91:ff:e5:e4:f8:5c:70:35:e3:09:50:e2:97:d7: 66:21:1b:0b:e0:3c:41:64:e5:8c:f3:df:10:f0:cd: d6:d4:7f:36:10:81:da:8f:f8:39:6d:1d:cd:70:bd: 8a:c5:59:a5:1b:74:a0:84:12:5c:ff:4f:05:61:e8: 15:b3:76:6a:46:7d:fc:f1:19:4d:eb:13:8f:c8:34: 4f:c2:c0:1b:29:bc:0e:a7:5f:8b:22:34:15:2e:89: ae:dd:bd:c9:80:5c:a8:12:60:b7:d7:4a:72:1b:42: 2c:28:b8:d6:79:6b:63:42:08:b4:e7:90:f5:8a:d5: e9:11:d0:8a:fc:eb:da:61:30:b2:02:78:21:2e:c1: 0b:f2:f3:d0:0d:42:7a:2d:3c:d2:ab:48:04:57:4a: c3:dd:96:5e:3d:7d:36:b9:8a:b7:72:88:d4:30:53: f0:65:46:43:22:de:2e:36:aa:68:29:b0:e4:b9:da: d7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:21:C5:6A:BE:28:8B:E7:29:0B:3E:0C:FB:E3:2D:1F:31:38:23:E6 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199825.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6700::/40 Signature Algorithm: sha256WithRSAEncryption 21:e2:fc:b8:36:59:f1:09:2b:81:3c:d9:76:6e:ff:2a:33:56: 0d:42:12:71:2a:64:18:7a:5a:8f:e1:6b:87:58:a5:ac:b7:fe: e8:4d:5b:be:a5:e2:5d:1a:cd:6b:22:d3:df:3a:b4:fe:d3:30: 86:8a:16:2a:5c:3a:97:6a:a0:fa:40:92:b0:a6:a3:8d:b4:58: 1d:db:70:2c:b3:4a:b3:70:34:70:33:3c:b6:80:c4:ec:d4:db: 03:49:09:7b:c2:cc:6a:a6:8a:90:ea:16:67:27:a5:a6:8c:67: 38:2f:80:33:f7:f4:df:b6:f1:54:01:d4:b6:30:b9:d7:44:b9: da:12:51:92:42:c0:c3:fb:88:40:0b:d3:01:d6:7a:08:67:28: 4a:9d:35:e8:32:1e:84:84:40:b9:18:05:b7:e4:c4:c8:78:dc: e0:94:b6:7b:6b:d0:fe:c5:2b:5f:43:ac:74:e7:42:f4:f9:9c: 99:cb:bb:a4:b5:41:0a:02:ea:8a:03:cb:cf:07:c8:d9:5b:50: 03:62:fd:d6:9d:e8:fb:97:f5:fc:ae:a8:50:e8:f2:7f:86:86: b1:aa:bb:a4:e4:8b:bb:95:f3:65:a9:fc:6e:a2:ac:77:33:6f: a5:f1:89:ed:38:d4:9c:53:31:d9:d8:6e:f4:74:cb:49:f4:80: f6:9d:93:8b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUYTTOz97huWe6/BNWHttH1aPYH9owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDJGMjFDNTZBQkUyODhCRTcyOTBCM0UwQ0ZCRTMyRDFGMzEzODIzRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/MusVDqb7AMxPX9FkKoqChPG+ 4/W6ZaNbiHFkjBwAUEKwNwQfMgBrqTkXY/1STnWIPgOTb2H4ukOLiqjbHOtuLwLt KcVU+P6GBPmR/+Xk+FxwNeMJUOKX12YhGwvgPEFk5Yzz3xDwzdbUfzYQgdqP+Dlt Hc1wvYrFWaUbdKCEElz/TwVh6BWzdmpGffzxGU3rE4/INE/CwBspvA6nX4siNBUu ia7dvcmAXKgSYLfXSnIbQiwouNZ5a2NCCLTnkPWK1ekR0Ir869phMLICeCEuwQvy 89ANQnotPNKrSARXSsPdll49fTa5irdyiNQwU/BlRkMi3i42qmgpsOS52tfDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULyHFar4oi+cpCz4M++MtHzE4I+YwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5ODI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGcwDQYJKoZIhvcNAQELBQADggEBACHi /Lg2WfEJK4E82XZu/yozVg1CEnEqZBh6Wo/ha4dYpay3/uhNW76l4l0azWsi0986 tP7TMIaKFipcOpdqoPpAkrCmo420WB3bcCyzSrNwNHAzPLaAxOzU2wNJCXvCzGqm ipDqFmcnpaaMZzgvgDP39N+28VQB1LYwuddEudoSUZJCwMP7iEAL0wHWeghnKEqd NegyHoSEQLkYBbfkxMh43OCUtntr0P7FK19DrHTnQvT5nJnLu6S1QQoC6ooDy88H yNlbUANi/dad6PuX9fyuqFDo8n+GhrGqu6Tki7uV82Wp/G6irHczb6Xxie041JxT MdnYbvR0y0n0gPadk4s= -----END CERTIFICATE-----Generated at Sat Jul 5 04:04:27 2025 by rpki-client