$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199840.roa File: AS199840.roa (raw, json) Hash identifier: NF7lizndzLRyz8gLBkLHZaHH/jCdmM/SC9FTLaa3YwM= Subject key identifier: 2D:B1:36:0E:49:0A:78:8E:3A:B3:10:6B:8E:7E:AD:1E:1B:E4:E2:A0 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3EE895B4CCC8CA95F1F11714C0E88941D186BFB8 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199840.roa Signing time: Fri 04 Jul 2025 06:53:15 +0000 ROA not before: Fri 04 Jul 2025 06:48:15 +0000 ROA not after: Fri 03 Jul 2026 06:53:15 +0000 asID: 199840 IP address blocks: 2a0a:6040:6800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e8:95:b4:cc:c8:ca:95:f1:f1:17:14:c0:e8:89:41:d1:86:bf:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:15 2025 GMT Not After : Jul 3 06:53:15 2026 GMT Subject: CN=2DB1360E490A788E3AB3106B8E7EAD1E1BE4E2A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:70:1b:d4:df:ee:0c:9a:26:60:6a:e6:75:8e: 76:3b:ed:e9:d2:1f:19:56:63:db:28:97:88:1d:a1: 97:c4:86:82:0b:8e:2e:34:ca:87:7c:6a:65:9b:ce: c9:fe:6d:b4:0a:4e:bf:09:98:25:23:2f:36:79:5a: 4e:14:96:f5:d2:af:33:e3:ed:7c:bd:6d:77:30:f3: 69:35:26:6c:fa:84:a5:10:90:b5:c0:e9:b4:26:b4: 3b:94:a7:56:af:56:84:94:d1:62:98:15:f7:bb:a1: 85:10:e2:c6:cc:df:cd:a2:f5:89:e2:c8:fc:24:6d: 78:37:9b:58:3d:b7:bd:54:6b:b8:2b:c6:74:f1:06: a4:92:15:f4:30:1c:c6:e6:1f:ac:34:66:c1:88:39: ee:82:70:8e:ae:c6:5d:34:dd:32:fe:63:90:89:1b: 3d:e2:40:55:a2:85:47:59:e7:71:d2:7a:11:f9:04: c4:50:13:ad:e5:5a:15:3e:df:a2:84:c8:54:d8:23: 5b:79:36:e5:7e:87:99:90:17:1c:a3:d9:06:08:50: f1:1c:df:4e:f8:be:9d:8e:8b:c1:eb:10:da:c9:60: 2c:c2:d4:44:91:cf:3e:24:38:a0:69:74:91:2f:62: 78:fd:13:78:7a:f8:15:5c:73:9c:af:3e:d3:84:e0: 7b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B1:36:0E:49:0A:78:8E:3A:B3:10:6B:8E:7E:AD:1E:1B:E4:E2:A0 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199840.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:6800::/40 Signature Algorithm: sha256WithRSAEncryption 3c:7b:f1:00:86:a3:32:35:6b:cd:77:85:c2:44:83:e2:1d:f9: 07:83:d3:1a:f6:af:46:5b:cf:4d:04:bd:43:9c:09:ba:63:ad: b5:2a:e9:0f:84:85:04:11:69:53:b2:9f:b1:6c:91:19:73:de: 2c:78:77:f8:f7:ba:5f:ac:97:6c:11:47:b6:d5:f0:3a:45:2a: f6:cd:9d:89:2f:d7:31:e4:cb:b7:52:ef:a2:4e:e9:1f:8b:0e: 68:44:2f:ce:45:53:6d:51:d1:9d:07:b0:23:d0:73:70:a9:35: 98:82:a2:5c:c5:a0:46:2c:cd:ea:4b:a8:f7:9c:53:f9:ee:9c: 16:df:31:6c:74:99:14:3e:4a:b1:90:b5:54:ef:10:d1:94:6b: de:dd:7e:e8:68:94:e9:02:97:4f:88:69:81:f6:88:04:3d:6c: e7:ec:d8:9e:19:98:3a:0c:ea:4e:21:a2:96:8e:dd:d6:72:4c: 63:96:10:ab:c9:65:ad:34:9e:68:9c:2c:3e:30:7c:18:72:1f: af:49:53:b0:b9:27:d2:cd:96:b1:b8:9f:7a:70:c1:c6:e5:57: 02:73:9e:1a:71:5c:16:49:e3:46:10:e0:a8:81:dd:9d:5d:83: 65:e3:53:fd:82:64:e8:62:be:ff:33:90:bf:66:7f:a3:fc:0f: b9:3b:e9:e1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPuiVtMzIypXx8RcUwOiJQdGGv7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTVaFw0yNjA3MDMwNjUzMTVaMDMxMTAvBgNV BAMTKDJEQjEzNjBFNDkwQTc4OEUzQUIzMTA2QjhFN0VBRDFFMUJFNEUyQTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDycBvU3+4MmiZgauZ1jnY77enS HxlWY9sol4gdoZfEhoILji40yod8amWbzsn+bbQKTr8JmCUjLzZ5Wk4UlvXSrzPj 7Xy9bXcw82k1Jmz6hKUQkLXA6bQmtDuUp1avVoSU0WKYFfe7oYUQ4sbM382i9Yni yPwkbXg3m1g9t71Ua7grxnTxBqSSFfQwHMbmH6w0ZsGIOe6CcI6uxl003TL+Y5CJ Gz3iQFWihUdZ53HSehH5BMRQE63lWhU+36KEyFTYI1t5NuV+h5mQFxyj2QYIUPEc 3074vp2Oi8HrENrJYCzC1ESRzz4kOKBpdJEvYnj9E3h6+BVcc5yvPtOE4HuLAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQULbE2DkkKeI46sxBrjn6tHhvk4qAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5ODQwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQGgwDQYJKoZIhvcNAQELBQADggEBADx7 8QCGozI1a813hcJEg+Id+QeD0xr2r0Zbz00EvUOcCbpjrbUq6Q+EhQQRaVOyn7Fs kRlz3ix4d/j3ul+sl2wRR7bV8DpFKvbNnYkv1zHky7dS76JO6R+LDmhEL85FU21R 0Z0HsCPQc3CpNZiColzFoEYszepLqPecU/nunBbfMWx0mRQ+SrGQtVTvENGUa97d fuholOkCl0+IaYH2iAQ9bOfs2J4ZmDoM6k4hopaO3dZyTGOWEKvJZa00nmicLD4w fBhyH69JU7C5J9LNlrG4n3pwwcblVwJznhpxXBZJ40YQ4KiB3Z1dg2XjU/2CZOhi vv8zkL9mf6P8D7k76eE= -----END CERTIFICATE-----Generated at Sat Jul 5 03:52:39 2025 by rpki-client