$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199925.roa File: AS199925.roa (raw, json) Hash identifier: fZXfvvmZVp/Pg5ohNfBnzkbfuJDPxmKue84qYCKwxz8= Subject key identifier: 29:81:E7:89:98:7F:FB:53:1B:C1:5F:40:0D:F8:12:4F:42:08:50:11 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 606DEED001EC38E4F6B3F9882AAB80CA47C6FE31 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199925.roa Signing time: Fri 04 Jul 2025 06:53:02 +0000 ROA not before: Fri 04 Jul 2025 06:48:02 +0000 ROA not after: Fri 03 Jul 2026 06:53:02 +0000 asID: 199925 IP address blocks: 2a05:dfc1:100::/40 maxlen: 48 2a05:dfc1:3700::/40 maxlen: 48 2a05:dfc1:3d00::/40 maxlen: 48 2a05:dfc1:5100::/40 maxlen: 48 2a05:dfc1:5200::/40 maxlen: 48 2a05:dfc1:5c00::/40 maxlen: 48 2a05:dfc1:9900::/40 maxlen: 48 2a0a:6040:8f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:6d:ee:d0:01:ec:38:e4:f6:b3:f9:88:2a:ab:80:ca:47:c6:fe:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:02 2025 GMT Not After : Jul 3 06:53:02 2026 GMT Subject: CN=2981E789987FFB531BC15F400DF8124F42085011 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9c:0f:81:dd:1b:57:61:05:08:2d:33:d0:a7: 04:ac:69:3f:74:d6:b4:d1:d1:63:f3:85:5c:d5:78: 1e:63:6f:3c:5b:59:55:90:02:5b:81:94:ab:59:c6: 52:00:b2:df:39:9a:8c:e3:fa:e9:03:94:73:93:7a: b3:a2:52:9e:3b:b5:13:7d:aa:16:3c:0d:de:f6:51: 11:d3:87:1b:a0:1f:1c:a6:e6:0c:c1:dd:bd:ee:b3: dd:d3:7d:45:5c:52:2b:57:10:ff:b3:69:6e:1a:52: 1e:59:44:12:fd:3b:82:6a:34:af:3b:82:ed:42:e7: b6:67:5d:91:c1:e6:9e:d2:15:e8:c8:3e:bb:f4:ba: e4:26:2c:76:be:36:0a:53:55:7d:ee:33:55:7c:e5: db:28:3e:78:4f:74:38:06:1d:83:e5:ff:1b:83:ae: 7a:32:47:f7:6d:1a:0a:31:ce:2c:00:30:f5:1d:ac: 1a:63:0f:a7:fb:e4:8d:e0:69:4d:13:bc:bc:a5:10: 6b:3f:78:f0:79:75:f1:64:7e:71:02:08:ca:40:f9: 14:d5:f4:00:ce:4e:56:01:40:d1:75:cc:ec:a0:00: d7:fd:a5:33:99:b0:25:cc:a5:f5:ac:ca:ca:19:cb: 24:76:4a:98:02:53:e9:dd:6c:8e:86:1c:75:8e:e7: 17:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:81:E7:89:98:7F:FB:53:1B:C1:5F:40:0D:F8:12:4F:42:08:50:11 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199925.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:100::/40 2a05:dfc1:3700::/40 2a05:dfc1:3d00::/40 2a05:dfc1:5100::-2a05:dfc1:52ff:ffff:ffff:ffff:ffff:ffff 2a05:dfc1:5c00::/40 2a05:dfc1:9900::/40 2a0a:6040:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 11:86:d5:ee:5f:5d:1d:06:97:e6:12:ae:cd:81:13:11:2a:cf: 10:f7:b2:41:e7:21:28:38:b8:5e:54:62:98:cc:92:7b:4d:a2: a3:18:82:8d:af:c6:9a:07:7a:ba:9d:87:74:b3:de:c9:0f:1a: d3:5d:9c:98:0f:7c:37:3c:72:30:3f:cf:c9:59:81:49:dd:35: 5f:0f:50:43:ab:90:9e:3f:6a:d9:46:b4:ee:71:db:fa:f2:f6: 6d:d1:26:9b:da:b7:18:ed:b5:dd:45:cb:d7:96:5b:ed:e2:7d: 42:a3:3b:84:ac:f5:9c:f6:36:44:1e:1d:fc:95:14:c4:0b:cf: e3:70:c7:79:d2:b0:2b:d8:10:0e:3f:e6:9f:a5:1e:98:80:12: 8b:5d:67:60:90:de:b8:96:b0:2d:0b:a2:a7:01:d0:7b:f2:82: 78:dc:88:8a:fe:f2:0e:db:f0:b6:30:98:f6:6e:6b:70:80:d2: c6:b5:c1:00:52:2d:f0:4c:e3:37:9c:ec:75:69:a6:34:6b:85: 83:58:41:8c:42:10:43:de:79:85:f4:88:22:89:87:2c:3a:bf: 03:3c:42:3e:e6:82:93:ec:e5:b4:ba:18:0e:33:96:33:21:9e: 7e:86:89:7e:93:02:83:c2:b5:be:f6:f6:c8:e5:3d:da:4f:20: 37:f1:fc:12 -----BEGIN CERTIFICATE----- MIIFJDCCBAygAwIBAgIUYG3u0AHsOOT2s/mIKquAykfG/jEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDJaFw0yNjA3MDMwNjUzMDJaMDMxMTAvBgNV BAMTKDI5ODFFNzg5OTg3RkZCNTMxQkMxNUY0MDBERjgxMjRGNDIwODUwMTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEnA+B3RtXYQUILTPQpwSsaT90 1rTR0WPzhVzVeB5jbzxbWVWQAluBlKtZxlIAst85mozj+ukDlHOTerOiUp47tRN9 qhY8Dd72URHThxugHxym5gzB3b3us93TfUVcUitXEP+zaW4aUh5ZRBL9O4JqNK87 gu1C57ZnXZHB5p7SFejIPrv0uuQmLHa+NgpTVX3uM1V85dsoPnhPdDgGHYPl/xuD rnoyR/dtGgoxziwAMPUdrBpjD6f75I3gaU0TvLylEGs/ePB5dfFkfnECCMpA+RTV 9ADOTlYBQNF1zOygANf9pTOZsCXMpfWsysoZyyR2SpgCU+ndbI6GHHWO5xcDAgMB AAGjggIuMIICKjAdBgNVHQ4EFgQUKYHniZh/+1MbwV9ADfgST0IIUBEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5OTI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGCCsGAQUF BwEHAQH/BEwwSjBIBAIAAjBCAwYAKgXfwQEDBgAqBd/BNwMGACoF38E9MBADBgAq Bd/BUQMGACoF38FSAwYAKgXfwVwDBgAqBd/BmQMGACoKYECPMA0GCSqGSIb3DQEB CwUAA4IBAQARhtXuX10dBpfmEq7NgRMRKs8Q97JB5yEoOLheVGKYzJJ7TaKjGIKN r8aaB3q6nYd0s97JDxrTXZyYD3w3PHIwP8/JWYFJ3TVfD1BDq5CeP2rZRrTucdv6 8vZt0Sab2rcY7bXdRcvXllvt4n1CozuErPWc9jZEHh38lRTEC8/jcMd50rAr2BAO P+afpR6YgBKLXWdgkN64lrAtC6KnAdB78oJ43IiK/vIO2/C2MJj2bmtwgNLGtcEA Ui3wTOM3nOx1aaY0a4WDWEGMQhBD3nmF9IgiiYcsOr8DPEI+5oKT7OW0uhgOM5Yz IZ5+hol+kwKDwrW+9vbI5T3aTyA38fwS -----END CERTIFICATE-----Generated at Sat Jul 5 04:16:00 2025 by rpki-client