$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199929.roa File: AS199929.roa (raw, json) Hash identifier: f/tAiETWNpygAB6yvibjv0U+C8yOch6eaTEWhjEfsR4= Subject key identifier: C8:92:A0:B8:39:47:4D:79:07:41:D6:5F:16:28:1F:F8:B8:B4:40:AF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 1E54F4505F88845C446634CEFBF32317213F104B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199929.roa Signing time: Fri 05 Jun 2026 07:12:08 +0000 ROA not before: Fri 05 Jun 2026 07:07:08 +0000 ROA not after: Fri 04 Jun 2027 07:12:08 +0000 asID: 199929 IP address blocks: 2a0a:6040:5c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Jun 2026 13:27:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:54:f4:50:5f:88:84:5c:44:66:34:ce:fb:f3:23:17:21:3f:10:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:08 2026 GMT Not After : Jun 4 07:12:08 2027 GMT Subject: CN=C892A0B839474D790741D65F16281FF8B8B440AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:11:2b:d1:a6:25:92:43:78:bf:e8:15:1e: ac:03:b5:cb:8c:d6:ea:f7:de:e3:be:f2:c7:ff:99: 45:d8:6d:6a:b3:27:19:66:a8:52:8b:89:88:eb:5c: 84:4f:3d:c7:72:0e:b0:84:1c:82:70:a9:16:89:e5: fa:1c:09:5d:0a:15:c2:77:a3:4e:6d:50:32:9c:90: 19:a0:aa:eb:c2:e8:02:a1:28:d5:f5:7e:46:00:6d: 84:54:29:b6:3d:3f:a7:4d:ff:45:83:1b:cb:21:f2: c1:e2:97:7d:1e:da:5e:0d:2c:ec:75:c7:e7:8b:3b: 5e:f7:14:93:bb:4d:6a:20:55:b3:0d:06:a4:a9:e5: ce:80:f2:08:01:8a:a0:cd:b6:be:f1:f8:fb:49:8b: fa:71:32:f6:a4:2f:c1:ca:70:1a:8e:6f:0a:df:d3: de:c9:0b:14:6b:1a:4a:8e:78:1c:4b:ce:aa:1b:0f: a4:69:12:0c:9a:5b:6d:56:46:34:dd:2a:ba:5a:30: 2a:46:3f:1f:3d:9b:f3:5c:57:4c:5d:d5:0b:b2:aa: 63:31:4e:78:e6:9e:26:5e:d7:84:90:d5:57:c4:84: 7c:07:38:4a:bf:22:ab:73:73:b2:d2:81:d1:eb:97: 40:a1:78:7d:0f:19:6f:98:da:c8:cd:3e:f8:cb:82: 27:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:92:A0:B8:39:47:4D:79:07:41:D6:5F:16:28:1F:F8:B8:B4:40:AF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5c00::/40 Signature Algorithm: sha256WithRSAEncryption 2e:0c:db:52:fb:a9:72:60:00:b6:01:31:50:80:9f:03:ab:9d: f6:1a:22:e7:34:1c:9a:81:55:80:b9:b3:d8:d6:9b:da:63:a7: b3:f2:e0:e7:a5:e4:a5:10:87:e4:0c:03:b4:3a:28:7c:bc:c5: 8b:80:4b:6d:94:ad:d4:de:58:62:e9:42:e6:d2:c5:18:8c:54: eb:26:7d:40:40:4d:f5:b8:17:21:2f:6e:ed:1d:46:83:3b:87: 3c:7d:2e:cc:cd:7b:e0:f3:d0:90:43:d0:06:79:a1:1e:91:38: 5f:f5:f5:e3:d0:f2:91:97:20:3f:2c:5b:89:82:b1:70:b1:51: 25:46:0b:33:18:7a:f2:3f:01:f0:70:53:a7:02:f2:f5:e3:d0: 52:c8:ad:c2:86:28:95:fe:14:4c:e1:60:30:41:8b:9d:ff:d6: fa:c9:76:5c:df:4a:7e:1a:4d:84:fb:91:af:8d:56:a0:a1:35: f7:3d:ca:16:47:b3:03:fa:88:2f:3e:42:19:75:29:df:90:69: d3:ad:a1:20:af:fc:c7:14:1f:36:e7:4d:e2:c0:de:8c:f7:12: b7:d4:75:72:19:e0:17:06:f6:8f:2b:94:2b:8d:cb:5c:c1:dc: 5c:01:11:8a:11:be:2a:fb:38:12:f2:6c:11:7f:8a:2e:01:ad: c4:d1:59:02 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUHlT0UF+IhFxEZjTO+/MjFyE/EEswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDhaFw0yNzA2MDQwNzEyMDhaMDMxMTAvBgNV BAMTKEM4OTJBMEI4Mzk0NzRENzkwNzQxRDY1RjE2MjgxRkY4QjhCNDQwQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKrBEr0aYlkkN4v+gVHqwDtcuM 1ur33uO+8sf/mUXYbWqzJxlmqFKLiYjrXIRPPcdyDrCEHIJwqRaJ5focCV0KFcJ3 o05tUDKckBmgquvC6AKhKNX1fkYAbYRUKbY9P6dN/0WDG8sh8sHil30e2l4NLOx1 x+eLO173FJO7TWogVbMNBqSp5c6A8ggBiqDNtr7x+PtJi/pxMvakL8HKcBqObwrf 097JCxRrGkqOeBxLzqobD6RpEgyaW21WRjTdKrpaMCpGPx89m/NcV0xd1QuyqmMx TnjmniZe14SQ1VfEhHwHOEq/Iqtzc7LSgdHrl0CheH0PGW+Y2sjNPvjLgieTAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUyJKguDlHTXkHQdZfFigf+Li0QK8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5OTI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFwwDQYJKoZIhvcNAQELBQADggEBAC4M 21L7qXJgALYBMVCAnwOrnfYaIuc0HJqBVYC5s9jWm9pjp7Py4Oel5KUQh+QMA7Q6 KHy8xYuAS22UrdTeWGLpQubSxRiMVOsmfUBATfW4FyEvbu0dRoM7hzx9LszNe+Dz 0JBD0AZ5oR6ROF/19ePQ8pGXID8sW4mCsXCxUSVGCzMYevI/AfBwU6cC8vXj0FLI rcKGKJX+FEzhYDBBi53/1vrJdlzfSn4aTYT7ka+NVqChNfc9yhZHswP6iC8+Qhl1 Kd+QadOtoSCv/McUHzbnTeLA3oz3ErfUdXIZ4BcG9o8rlCuNy1zB3FwBEYoRvir7 OBLybBF/ii4BrcTRWQI= -----END CERTIFICATE-----Generated at Thu Jun 11 21:20:39 2026 by rpki-client