$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199929.roa File: AS199929.roa (raw, json) Hash identifier: 0UrSszI8ueGn3yufuoVXOz8vwlfVrSDteFkR7Wfwf3w= Subject key identifier: 08:8E:BC:85:EA:6E:1B:64:85:F1:D7:D6:EA:5E:61:34:9F:10:40:EF Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7FC06F3B52C82A29B495FEE30B9F8CDD4454AAC0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199929.roa Signing time: Fri 04 Jul 2025 06:53:06 +0000 ROA not before: Fri 04 Jul 2025 06:48:06 +0000 ROA not after: Fri 03 Jul 2026 06:53:06 +0000 asID: 199929 IP address blocks: 2a0a:6040:5c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 01:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:c0:6f:3b:52:c8:2a:29:b4:95:fe:e3:0b:9f:8c:dd:44:54:aa:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:06 2025 GMT Not After : Jul 3 06:53:06 2026 GMT Subject: CN=088EBC85EA6E1B6485F1D7D6EA5E61349F1040EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:cd:73:e4:9a:54:2a:5f:29:92:b2:4d:69:35: b8:d0:cf:10:f2:60:e0:97:99:34:24:bd:38:c8:a6: dd:39:63:b0:0f:86:dc:9d:aa:e8:dd:22:de:ba:39: 00:8c:34:92:f7:ef:e0:9e:0b:99:c9:11:cd:0e:59: 6a:78:cf:dd:52:eb:14:22:5e:a8:c3:0b:77:48:a9: 59:c8:d2:42:f2:18:4e:b2:5d:22:2b:ef:68:6f:cc: 45:94:d6:6e:e9:39:6a:5c:0c:d7:aa:ac:d3:0c:ed: 58:53:94:67:15:cc:e7:71:37:13:24:57:eb:56:4f: 9d:23:5b:59:8f:0c:2a:45:4b:6d:ea:25:cf:6a:42: a2:8d:b2:14:54:86:30:88:e6:74:f4:8f:1d:52:fe: b5:ae:2d:9a:3b:e7:8b:cb:96:e2:5b:83:67:2b:8a: 86:70:17:29:a2:21:f8:9f:c2:ea:a5:3d:a3:dc:e1: 2d:bc:e5:2d:1a:0b:9e:37:fa:56:ff:98:f2:02:9e: ad:b6:3a:9c:6c:13:8a:2c:51:e9:af:06:9f:7a:07: ca:3e:63:ad:af:06:9f:92:f5:47:5e:d5:b8:fa:b7: 43:e1:c3:69:e1:3e:f1:c9:45:94:79:82:22:57:d8: fe:3e:a1:6c:e2:02:01:76:44:3d:4f:43:d3:7a:69: fe:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:8E:BC:85:EA:6E:1B:64:85:F1:D7:D6:EA:5E:61:34:9F:10:40:EF X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199929.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:5c00::/40 Signature Algorithm: sha256WithRSAEncryption 7c:d7:6e:ec:71:0b:45:c5:0c:90:ba:ba:be:c6:72:2c:fb:e6: 4e:2b:1e:ac:e4:61:01:55:4c:e7:5d:3b:f1:cf:e7:46:ab:03: 8c:7c:3f:67:ae:56:d6:3a:df:5b:99:73:ee:28:f3:50:45:fd: f2:57:08:77:2e:b3:d2:36:1c:a5:63:df:67:92:08:4b:40:77: ad:1e:48:c4:ad:45:0d:bf:4a:7f:d1:c5:dc:ba:e5:25:11:de: 08:7d:48:f1:c1:74:3f:5e:e4:91:a5:2d:bf:ec:04:bf:ea:88: 0c:f6:ac:81:4e:1a:43:a5:d6:d3:4d:23:37:15:e1:ae:b0:72: df:3b:b7:79:37:a2:ee:14:ca:e6:af:ce:36:bc:6c:15:f0:b0: 90:d4:40:0c:e3:6d:e8:75:40:a2:98:88:77:3d:30:a9:42:d9: 5d:47:02:f8:dd:bf:4b:0c:18:29:ca:9d:5d:23:07:ab:53:93: b0:14:d3:47:f9:56:d1:38:d8:1f:8d:01:11:75:87:42:3b:fa: dd:48:d2:73:2f:a1:a1:14:52:d1:3c:18:ba:0c:10:21:d6:46: 5f:2b:ca:76:3d:04:61:72:a1:75:72:7a:b1:c9:d9:2b:19:8c: bd:40:33:89:7c:a6:91:af:dd:c4:0a:95:74:4e:67:80:df:17: f9:68:47:7d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUf8BvO1LIKim0lf7jC5+M3URUqsAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDZaFw0yNjA3MDMwNjUzMDZaMDMxMTAvBgNV BAMTKDA4OEVCQzg1RUE2RTFCNjQ4NUYxRDdENkVBNUU2MTM0OUYxMDQwRUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCizXPkmlQqXymSsk1pNbjQzxDy YOCXmTQkvTjIpt05Y7APhtydqujdIt66OQCMNJL37+CeC5nJEc0OWWp4z91S6xQi XqjDC3dIqVnI0kLyGE6yXSIr72hvzEWU1m7pOWpcDNeqrNMM7VhTlGcVzOdxNxMk V+tWT50jW1mPDCpFS23qJc9qQqKNshRUhjCI5nT0jx1S/rWuLZo754vLluJbg2cr ioZwFymiIfifwuqlPaPc4S285S0aC543+lb/mPICnq22OpxsE4osUemvBp96B8o+ Y62vBp+S9Ude1bj6t0Phw2nhPvHJRZR5giJX2P4+oWziAgF2RD1PQ9N6af6ZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUCI68hepuG2SF8dfW6l5hNJ8QQO8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5OTI5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQFwwDQYJKoZIhvcNAQELBQADggEBAHzX buxxC0XFDJC6ur7Gciz75k4rHqzkYQFVTOddO/HP50arA4x8P2euVtY631uZc+4o 81BF/fJXCHcus9I2HKVj32eSCEtAd60eSMStRQ2/Sn/Rxdy65SUR3gh9SPHBdD9e 5JGlLb/sBL/qiAz2rIFOGkOl1tNNIzcV4a6wct87t3k3ou4Uyuavzja8bBXwsJDU QAzjbeh1QKKYiHc9MKlC2V1HAvjdv0sMGCnKnV0jB6tTk7AU00f5VtE42B+NARF1 h0I7+t1I0nMvoaEUUtE8GLoMECHWRl8rynY9BGFyoXVyerHJ2SsZjL1AM4l8ppGv 3cQKlXROZ4DfF/loR30= -----END CERTIFICATE-----Generated at Sat Jul 5 04:08:37 2025 by rpki-client