$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197510.roa File: AS197510.roa (raw, json) Hash identifier: +JIXUXzSig70fVjIZBg1pyb7/JSDjddRG2PcNJc+gkA= Subject key identifier: F3:9D:95:2C:6B:21:71:8C:DE:2F:AE:21:81:33:3F:C2:3B:2B:FB:17 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7B8C1DC078BC09ACD49F1F1359C6AB027CDA82AC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197510.roa Signing time: Fri 04 Jul 2025 06:53:24 +0000 ROA not before: Fri 04 Jul 2025 06:48:24 +0000 ROA not after: Fri 03 Jul 2026 06:53:24 +0000 asID: 197510 IP address blocks: 2a05:dfc1:7600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:8c:1d:c0:78:bc:09:ac:d4:9f:1f:13:59:c6:ab:02:7c:da:82:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:24 2025 GMT Not After : Jul 3 06:53:24 2026 GMT Subject: CN=F39D952C6B21718CDE2FAE2181333FC23B2BFB17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:6c:91:70:b1:8a:b1:ec:38:2a:9e:ac:74:57: c7:10:d8:e4:1c:fb:e8:2d:13:06:86:8c:6c:b9:2c: dc:8b:ce:d4:88:f8:02:6f:e6:98:74:45:8c:34:fc: 14:ea:0c:41:b1:b2:51:0c:36:c0:82:f2:7f:3c:6c: 69:25:a8:d7:28:be:29:d2:69:96:f9:55:29:04:e9: 76:83:75:c3:a8:3a:e9:58:45:35:ff:d8:8e:6b:70: a8:1e:54:38:07:dc:d8:35:59:a9:49:7c:d2:fe:52: 17:27:08:1c:f5:e5:09:1b:0e:f1:e1:8d:63:e2:69: 1f:56:d1:56:15:8e:a6:02:cd:d4:ea:00:83:eb:c6: 42:d8:6e:54:1d:51:e4:af:7e:09:35:58:a6:de:14: 57:f4:cd:35:c4:10:a7:ef:5f:f7:a3:4b:46:e4:a1: df:b5:24:dc:6c:e3:73:90:fa:cf:45:14:a1:be:00: 73:e1:ea:da:34:0b:67:59:f1:04:4b:ef:bc:d8:c9: 5c:9c:6a:df:a6:3d:05:4a:99:1e:b6:ba:05:b8:fc: 16:6a:4c:a7:0e:b6:41:f5:84:bf:13:be:76:2c:b3: d3:7f:89:af:f4:31:76:58:05:84:8c:2d:52:c5:54: f8:c5:1e:37:fb:cc:20:38:11:c3:95:a6:cf:7b:12: 1f:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:9D:95:2C:6B:21:71:8C:DE:2F:AE:21:81:33:3F:C2:3B:2B:FB:17 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197510.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:7600::/40 Signature Algorithm: sha256WithRSAEncryption cb:87:b7:1a:d9:b8:0c:2a:54:b3:8c:4f:fd:6f:aa:2f:59:10: 3f:32:94:34:dc:ed:a2:9c:61:79:e3:6c:01:d1:e9:7f:0a:3d: 59:48:3b:26:6d:f8:6d:d9:c6:85:02:c3:84:24:5d:94:51:71: e1:1e:d1:de:63:23:ec:ef:25:f5:5a:3a:7c:60:0b:53:d2:ac: 66:aa:06:58:d6:a6:e5:f0:27:ea:3a:d3:a2:98:eb:38:8a:31: 66:ee:c2:4d:5c:b5:f0:0f:6a:a5:82:37:22:ce:b7:5c:14:49: c5:1f:98:df:f3:da:97:bb:e7:7e:f2:0a:6e:90:a6:23:dc:63: 51:32:4c:02:20:fc:06:b5:11:bd:37:79:99:14:da:71:d0:99: 35:30:14:b3:3d:ee:8a:95:6d:48:94:9b:f2:5f:d9:09:fd:50: 89:4d:9b:30:18:cd:b9:9e:60:15:28:e4:42:22:f8:4b:cc:80: dd:cb:1c:5f:d4:d1:00:a4:1f:5a:5f:7f:6e:ae:42:4c:8a:b8: d6:2c:b5:47:60:a9:d9:0e:33:c9:c1:54:cf:b3:c6:4a:79:eb: b1:db:34:37:4e:26:31:6c:38:97:7e:ba:31:70:3a:b5:d5:9b: ed:a9:e7:33:a5:18:e5:b6:97:f0:81:94:4b:b0:54:06:07:9e: ca:83:79:4f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUe4wdwHi8CazUnx8TWcarAnzagqwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjRaFw0yNjA3MDMwNjUzMjRaMDMxMTAvBgNV BAMTKEYzOUQ5NTJDNkIyMTcxOENERTJGQUUyMTgxMzMzRkMyM0IyQkZCMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqbJFwsYqx7Dgqnqx0V8cQ2OQc ++gtEwaGjGy5LNyLztSI+AJv5ph0RYw0/BTqDEGxslEMNsCC8n88bGklqNcovinS aZb5VSkE6XaDdcOoOulYRTX/2I5rcKgeVDgH3Ng1WalJfNL+UhcnCBz15QkbDvHh jWPiaR9W0VYVjqYCzdTqAIPrxkLYblQdUeSvfgk1WKbeFFf0zTXEEKfvX/ejS0bk od+1JNxs43OQ+s9FFKG+AHPh6to0C2dZ8QRL77zYyVycat+mPQVKmR62ugW4/BZq TKcOtkH1hL8TvnYss9N/ia/0MXZYBYSMLVLFVPjFHjf7zCA4EcOVps97Eh/RAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU852VLGshcYzeL64hgTM/wjsr+xcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NTEwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwXYwDQYJKoZIhvcNAQELBQADggEBAMuH txrZuAwqVLOMT/1vqi9ZED8ylDTc7aKcYXnjbAHR6X8KPVlIOyZt+G3ZxoUCw4Qk XZRRceEe0d5jI+zvJfVaOnxgC1PSrGaqBljWpuXwJ+o606KY6ziKMWbuwk1ctfAP aqWCNyLOt1wUScUfmN/z2pe7537yCm6QpiPcY1EyTAIg/Aa1Eb03eZkU2nHQmTUw FLM97oqVbUiUm/Jf2Qn9UIlNmzAYzbmeYBUo5EIi+EvMgN3LHF/U0QCkH1pff26u QkyKuNYstUdgqdkOM8nBVM+zxkp567HbNDdOJjFsOJd+ujFwOrXVm+2p5zOlGOW2 l/CBlEuwVAYHnsqDeU8= -----END CERTIFICATE-----Generated at Mon Aug 4 15:59:25 2025 by rpki-client