$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197737.roa File: AS197737.roa (raw, json) Hash identifier: uKZ+ZjPylqCA76Vi8pYDUZMg+g4qaO+4+xq54qgGpt4= Subject key identifier: AB:89:91:EA:51:40:D5:E3:E0:28:30:6D:F8:FF:2C:A1:39:09:6D:FD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 20732C2443F5DA2BA40BAEBEB8C23E85E8367B1B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197737.roa Signing time: Fri 04 Jul 2025 06:53:10 +0000 ROA not before: Fri 04 Jul 2025 06:48:10 +0000 ROA not after: Fri 03 Jul 2026 06:53:10 +0000 asID: 197737 IP address blocks: 2a05:dfc1:6e00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:73:2c:24:43:f5:da:2b:a4:0b:ae:be:b8:c2:3e:85:e8:36:7b:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:10 2025 GMT Not After : Jul 3 06:53:10 2026 GMT Subject: CN=AB8991EA5140D5E3E028306DF8FF2CA139096DFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a2:dd:de:58:9a:d0:f8:29:81:97:1a:90:f4: a6:d9:60:cf:ca:f7:c4:ff:5f:7f:d7:b3:3b:ab:f8: e3:85:24:44:c4:06:45:bb:13:56:cc:5e:62:a5:da: 81:ff:1e:02:f6:92:29:45:c8:63:a6:94:a3:fc:71: 69:66:98:d0:1a:61:c4:b4:89:e6:e5:a7:81:39:9f: 97:61:91:8e:97:af:e1:54:53:3c:e7:a2:69:d7:16: 30:e0:8c:8b:3d:65:55:4d:d6:07:c0:57:f2:a7:30: b9:e4:65:1d:4b:7b:2e:43:3f:2d:ef:1f:4d:98:17: a0:d4:9b:40:9c:97:89:d5:c2:78:e3:37:9e:3d:17: ef:a3:5e:b6:30:5d:18:f2:bf:b4:4e:0c:98:13:57: b1:85:4b:5a:85:7b:63:54:6f:81:62:82:e1:9f:18: f8:6c:43:57:46:aa:c5:47:89:a0:f6:e2:7b:c0:ef: ab:e0:0a:82:7f:a4:02:e7:69:bb:dd:da:dc:fb:6e: 10:a1:6e:61:7d:45:08:36:8f:de:9b:b3:3c:e9:ab: 7f:e3:e5:8e:71:50:bb:38:78:56:fd:ea:b8:3e:62: 3e:7d:ff:a3:96:74:5e:3c:75:04:c0:6c:9e:a8:3b: 29:77:aa:fd:91:ca:47:bb:dd:8b:8d:8b:f6:51:bf: 4b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:89:91:EA:51:40:D5:E3:E0:28:30:6D:F8:FF:2C:A1:39:09:6D:FD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197737.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6e00::/40 Signature Algorithm: sha256WithRSAEncryption 7f:d4:92:18:9e:4b:b0:94:65:04:88:d8:d7:01:05:68:a7:18: c0:20:94:7b:14:eb:4b:20:3e:e6:a3:7d:38:15:e2:5d:c8:38: 1a:15:0a:fb:93:71:45:d6:98:98:28:4e:4f:9b:6f:aa:c2:19: 5d:9c:d2:51:6f:a3:bd:97:5f:ff:57:85:fe:fa:ee:86:b4:1f: 57:16:a0:17:85:a5:61:5c:73:8c:dc:ef:e5:dc:50:54:73:5b: 20:e3:9f:c7:65:ef:af:ad:44:18:cf:26:74:24:0d:a8:ef:f6: e0:4a:fa:7d:7b:c5:55:72:3f:f4:32:16:4c:96:fb:df:20:93: 36:b6:c1:52:b7:9c:b9:7a:c0:7e:fa:a1:8d:b8:a5:06:ab:82: a6:16:18:88:30:75:7f:4a:9f:35:f1:62:18:63:7f:09:3a:6d: 50:2e:44:cc:cd:72:f6:77:27:f5:53:f1:73:84:61:5c:01:24: dc:92:18:08:7d:cd:1b:6a:84:a8:9c:52:fa:62:6d:f6:ab:95: 3d:8c:9d:2e:51:46:a6:27:87:99:3a:6b:f6:23:31:04:e2:00: 48:b0:6b:d4:94:94:95:35:f6:f1:47:c5:5c:8e:03:a7:fb:cc: 36:af:04:24:b3:4c:bb:bc:2d:b7:2c:fc:46:77:52:b5:d3:78: e8:4f:ba:f1 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIHMsJEP12iukC66+uMI+heg2exswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTBaFw0yNjA3MDMwNjUzMTBaMDMxMTAvBgNV BAMTKEFCODk5MUVBNTE0MEQ1RTNFMDI4MzA2REY4RkYyQ0ExMzkwOTZERkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ot3eWJrQ+CmBlxqQ9KbZYM/K 98T/X3/Xszur+OOFJETEBkW7E1bMXmKl2oH/HgL2kilFyGOmlKP8cWlmmNAaYcS0 ieblp4E5n5dhkY6Xr+FUUzznomnXFjDgjIs9ZVVN1gfAV/KnMLnkZR1Ley5DPy3v H02YF6DUm0Ccl4nVwnjjN549F++jXrYwXRjyv7RODJgTV7GFS1qFe2NUb4FiguGf GPhsQ1dGqsVHiaD24nvA76vgCoJ/pALnabvd2tz7bhChbmF9RQg2j96bszzpq3/j 5Y5xULs4eFb96rg+Yj59/6OWdF48dQTAbJ6oOyl3qv2Ryke73YuNi/ZRv0vDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUq4mR6lFA1ePgKDBt+P8soTkJbf0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3NzM3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwW4wDQYJKoZIhvcNAQELBQADggEBAH/U khieS7CUZQSI2NcBBWinGMAglHsU60sgPuajfTgV4l3IOBoVCvuTcUXWmJgoTk+b b6rCGV2c0lFvo72XX/9Xhf767oa0H1cWoBeFpWFcc4zc7+XcUFRzWyDjn8dl76+t RBjPJnQkDajv9uBK+n17xVVyP/QyFkyW+98gkza2wVK3nLl6wH76oY24pQargqYW GIgwdX9KnzXxYhhjfwk6bVAuRMzNcvZ3J/VT8XOEYVwBJNySGAh9zRtqhKicUvpi bfarlT2MnS5RRqYnh5k6a/YjMQTiAEiwa9SUlJU19vFHxVyOA6f7zDavBCSzTLu8 Lbcs/EZ3UrXTeOhPuvE= -----END CERTIFICATE-----Generated at Wed Nov 5 20:32:34 2025 by rpki-client