$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197867.roa File: AS197867.roa (raw, json) Hash identifier: aIGefs1fW7YmC9nZIcH1gUAtLtiQuP4X8rLh431JbVU= Subject key identifier: 0B:54:02:9E:17:EC:AD:B8:E3:2D:61:A9:13:DE:D0:3D:83:BA:30:2D Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5CAD0BA4C6DD000B7911C3E4BF940E769DE8AB3B Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197867.roa Signing time: Fri 05 Jun 2026 07:12:33 +0000 ROA not before: Fri 05 Jun 2026 07:07:33 +0000 ROA not after: Fri 04 Jun 2027 07:12:33 +0000 asID: 197867 IP address blocks: 2a05:dfc1:5d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ad:0b:a4:c6:dd:00:0b:79:11:c3:e4:bf:94:0e:76:9d:e8:ab:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:33 2026 GMT Not After : Jun 4 07:12:33 2027 GMT Subject: CN=0B54029E17ECADB8E32D61A913DED03D83BA302D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:38:0c:2a:a8:f7:7a:84:87:1d:75:9e:95:74: 66:d1:48:bb:64:5d:3a:4d:08:ef:4b:18:b6:5e:e6: c5:59:59:46:a3:7b:b7:08:c9:bb:67:46:0f:f6:eb: 48:7f:0b:69:16:ee:de:92:af:19:a6:e5:9c:12:4d: cf:1f:88:6d:d6:d3:50:46:9d:3c:0e:68:b7:00:23: 7e:97:9b:88:f5:7a:22:18:fb:c2:e0:55:67:d9:a5: 86:70:18:10:8b:aa:a3:eb:00:f5:26:6a:cb:fb:b6: de:dd:6b:1f:9a:fa:55:23:5b:8c:c4:ab:9b:61:80: 4e:cb:2d:8d:09:a8:86:03:40:b3:14:19:4a:f8:7e: 4d:67:7a:42:8e:6b:b4:38:66:fa:a1:16:59:a8:9b: 9c:d9:f8:31:64:48:6c:57:61:f0:8e:11:ee:4c:85: c8:35:9d:7c:e7:93:1b:fe:ce:17:ca:07:cf:b1:db: dc:8e:a7:d1:f5:00:53:0e:7b:bb:6e:00:33:d1:a4: ff:e4:9b:a8:fa:34:50:0b:86:d0:10:87:ab:4e:6a: f1:f7:e0:c6:eb:02:11:5c:1a:a3:48:98:33:2d:84: f7:27:ac:80:8d:f0:7e:3c:4b:2b:83:9a:57:ee:1a: 0a:b8:13:70:71:fd:cd:db:af:73:a6:e2:c9:6f:ed: 6c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:54:02:9E:17:EC:AD:B8:E3:2D:61:A9:13:DE:D0:3D:83:BA:30:2D X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197867.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5d00::/40 Signature Algorithm: sha256WithRSAEncryption 4d:0f:54:1d:83:8b:5e:62:a6:e5:08:50:59:fe:fb:3f:16:1c: c2:02:df:b3:73:a1:cb:8f:e9:1d:6c:8f:c7:6d:a1:ce:2f:30: 4d:d7:61:4e:7d:7a:fb:e4:eb:e5:df:79:06:94:2f:b1:98:36: 81:5a:3e:54:49:95:22:b8:c5:5c:3c:1e:a9:38:5f:1d:3d:06: dd:d5:87:18:0d:4d:f1:7f:02:4d:d9:11:4b:b0:49:52:81:74: 94:dc:2f:e0:70:28:53:46:61:2f:d0:34:b8:0d:0f:ba:aa:9d: 57:5a:ab:af:a5:23:ec:56:06:1e:90:f9:bd:66:47:50:77:83: 93:fb:41:9e:cb:b1:dd:d3:33:94:27:24:e6:3e:7a:6c:c4:77: 50:50:51:68:c7:fd:b2:3a:a9:33:a8:3a:b2:b6:31:1e:20:45: 23:ba:77:10:89:50:e8:9c:3f:13:ac:f2:e2:7d:ed:ad:6a:d2: f4:78:4c:10:0f:87:56:5c:47:fe:30:4a:d1:36:fb:f7:5a:25: 75:c6:c6:5f:e6:32:6e:13:3e:87:d4:69:46:8c:24:3e:66:d6: d7:65:6e:89:f7:0e:b3:6f:04:28:f6:bc:be:36:c5:bd:39:81: 1d:6c:44:49:bb:55:01:7b:9f:a3:8d:28:33:d5:66:10:95:fb: ba:a3:fd:00 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXK0LpMbdAAt5EcPkv5QOdp3oqzswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzNaFw0yNzA2MDQwNzEyMzNaMDMxMTAvBgNV BAMTKDBCNTQwMjlFMTdFQ0FEQjhFMzJENjFBOTEzREVEMDNEODNCQTMwMkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBOAwqqPd6hIcddZ6VdGbRSLtk XTpNCO9LGLZe5sVZWUaje7cIybtnRg/260h/C2kW7t6Srxmm5ZwSTc8fiG3W01BG nTwOaLcAI36Xm4j1eiIY+8LgVWfZpYZwGBCLqqPrAPUmasv7tt7dax+a+lUjW4zE q5thgE7LLY0JqIYDQLMUGUr4fk1nekKOa7Q4ZvqhFlmom5zZ+DFkSGxXYfCOEe5M hcg1nXznkxv+zhfKB8+x29yOp9H1AFMOe7tuADPRpP/km6j6NFALhtAQh6tOavH3 4MbrAhFcGqNImDMthPcnrICN8H48SyuDmlfuGgq4E3Bx/c3br3Om4slv7Wx9AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUC1QCnhfsrbjjLWGpE97QPYO6MC0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3ODY3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwV0wDQYJKoZIhvcNAQELBQADggEBAE0P VB2Di15ipuUIUFn++z8WHMIC37NzocuP6R1sj8dtoc4vME3XYU59evvk6+XfeQaU L7GYNoFaPlRJlSK4xVw8Hqk4Xx09Bt3VhxgNTfF/Ak3ZEUuwSVKBdJTcL+BwKFNG YS/QNLgND7qqnVdaq6+lI+xWBh6Q+b1mR1B3g5P7QZ7Lsd3TM5QnJOY+emzEd1BQ UWjH/bI6qTOoOrK2MR4gRSO6dxCJUOicPxOs8uJ97a1q0vR4TBAPh1ZcR/4wStE2 +/daJXXGxl/mMm4TPofUaUaMJD5m1tdlbon3DrNvBCj2vL42xb05gR1sREm7VQF7 n6ONKDPVZhCV+7qj/QA= -----END CERTIFICATE-----Generated at Sat Jun 13 10:23:00 2026 by rpki-client