$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197919.roa File: AS197919.roa (raw, json) Hash identifier: ItxVTkqHg3jzmCLVUVyzMKm9snJVTYkeemQ6QSXUqI8= Subject key identifier: 26:53:F2:15:10:89:84:CF:4F:C4:10:7E:F3:96:0E:9A:78:4E:22:C5 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 21191B5049845477C5FFE30BCFC8CCED782F5559 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197919.roa Signing time: Fri 05 Jun 2026 07:12:09 +0000 ROA not before: Fri 05 Jun 2026 07:07:09 +0000 ROA not after: Fri 04 Jun 2027 07:12:09 +0000 asID: 197919 IP address blocks: 2a05:dfc1:6200::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:19:1b:50:49:84:54:77:c5:ff:e3:0b:cf:c8:cc:ed:78:2f:55:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:09 2026 GMT Not After : Jun 4 07:12:09 2027 GMT Subject: CN=2653F215108984CF4FC4107EF3960E9A784E22C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5c:4b:11:f3:86:ae:a0:51:5c:dd:93:40:53: 72:23:9d:6a:10:69:55:4f:26:78:55:b0:ce:4d:c7: 95:02:16:18:fd:aa:28:55:31:9e:95:8d:eb:37:d5: 8f:72:de:e1:17:f8:1f:96:f7:40:c5:db:65:a6:71: 86:02:f3:d9:fa:11:41:72:ce:0b:94:84:10:f3:c6: 16:d4:a7:8d:8b:65:a3:c1:dd:39:c4:ee:a8:11:19: 8d:73:a8:00:26:c0:60:e7:45:d5:db:5a:39:9d:68: 6f:66:84:5d:b5:02:25:17:21:bd:cd:d6:66:b2:75: 34:d7:4c:36:e0:39:c0:97:9e:6f:b8:c4:ad:74:c8: 6c:fc:b2:8e:f5:db:f9:07:c7:d4:4e:d9:57:63:02: 22:c6:d9:72:b3:a0:ab:a0:02:70:1e:18:74:74:ff: b2:6c:83:96:6a:bf:13:1d:2b:53:80:95:25:a9:a9: 45:a3:25:05:ac:4c:c2:29:0f:67:47:6f:83:aa:17: e2:cc:fc:8d:0c:65:01:64:58:7e:14:20:c8:6c:c7: b4:ae:b5:64:36:c3:81:d9:cf:04:71:9a:14:12:81: 74:8a:13:3b:af:e9:5e:11:76:38:00:cc:8f:4d:8a: 1e:25:9d:ae:1a:eb:a1:e1:cb:47:78:df:bd:84:46: 53:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:53:F2:15:10:89:84:CF:4F:C4:10:7E:F3:96:0E:9A:78:4E:22:C5 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS197919.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:6200::/40 Signature Algorithm: sha256WithRSAEncryption 7b:22:b3:b6:38:74:c4:6b:00:03:01:6e:d6:fd:01:9a:45:c6: 63:5f:b5:d4:8d:87:67:fa:9f:0b:e6:20:96:db:89:dc:05:b2: 29:a3:0c:a1:4c:2b:e0:8f:52:10:e5:04:55:ba:50:83:9a:23: 85:6d:5a:65:68:e2:fe:2b:19:d2:0e:86:ef:c9:9c:e2:ba:f4: 8f:e2:ad:6c:44:13:89:70:d7:00:d1:a4:f4:d9:7a:2a:65:f0: 16:2a:00:7f:a3:0b:83:92:24:44:cb:05:97:75:10:59:77:a8: fd:9a:be:a4:2f:cf:d5:94:23:89:6e:7d:85:e6:64:31:a4:7d: d3:e9:a9:de:97:23:6b:7b:12:a8:c3:c7:37:a9:7c:98:9c:a4: 57:03:07:b5:27:2c:06:8d:7d:98:6b:13:21:b4:80:06:49:3e: 59:1d:aa:09:86:49:3e:b3:e0:0c:4f:4e:c5:4f:ca:2e:8e:a5: 63:31:1e:4e:5a:c7:10:12:9b:aa:9f:84:c7:7e:df:ef:0a:6e: c6:fd:fa:4a:62:6d:19:ab:71:17:d0:40:f4:24:df:a2:5f:32: 43:03:4c:77:48:5d:c0:6c:df:a4:5a:4d:3f:ae:58:aa:08:65: 32:ee:47:84:2a:d0:1c:9b:a5:8c:9f:cc:45:ad:e4:88:99:d9: 33:10:0c:b4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUIRkbUEmEVHfF/+MLz8jM7XgvVVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDlaFw0yNzA2MDQwNzEyMDlaMDMxMTAvBgNV BAMTKDI2NTNGMjE1MTA4OTg0Q0Y0RkM0MTA3RUYzOTYwRTlBNzg0RTIyQzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4XEsR84auoFFc3ZNAU3IjnWoQ aVVPJnhVsM5Nx5UCFhj9qihVMZ6Vjes31Y9y3uEX+B+W90DF22WmcYYC89n6EUFy zguUhBDzxhbUp42LZaPB3TnE7qgRGY1zqAAmwGDnRdXbWjmdaG9mhF21AiUXIb3N 1maydTTXTDbgOcCXnm+4xK10yGz8so712/kHx9RO2VdjAiLG2XKzoKugAnAeGHR0 /7Jsg5ZqvxMdK1OAlSWpqUWjJQWsTMIpD2dHb4OqF+LM/I0MZQFkWH4UIMhsx7Su tWQ2w4HZzwRxmhQSgXSKEzuv6V4RdjgAzI9Nih4lna4a66Hhy0d4372ERlOHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUJlPyFRCJhM9PxBB+85YOmnhOIsUwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk3OTE5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwWIwDQYJKoZIhvcNAQELBQADggEBAHsi s7Y4dMRrAAMBbtb9AZpFxmNftdSNh2f6nwvmIJbbidwFsimjDKFMK+CPUhDlBFW6 UIOaI4VtWmVo4v4rGdIOhu/JnOK69I/irWxEE4lw1wDRpPTZeipl8BYqAH+jC4OS JETLBZd1EFl3qP2avqQvz9WUI4lufYXmZDGkfdPpqd6XI2t7EqjDxzepfJicpFcD B7UnLAaNfZhrEyG0gAZJPlkdqgmGST6z4AxPTsVPyi6OpWMxHk5axxASm6qfhMd+ 3+8Kbsb9+kpibRmrcRfQQPQk36JfMkMDTHdIXcBs36RaTT+uWKoIZTLuR4Qq0Byb pYyfzEWt5IiZ2TMQDLQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:02 2026 by rpki-client