$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198125.roa File: AS198125.roa (raw, json) Hash identifier: vxa0xYi+XPWTeTfdnT7ATaK0CS2kz4qDEiFpyBRZcak= Subject key identifier: 51:C2:DD:3B:07:64:5E:3D:F6:80:B2:C2:3F:2E:84:01:EC:14:F3:2C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4FFBDD3E5A8CC4681400617307304F4E50EE4C9A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198125.roa Signing time: Fri 04 Jul 2025 06:53:16 +0000 ROA not before: Fri 04 Jul 2025 06:48:16 +0000 ROA not after: Fri 03 Jul 2026 06:53:16 +0000 asID: 198125 IP address blocks: 2a05:dfc1:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:fb:dd:3e:5a:8c:c4:68:14:00:61:73:07:30:4f:4e:50:ee:4c:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:16 2025 GMT Not After : Jul 3 06:53:16 2026 GMT Subject: CN=51C2DD3B07645E3DF680B2C23F2E8401EC14F32C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1d:6d:28:df:8f:6f:99:60:bb:da:34:83:e9: 56:a7:6b:d5:db:7d:c7:d2:ee:a8:a7:9d:d3:42:74: 3c:21:e8:92:3f:1b:f1:56:d4:bf:98:2f:7d:c9:f0: a0:f0:36:2e:76:83:ce:68:f7:da:5a:b9:ff:2f:74: 61:62:20:d7:3b:76:98:54:3f:12:05:3d:0f:9d:cf: 49:e9:50:2b:15:8d:7e:a9:82:b0:bf:73:85:83:8d: 84:81:d6:c9:8a:bb:d4:9c:41:2c:01:3f:4b:5b:d9: 67:6d:ef:6a:4d:2e:0e:fb:72:2a:9f:6c:2e:45:a8: 91:57:2a:34:05:97:91:72:0e:4a:83:7a:b0:40:50: d6:97:2f:96:99:e7:d6:96:83:a0:d9:ea:85:33:ed: 3e:56:09:a1:c2:97:22:fe:87:04:1a:63:b0:40:f8: 63:cf:00:a8:c2:be:ca:35:f3:13:c5:40:09:34:92: 5c:80:80:a4:6e:ff:70:99:f5:63:34:3c:13:11:57: 3e:9b:e0:72:e6:55:e0:12:e7:d0:ee:27:0b:f8:f5: 8f:45:67:00:5a:59:bb:d8:fa:cb:35:a7:06:53:ca: ae:d9:e6:bb:25:ef:c2:54:e0:3e:96:a2:6d:3d:95: b9:6d:9c:3c:b0:51:41:e3:f9:89:1a:11:82:fd:16: db:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:C2:DD:3B:07:64:5E:3D:F6:80:B2:C2:3F:2E:84:01:EC:14:F3:2C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5400::/40 Signature Algorithm: sha256WithRSAEncryption 66:95:3e:ab:9e:6d:4b:ed:eb:cb:c8:d7:09:48:57:29:d6:4c: 48:59:b7:8f:97:7d:8d:d3:04:fa:a6:d6:19:e9:24:96:e1:5f: 46:62:e4:f3:45:c5:04:9d:60:3d:21:56:84:9b:c0:9c:93:9e: 5d:cf:ee:ce:a4:f5:d8:f7:c1:fc:d2:bb:04:6a:d1:cc:01:9f: 5f:95:81:bc:43:24:2d:3a:7b:80:dd:f5:d2:17:5d:b0:da:2f: ef:01:6d:ae:01:a9:ed:da:1f:87:fb:ce:04:5f:a9:d4:39:f1: 63:01:85:6d:65:01:f4:3b:ff:58:b8:2b:5f:f5:56:f0:06:27: 50:09:73:df:ef:a3:f0:53:a3:ef:35:f8:22:56:7c:b0:b5:0d: 39:62:bd:16:00:39:4f:9d:16:6e:fa:ef:c8:7e:0f:e8:7c:1d: 51:f0:88:c3:aa:97:c8:95:fd:88:7f:38:a9:85:f4:13:c3:de: f6:89:72:4f:07:f6:d9:66:2f:cb:65:56:eb:ac:4d:01:b8:c2: fc:2d:15:be:9f:cb:a3:25:75:0c:99:5f:87:c5:62:07:8d:ed: 31:73:d3:18:ce:37:73:1a:f9:e0:23:a3:c2:5d:ab:e0:6d:c0: 5c:bb:1d:4d:77:8e:17:ab:90:e7:a2:cd:17:6d:df:b5:d7:d4: 35:53:24:e0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUT/vdPlqMxGgUAGFzBzBPTlDuTJowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTZaFw0yNjA3MDMwNjUzMTZaMDMxMTAvBgNV BAMTKDUxQzJERDNCMDc2NDVFM0RGNjgwQjJDMjNGMkU4NDAxRUMxNEYzMkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpHW0o349vmWC72jSD6Vana9Xb fcfS7qinndNCdDwh6JI/G/FW1L+YL33J8KDwNi52g85o99pauf8vdGFiINc7dphU PxIFPQ+dz0npUCsVjX6pgrC/c4WDjYSB1smKu9ScQSwBP0tb2Wdt72pNLg77ciqf bC5FqJFXKjQFl5FyDkqDerBAUNaXL5aZ59aWg6DZ6oUz7T5WCaHClyL+hwQaY7BA +GPPAKjCvso18xPFQAk0klyAgKRu/3CZ9WM0PBMRVz6b4HLmVeAS59DuJwv49Y9F ZwBaWbvY+ss1pwZTyq7Z5rsl78JU4D6Wom09lbltnDywUUHj+YkaEYL9FtulAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUUcLdOwdkXj32gLLCPy6EAewU8ywwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MTI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVQwDQYJKoZIhvcNAQELBQADggEBAGaV PquebUvt68vI1wlIVynWTEhZt4+XfY3TBPqm1hnpJJbhX0Zi5PNFxQSdYD0hVoSb wJyTnl3P7s6k9dj3wfzSuwRq0cwBn1+VgbxDJC06e4Dd9dIXXbDaL+8Bba4Bqe3a H4f7zgRfqdQ58WMBhW1lAfQ7/1i4K1/1VvAGJ1AJc9/vo/BTo+81+CJWfLC1DTli vRYAOU+dFm7678h+D+h8HVHwiMOql8iV/Yh/OKmF9BPD3vaJck8H9tlmL8tlVuus TQG4wvwtFb6fy6MldQyZX4fFYgeN7TFz0xjON3Ma+eAjo8Jdq+BtwFy7HU13jher kOeizRdt37XX1DVTJOA= -----END CERTIFICATE-----Generated at Wed Nov 5 08:35:08 2025 by rpki-client