$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198125.roa File: AS198125.roa (raw, json) Hash identifier: 0Q+6Y4ht8DDt98VQsnatJB6RCnnScyTTEL9GqDwNl18= Subject key identifier: 7A:61:DA:03:87:89:C3:3E:AB:4D:ED:2B:BB:24:0E:57:68:EA:D8:46 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 49A51BA141C1BE5994180581821C2C8A64D60BCA Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198125.roa Signing time: Fri 05 Jun 2026 07:12:16 +0000 ROA not before: Fri 05 Jun 2026 07:07:16 +0000 ROA not after: Fri 04 Jun 2027 07:12:16 +0000 asID: 198125 IP address blocks: 2a05:dfc1:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a5:1b:a1:41:c1:be:59:94:18:05:81:82:1c:2c:8a:64:d6:0b:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:16 2026 GMT Not After : Jun 4 07:12:16 2027 GMT Subject: CN=7A61DA038789C33EAB4DED2BBB240E5768EAD846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:50:89:3a:d8:95:08:3d:d2:80:b3:87:37:fb: a3:f1:25:43:7a:7b:96:e3:80:9d:1c:71:2e:83:84: 16:0d:84:12:31:62:05:f2:ef:af:a6:2c:a1:8f:ce: d6:2f:d3:33:c8:85:e1:78:e1:d9:7e:57:45:bc:59: e4:9d:06:b8:5a:6d:40:2f:e2:81:ee:41:92:5b:7a: f4:fa:95:b9:fb:3f:4b:8f:24:7b:6f:02:a5:32:38: 10:85:fc:bc:6c:8b:a0:23:79:ab:64:74:7c:c2:36: 8e:32:37:46:7a:f9:e4:34:11:ad:7d:3b:9e:f0:ab: 56:f6:f5:9e:a5:64:3c:ff:d4:5e:09:84:df:be:cc: 11:5a:86:8b:d9:5d:03:ac:e8:23:36:f4:32:c8:9f: 39:5c:c8:03:9c:29:c6:c1:46:a6:de:2e:57:be:e2: 55:55:e0:c1:6b:c6:66:05:9f:0c:02:54:04:d2:c0: e4:b2:13:e0:12:93:de:5c:21:fe:ca:74:cc:e7:08: ab:25:db:5c:05:aa:0b:73:44:4a:af:af:c8:c5:12: a4:48:14:75:b5:cc:a0:a3:1c:e8:67:88:89:ac:e8: ba:c5:83:84:02:08:eb:91:b8:09:d2:ae:e3:ed:5a: dd:58:18:a9:ed:14:17:e5:cf:f1:97:4f:54:38:bd: c9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:61:DA:03:87:89:C3:3E:AB:4D:ED:2B:BB:24:0E:57:68:EA:D8:46 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5400::/40 Signature Algorithm: sha256WithRSAEncryption bf:9c:e3:f0:f0:1b:80:c2:41:23:2c:63:97:93:31:6a:6d:6b: ce:7a:c4:ee:6c:1f:f0:ec:be:76:e5:bd:e1:6c:d5:b8:bf:7f: 37:e4:87:0c:17:f3:26:11:58:46:fe:36:d1:d9:8d:47:86:dc: c2:85:45:a6:a9:4e:cb:d1:1e:0a:d4:81:80:4c:30:48:65:31: 22:3f:e9:1b:ee:86:90:8f:36:d4:d3:7b:1d:b5:a0:e8:ab:b4: 05:de:4c:24:87:fe:4f:d2:b1:4b:79:55:74:04:ff:0b:c0:c4: 9e:da:4c:cd:aa:7a:1b:dc:55:f9:78:df:9c:a7:d0:3c:d0:1c: c9:a5:7c:d5:3f:85:ff:f2:4b:b9:6b:3e:68:f8:bf:2a:77:b8: ae:f3:aa:b1:4e:58:c4:f4:2c:a9:25:7c:25:e0:96:40:6e:92: fa:46:5c:09:4f:d4:7a:86:89:26:02:77:4c:da:46:1c:3e:67: 95:7f:d7:d7:dc:ed:37:e5:22:46:83:b2:dd:5e:d7:5d:7e:60: cc:6b:cd:ea:2f:99:06:85:0f:a4:0b:d2:a9:87:de:df:7f:b4: 0c:51:73:c2:fe:ec:e6:ac:9d:a5:a0:fa:65:0f:bc:fa:48:46: e6:6b:55:72:b7:5e:db:a8:5c:2e:f2:e8:d4:8c:00:79:f5:1e: 50:ee:94:ff -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSaUboUHBvlmUGAWBghwsimTWC8owDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTZaFw0yNzA2MDQwNzEyMTZaMDMxMTAvBgNV BAMTKDdBNjFEQTAzODc4OUMzM0VBQjRERUQyQkJCMjQwRTU3NjhFQUQ4NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrUIk62JUIPdKAs4c3+6PxJUN6 e5bjgJ0ccS6DhBYNhBIxYgXy76+mLKGPztYv0zPIheF44dl+V0W8WeSdBrhabUAv 4oHuQZJbevT6lbn7P0uPJHtvAqUyOBCF/Lxsi6AjeatkdHzCNo4yN0Z6+eQ0Ea19 O57wq1b29Z6lZDz/1F4JhN++zBFahovZXQOs6CM29DLInzlcyAOcKcbBRqbeLle+ 4lVV4MFrxmYFnwwCVATSwOSyE+ASk95cIf7KdMznCKsl21wFqgtzREqvr8jFEqRI FHW1zKCjHOhniIms6LrFg4QCCOuRuAnSruPtWt1YGKntFBflz/GXT1Q4vcm7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUemHaA4eJwz6rTe0ruyQOV2jq2EYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MTI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVQwDQYJKoZIhvcNAQELBQADggEBAL+c 4/DwG4DCQSMsY5eTMWpta856xO5sH/DsvnblveFs1bi/fzfkhwwX8yYRWEb+NtHZ jUeG3MKFRaapTsvRHgrUgYBMMEhlMSI/6RvuhpCPNtTTex21oOirtAXeTCSH/k/S sUt5VXQE/wvAxJ7aTM2qehvcVfl435yn0DzQHMmlfNU/hf/yS7lrPmj4vyp3uK7z qrFOWMT0LKklfCXglkBukvpGXAlP1HqGiSYCd0zaRhw+Z5V/19fc7TflIkaDst1e 111+YMxrzeovmQaFD6QL0qmH3t9/tAxRc8L+7OasnaWg+mUPvPpIRuZrVXK3Xtuo XC7y6NSMAHn1HlDulP8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:52 2026 by rpki-client