$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198209.roa File: AS198209.roa (raw, json) Hash identifier: YWr66I9H3nuHdZx1ETdFBdm5Q1tD/213KK/N9PCO5IQ= Subject key identifier: 97:45:C6:DC:69:D8:73:AF:AB:E9:10:8C:BD:B4:D5:5D:FE:A6:B2:87 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 7BDA2195A2D6FF9F7962C0BC89B741D74345C3FB Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198209.roa Signing time: Fri 04 Jul 2025 06:53:14 +0000 ROA not before: Fri 04 Jul 2025 06:48:14 +0000 ROA not after: Fri 03 Jul 2026 06:53:14 +0000 asID: 198209 IP address blocks: 2a05:dfc1:5600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:da:21:95:a2:d6:ff:9f:79:62:c0:bc:89:b7:41:d7:43:45:c3:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:14 2025 GMT Not After : Jul 3 06:53:14 2026 GMT Subject: CN=9745C6DC69D873AFABE9108CBDB4D55DFEA6B287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6a:da:fe:be:c6:aa:b5:ac:c5:bd:c9:62:b5: c5:9a:ce:22:47:a1:86:56:99:b8:22:4e:75:49:e8: e8:b8:fb:e9:94:31:2e:5c:64:53:ef:29:6a:cd:a9: f5:ce:61:95:a9:09:6f:30:ea:ac:7c:7f:26:6d:0b: f9:e5:38:35:6a:ca:2c:ab:0e:04:74:8c:38:f6:06: 6a:7b:6d:ca:0e:7c:2d:d8:66:f2:99:8e:3c:28:ce: 16:3a:22:5a:69:fd:0c:a6:54:b8:46:ea:a0:a7:83: 6a:cd:2d:6d:e3:1a:0f:c0:bc:10:67:be:27:75:d2: 34:0c:e2:05:26:37:4f:73:d4:fd:52:f2:b2:6c:c3: e7:eb:26:8d:df:4e:83:4d:a6:61:52:a1:d8:38:70: 9c:fa:57:83:d3:90:89:4d:be:6e:dd:08:fd:17:58: 18:09:46:f4:7d:40:59:83:fa:a6:70:b4:d3:90:ce: d8:47:53:79:af:a4:88:20:27:e6:e8:18:b0:3d:24: 96:f1:5d:af:04:3c:3d:f8:c8:f8:5f:45:0a:ec:e3: da:de:63:26:c9:b6:30:65:6a:a6:8e:cd:bd:a9:90: 6c:64:ea:f2:2c:3d:a9:7a:24:35:5a:aa:01:9b:e1: fd:47:1c:50:24:59:20:b4:fb:29:e3:ba:0c:0c:6c: 79:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:45:C6:DC:69:D8:73:AF:AB:E9:10:8C:BD:B4:D5:5D:FE:A6:B2:87 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198209.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5600::/40 Signature Algorithm: sha256WithRSAEncryption 97:90:c8:dd:fa:38:93:6a:41:8e:64:52:64:72:d5:e8:64:29: 8c:65:b6:b9:63:38:d5:70:93:5b:0a:bf:51:86:eb:1e:95:c8: 20:5c:2c:24:2e:f7:24:a4:3d:04:6c:60:38:70:09:92:eb:75: 37:f8:6c:70:fc:c0:c3:a6:14:10:71:fd:fb:ef:ad:81:24:2c: 6d:41:bb:5a:f8:3e:dc:7c:af:ae:1d:24:ed:5c:e5:47:a2:07: dd:41:44:65:6e:e4:6f:bc:01:a3:a8:7b:4f:c4:1f:f6:49:1d: 79:d1:31:47:3e:d4:da:32:27:2b:61:5d:b2:01:b7:f7:5d:f5: ac:fc:06:c6:3a:37:3c:58:8f:19:68:93:6b:c3:5f:b9:3b:58: f1:8f:de:a8:e8:e4:f6:a2:da:52:2f:21:fe:6d:e3:aa:21:fc: 8b:7a:09:42:a5:53:a0:3e:82:b1:6a:a5:ac:cc:b6:a7:6f:9e: 76:f2:70:cb:89:83:8a:8f:25:d2:28:bb:a9:21:34:ef:9c:52: ec:b1:02:23:fc:f6:9f:b2:75:b9:64:94:eb:c8:f6:f0:5d:9c: d5:f7:85:56:8a:81:f4:b9:09:3b:5f:c1:cc:ea:0e:e3:4e:80: 66:86:ae:e4:78:bd:c0:d9:70:ed:7f:c1:49:db:8c:97:0f:d9: 2f:41:a8:4f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUe9ohlaLW/595YsC8ibdB10NFw/swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTRaFw0yNjA3MDMwNjUzMTRaMDMxMTAvBgNV BAMTKDk3NDVDNkRDNjlEODczQUZBQkU5MTA4Q0JEQjRENTVERkVBNkIyODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCatr+vsaqtazFvclitcWaziJH oYZWmbgiTnVJ6Oi4++mUMS5cZFPvKWrNqfXOYZWpCW8w6qx8fyZtC/nlODVqyiyr DgR0jDj2Bmp7bcoOfC3YZvKZjjwozhY6Ilpp/QymVLhG6qCng2rNLW3jGg/AvBBn vid10jQM4gUmN09z1P1S8rJsw+frJo3fToNNpmFSodg4cJz6V4PTkIlNvm7dCP0X WBgJRvR9QFmD+qZwtNOQzthHU3mvpIggJ+boGLA9JJbxXa8EPD34yPhfRQrs49re YybJtjBlaqaOzb2pkGxk6vIsPal6JDVaqgGb4f1HHFAkWSC0+ynjugwMbHmDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUl0XG3GnYc6+r6RCMvbTVXf6msocwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MjA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVYwDQYJKoZIhvcNAQELBQADggEBAJeQ yN36OJNqQY5kUmRy1ehkKYxltrljONVwk1sKv1GG6x6VyCBcLCQu9ySkPQRsYDhw CZLrdTf4bHD8wMOmFBBx/fvvrYEkLG1Bu1r4Ptx8r64dJO1c5UeiB91BRGVu5G+8 AaOoe0/EH/ZJHXnRMUc+1NoyJythXbIBt/dd9az8BsY6NzxYjxlok2vDX7k7WPGP 3qjo5Pai2lIvIf5t46oh/It6CUKlU6A+grFqpazMtqdvnnbycMuJg4qPJdIou6kh NO+cUuyxAiP89p+ydblklOvI9vBdnNX3hVaKgfS5CTtfwczqDuNOgGaGruR4vcDZ cO1/wUnbjJcP2S9BqE8= -----END CERTIFICATE-----Generated at Wed Nov 5 14:53:31 2025 by rpki-client