$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198209.roa File: AS198209.roa (raw, json) Hash identifier: lDu2UwznRGOpqJ2sOYvTB4SHKmxqwQCj+FS9HjT3o1U= Subject key identifier: 13:A5:C6:EE:75:2E:DA:F6:E4:16:4E:80:F0:D5:5A:99:50:F0:91:DE Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5C6865010FB05353CD27FF3FE22851A2E2141AD4 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198209.roa Signing time: Fri 05 Jun 2026 07:12:25 +0000 ROA not before: Fri 05 Jun 2026 07:07:25 +0000 ROA not after: Fri 04 Jun 2027 07:12:25 +0000 asID: 198209 IP address blocks: 2a05:dfc1:5600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:68:65:01:0f:b0:53:53:cd:27:ff:3f:e2:28:51:a2:e2:14:1a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:25 2026 GMT Not After : Jun 4 07:12:25 2027 GMT Subject: CN=13A5C6EE752EDAF6E4164E80F0D55A9950F091DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:a7:09:99:f2:e8:0a:ea:e0:87:40:3c:4f:c2: 8a:60:e0:e5:54:ed:77:fe:63:b9:eb:91:57:dd:fa: 6e:d3:24:47:ab:43:67:c0:91:96:18:a4:98:a2:1d: c9:2f:24:bf:81:05:ae:66:5e:06:10:43:f2:2e:e8: 56:f7:87:f7:6e:28:e4:22:08:0a:1c:6d:68:28:4b: 4e:f4:f3:9a:9a:ee:27:9a:ad:d7:b0:14:3e:0d:6f: f5:81:7f:dc:03:af:bf:7f:b8:4f:c7:26:49:e6:24: 28:38:fe:71:26:49:49:b4:0b:d8:ac:e4:97:33:96: 87:5e:de:64:a8:83:c9:1d:6c:7d:62:4f:99:7d:bb: f8:28:17:b5:cf:bd:89:54:2d:5b:89:82:c7:b4:97: b2:90:2f:30:04:c5:6d:0c:4d:34:c1:2a:a2:5a:5c: 0f:a9:d9:1a:7e:e2:b7:af:d9:a5:a9:b5:7a:76:81: 5a:92:d7:62:42:e6:be:e2:34:1e:8d:ec:2c:67:8c: 75:22:e9:7a:bd:42:0c:7d:f9:6f:2c:5d:98:90:58: 21:96:2b:df:8f:8b:a8:d7:5c:92:7c:ff:9c:32:06: 0c:1a:6b:11:10:fd:1d:d8:67:07:07:eb:8d:40:31: 20:1b:ae:2d:21:d0:57:34:c8:1d:1c:2f:25:91:07: 0d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A5:C6:EE:75:2E:DA:F6:E4:16:4E:80:F0:D5:5A:99:50:F0:91:DE X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198209.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5600::/40 Signature Algorithm: sha256WithRSAEncryption 82:fd:88:ed:39:16:a5:9c:0b:74:fc:43:a8:3c:ad:37:59:f4: b1:30:56:4a:cb:a0:bd:63:f8:75:fa:36:02:3b:1d:9f:90:b9: 55:24:6e:b3:30:e9:26:5c:79:da:b4:3d:d0:c8:86:1d:47:c3: eb:9b:f1:95:7f:07:bd:31:2b:73:cc:47:2e:cc:20:0d:cb:a4: 86:4e:95:29:23:f6:5c:93:23:53:e4:8d:b4:f8:48:8c:b3:da: 9b:f1:dd:df:9a:c7:c3:ef:b6:82:75:27:78:58:1c:16:b0:f2: 76:14:db:46:52:9b:57:e5:cd:78:28:09:bd:b7:a0:63:46:4e: 69:66:b5:57:48:2d:8d:12:66:db:19:2d:5c:d5:46:ab:fd:83: d9:8a:f1:37:83:53:1d:04:a0:d8:3f:41:78:7e:f9:cb:37:a2: c8:3b:05:b2:50:1c:50:da:d5:25:f0:e1:36:6d:20:e7:b9:20: e2:82:40:b5:2b:ee:4b:75:39:b0:4c:48:f8:c6:83:4d:5c:56: 99:e2:1e:75:c4:f7:8c:34:42:89:45:00:c7:e9:ab:36:c4:75: 91:c3:8e:c4:31:09:8f:21:a4:92:76:e3:f4:22:25:e9:0c:c2: 2c:80:c2:ae:35:2a:9d:65:2f:1a:49:e1:ca:fb:be:bf:7a:06: c8:b2:5e:4f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXGhlAQ+wU1PNJ/8/4ihRouIUGtQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjVaFw0yNzA2MDQwNzEyMjVaMDMxMTAvBgNV BAMTKDEzQTVDNkVFNzUyRURBRjZFNDE2NEU4MEYwRDU1QTk5NTBGMDkxREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmpwmZ8ugK6uCHQDxPwopg4OVU 7Xf+Y7nrkVfd+m7TJEerQ2fAkZYYpJiiHckvJL+BBa5mXgYQQ/Iu6Fb3h/duKOQi CAocbWgoS07085qa7ieardewFD4Nb/WBf9wDr79/uE/HJknmJCg4/nEmSUm0C9is 5Jczlode3mSog8kdbH1iT5l9u/goF7XPvYlULVuJgse0l7KQLzAExW0MTTTBKqJa XA+p2Rp+4rev2aWptXp2gVqS12JC5r7iNB6N7CxnjHUi6Xq9Qgx9+W8sXZiQWCGW K9+Pi6jXXJJ8/5wyBgwaaxEQ/R3YZwcH641AMSAbri0h0Fc0yB0cLyWRBw2HAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUE6XG7nUu2vbkFk6A8NVamVDwkd4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4MjA5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVYwDQYJKoZIhvcNAQELBQADggEBAIL9 iO05FqWcC3T8Q6g8rTdZ9LEwVkrLoL1j+HX6NgI7HZ+QuVUkbrMw6SZcedq0PdDI hh1Hw+ub8ZV/B70xK3PMRy7MIA3LpIZOlSkj9lyTI1PkjbT4SIyz2pvx3d+ax8Pv toJ1J3hYHBaw8nYU20ZSm1flzXgoCb23oGNGTmlmtVdILY0SZtsZLVzVRqv9g9mK 8TeDUx0EoNg/QXh++cs3osg7BbJQHFDa1SXw4TZtIOe5IOKCQLUr7kt1ObBMSPjG g01cVpniHnXE94w0QolFAMfpqzbEdZHDjsQxCY8hpJJ24/QiJekMwiyAwq41Kp1l LxpJ4cr7vr96BsiyXk8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:55 2026 by rpki-client