$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198714.roa File: AS198714.roa (raw, json) Hash identifier: snAXAwk+8MGfZtedgg63HMakM4jfb8pvg0eTodGx0GE= Subject key identifier: E8:9A:25:A5:8E:B6:0E:5E:C3:1A:FA:22:D2:31:E6:46:C4:C0:71:A7 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 36DFDD303E821134E067361893C9FD88EFA4E60F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198714.roa Signing time: Fri 05 Jun 2026 07:12:35 +0000 ROA not before: Fri 05 Jun 2026 07:07:35 +0000 ROA not after: Fri 04 Jun 2027 07:12:35 +0000 asID: 198714 IP address blocks: 2a05:dfc1:3800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:df:dd:30:3e:82:11:34:e0:67:36:18:93:c9:fd:88:ef:a4:e6:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:35 2026 GMT Not After : Jun 4 07:12:35 2027 GMT Subject: CN=E89A25A58EB60E5EC31AFA22D231E646C4C071A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6e:bf:19:50:7b:f3:d8:71:c4:de:ee:01:cc: 7b:20:44:f5:55:3a:c7:69:6d:e1:bf:66:90:ee:13: 71:62:bf:f5:37:26:be:dc:11:95:94:79:77:52:24: 45:7f:ea:ee:2f:3b:57:12:70:7b:4e:a9:a1:94:3f: 73:5d:77:e7:45:7c:b2:63:73:73:43:9a:a1:66:be: b5:a1:24:05:85:8a:ed:05:c5:22:bf:da:33:d2:ae: b7:e1:09:e0:d0:67:e1:19:46:cc:a4:9f:78:67:76: 77:6c:93:28:18:04:f1:fe:06:4a:c4:fa:2e:92:9c: 03:5f:a6:c1:ed:4d:f0:1b:24:2b:50:ad:ba:89:3c: 9a:4a:7a:b6:b5:5c:ec:52:a7:8a:d7:a1:e6:c2:de: d4:0f:e9:07:06:cb:a4:ae:f4:b0:1a:92:61:0b:47: 4c:63:cc:68:9a:74:68:3d:46:09:ff:d5:64:b0:e2: 9c:04:f2:95:56:ec:9b:ef:a1:02:f0:6c:20:71:15: d5:20:bb:6f:f3:e1:86:5a:07:c8:fa:6c:3c:e6:00: df:50:02:43:74:f1:98:b6:f9:d9:42:22:4d:84:cc: d8:0d:cb:ae:06:a3:b1:b7:f2:9c:f6:db:c9:42:f1: f8:4a:31:56:df:fa:03:43:69:96:5d:3d:1d:5b:28: 35:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9A:25:A5:8E:B6:0E:5E:C3:1A:FA:22:D2:31:E6:46:C4:C0:71:A7 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198714.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3800::/40 Signature Algorithm: sha256WithRSAEncryption 89:c9:14:69:3e:df:e4:05:16:0e:e4:61:07:0a:e1:a9:1b:58: d5:07:81:b8:e6:25:4b:36:b2:79:f6:79:2d:c9:7e:b0:73:7b: 75:ca:30:eb:5b:f7:ed:1a:ad:80:88:61:77:78:15:69:11:52: b4:1f:b9:60:2b:46:67:5e:f1:4d:e9:65:01:b6:c4:de:60:5f: c5:50:98:9d:cb:f7:64:a7:65:55:42:c4:a1:27:99:a3:88:72: 66:09:0a:47:9d:76:91:57:46:8c:2f:3d:c6:73:db:e4:ee:0c: 50:ec:cb:ff:f3:2b:72:46:8b:6c:62:25:72:db:f4:ff:ec:18: 9b:b7:1d:4c:b5:cd:48:78:ab:eb:01:22:26:9b:2d:ca:ee:8e: 34:19:5e:34:aa:d2:79:b9:24:1b:72:e9:cc:b6:01:b8:68:7d: f7:ce:c1:fe:a8:09:ce:52:fb:b9:6a:f2:2b:91:fe:cd:95:99: 4f:18:6b:d1:ad:3b:c3:cf:0c:f7:7d:e5:be:b0:dc:a6:a8:0b: 15:2c:fd:ac:92:de:dd:08:4f:84:73:e7:0b:9b:9d:50:0f:04: 65:8f:ae:0d:f2:3b:07:74:be:19:83:62:66:cc:26:ae:2e:7e: b4:7d:38:60:7b:2a:48:71:3d:27:64:1d:3a:4e:80:ac:be:c2: 2d:56:88:48 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNt/dMD6CETTgZzYYk8n9iO+k5g8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzVaFw0yNzA2MDQwNzEyMzVaMDMxMTAvBgNV BAMTKEU4OUEyNUE1OEVCNjBFNUVDMzFBRkEyMkQyMzFFNjQ2QzRDMDcxQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzbr8ZUHvz2HHE3u4BzHsgRPVV OsdpbeG/ZpDuE3Fiv/U3Jr7cEZWUeXdSJEV/6u4vO1cScHtOqaGUP3Ndd+dFfLJj c3NDmqFmvrWhJAWFiu0FxSK/2jPSrrfhCeDQZ+EZRsykn3hndndskygYBPH+BkrE +i6SnANfpsHtTfAbJCtQrbqJPJpKera1XOxSp4rXoebC3tQP6QcGy6Su9LAakmEL R0xjzGiadGg9Rgn/1WSw4pwE8pVW7JvvoQLwbCBxFdUgu2/z4YZaB8j6bDzmAN9Q AkN08Zi2+dlCIk2EzNgNy64Go7G38pz228lC8fhKMVbf+gNDaZZdPR1bKDWlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6JolpY62Dl7DGvoi0jHmRsTAcacwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4NzE0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTgwDQYJKoZIhvcNAQELBQADggEBAInJ FGk+3+QFFg7kYQcK4akbWNUHgbjmJUs2snn2eS3JfrBze3XKMOtb9+0arYCIYXd4 FWkRUrQfuWArRmde8U3pZQG2xN5gX8VQmJ3L92SnZVVCxKEnmaOIcmYJCkeddpFX RowvPcZz2+TuDFDsy//zK3JGi2xiJXLb9P/sGJu3HUy1zUh4q+sBIiabLcrujjQZ XjSq0nm5JBty6cy2AbhofffOwf6oCc5S+7lq8iuR/s2VmU8Ya9GtO8PPDPd95b6w 3KaoCxUs/ayS3t0IT4Rz5wubnVAPBGWPrg3yOwd0vhmDYmbMJq4ufrR9OGB7Kkhx PSdkHTpOgKy+wi1WiEg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:03 2026 by rpki-client