$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198872.roa File: AS198872.roa (raw, json) Hash identifier: wRhXHPDslf2XI6XmDblNA8F/jbKOI5IBK0OZuKvInNM= Subject key identifier: 39:5B:FF:02:64:D4:19:45:E7:8B:EC:3D:5A:D6:13:00:4E:40:E5:10 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2E9A0D78855BEF062B61519E9BF8026D70F66663 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198872.roa Signing time: Fri 05 Jun 2026 07:12:28 +0000 ROA not before: Fri 05 Jun 2026 07:07:28 +0000 ROA not after: Fri 04 Jun 2027 07:12:28 +0000 asID: 198872 IP address blocks: 2a05:dfc1:4f00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:9a:0d:78:85:5b:ef:06:2b:61:51:9e:9b:f8:02:6d:70:f6:66:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:28 2026 GMT Not After : Jun 4 07:12:28 2027 GMT Subject: CN=395BFF0264D41945E78BEC3D5AD613004E40E510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d0:19:e1:e4:32:3c:15:9e:a4:e6:31:25:b0: af:e6:24:eb:cc:00:e3:a4:66:67:28:b8:47:29:1d: 84:0d:2b:c7:9d:1c:57:13:4e:38:3e:5f:61:3c:2e: 1b:0b:78:f7:78:04:85:70:63:92:aa:94:1d:01:24: bf:b9:8f:a2:31:50:ad:64:27:70:e7:72:b7:8e:34: d7:0a:bc:d8:0d:25:29:e1:bf:09:22:65:ce:79:7a: 87:0e:bb:da:ac:95:06:a7:88:4c:57:9e:93:2e:5c: c6:03:7e:73:aa:74:7a:39:f0:a4:3f:4a:16:27:bc: 67:90:55:57:5e:68:aa:b9:c0:4e:f7:06:92:68:de: 30:64:87:2a:41:7b:25:2a:35:a8:d0:ec:93:47:5d: 72:52:f6:69:3b:7d:57:4b:a9:5d:a4:d4:39:c6:4e: d6:05:6d:b1:ee:ef:78:c7:1c:b2:ef:cf:3e:3d:98: b4:16:76:54:14:18:bb:f8:58:c0:7c:59:a7:b7:c1: 25:e6:2d:35:cf:7b:d9:37:0b:99:68:0f:d9:5f:fe: 3a:97:34:ac:0a:e9:04:de:da:33:48:66:7b:f4:60: 09:10:5b:5d:f2:40:fc:06:e9:07:74:a7:d5:bb:e0: 57:d7:8d:f1:57:a4:f6:50:71:76:2b:f4:b4:1a:b7: 9e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5B:FF:02:64:D4:19:45:E7:8B:EC:3D:5A:D6:13:00:4E:40:E5:10 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198872.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:4f00::/40 Signature Algorithm: sha256WithRSAEncryption 02:9c:f3:42:52:5b:65:a6:77:36:5e:f1:85:55:cf:0a:67:65: 2c:1d:a0:eb:e9:24:b0:1d:54:08:9c:cd:7a:d1:af:db:6c:aa: 33:f1:63:50:34:16:43:ad:fc:2b:c2:c2:ec:e6:bd:14:a0:55: 22:a0:80:ea:b5:01:af:21:ec:60:fc:61:31:b5:8d:10:57:ae: 0c:3d:66:ae:ad:20:c3:56:d0:54:b8:9b:f3:0d:32:5a:f7:68: 8d:59:58:66:8d:32:e1:5e:54:59:d9:2d:0c:36:7a:71:e9:db: 07:36:34:b8:f4:fd:c6:cf:e2:a9:fc:48:b0:52:e0:e3:19:a9: 1c:e6:52:80:35:4e:af:d1:99:8a:e5:92:81:84:6f:e0:5a:5a: 27:a2:f7:3b:8c:59:9c:d5:9a:14:27:29:82:8d:aa:b2:44:7b: 07:71:d9:96:92:eb:b3:50:95:95:c2:62:5b:b7:24:66:02:eb: 32:3c:4e:39:a8:30:f7:61:05:b3:d1:97:39:f3:fa:24:a5:12: b1:4d:f6:ce:a1:af:cd:48:a8:a4:ff:e9:7d:a4:9a:8d:af:81: da:ce:be:6d:e3:c7:13:c1:43:d1:d1:cf:a1:75:ed:47:5b:36: 10:07:1e:d2:6a:fc:83:1b:1c:d6:12:04:03:90:51:03:f5:4c: 24:9a:d8:b0 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULpoNeIVb7wYrYVGem/gCbXD2ZmMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjhaFw0yNzA2MDQwNzEyMjhaMDMxMTAvBgNV BAMTKDM5NUJGRjAyNjRENDE5NDVFNzhCRUMzRDVBRDYxMzAwNEU0MEU1MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW0Bnh5DI8FZ6k5jElsK/mJOvM AOOkZmcouEcpHYQNK8edHFcTTjg+X2E8LhsLePd4BIVwY5KqlB0BJL+5j6IxUK1k J3DncreONNcKvNgNJSnhvwkiZc55eocOu9qslQaniExXnpMuXMYDfnOqdHo58KQ/ ShYnvGeQVVdeaKq5wE73BpJo3jBkhypBeyUqNajQ7JNHXXJS9mk7fVdLqV2k1DnG TtYFbbHu73jHHLLvzz49mLQWdlQUGLv4WMB8Wae3wSXmLTXPe9k3C5loD9lf/jqX NKwK6QTe2jNIZnv0YAkQW13yQPwG6Qd0p9W74FfXjfFXpPZQcXYr9LQat56dAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUOVv/AmTUGUXni+w9WtYTAE5A5RAwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4ODcyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwU8wDQYJKoZIhvcNAQELBQADggEBAAKc 80JSW2WmdzZe8YVVzwpnZSwdoOvpJLAdVAiczXrRr9tsqjPxY1A0FkOt/CvCwuzm vRSgVSKggOq1Aa8h7GD8YTG1jRBXrgw9Zq6tIMNW0FS4m/MNMlr3aI1ZWGaNMuFe VFnZLQw2enHp2wc2NLj0/cbP4qn8SLBS4OMZqRzmUoA1Tq/RmYrlkoGEb+BaWiei 9zuMWZzVmhQnKYKNqrJEewdx2ZaS67NQlZXCYlu3JGYC6zI8TjmoMPdhBbPRlznz +iSlErFN9s6hr81IqKT/6X2kmo2vgdrOvm3jxxPBQ9HRz6F17UdbNhAHHtJq/IMb HNYSBAOQUQP1TCSa2LA= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:58 2026 by rpki-client