$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198889.roa File: AS198889.roa (raw, json) Hash identifier: rf9jZCIhMVWup9Y2dMLg9gmCvNPnbrwSNg0lz5Rhyes= Subject key identifier: 57:1E:48:38:32:9E:55:20:41:AD:42:A3:98:9D:79:FD:10:B4:9C:27 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0865AB726CDF4EBC17F9CD83E89124A7B268736D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198889.roa Signing time: Fri 05 Jun 2026 07:12:44 +0000 ROA not before: Fri 05 Jun 2026 07:07:44 +0000 ROA not after: Fri 04 Jun 2027 07:12:44 +0000 asID: 198889 IP address blocks: 2a05:dfc1:3c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:65:ab:72:6c:df:4e:bc:17:f9:cd:83:e8:91:24:a7:b2:68:73:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:44 2026 GMT Not After : Jun 4 07:12:44 2027 GMT Subject: CN=571E4838329E552041AD42A3989D79FD10B49C27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:42:46:64:b8:ce:0a:a9:78:c8:99:7e:a7:26: 20:32:d7:7a:16:2a:39:d9:25:a4:58:d6:74:f6:49: a0:a3:d9:9a:a0:38:e9:8e:5a:61:09:f9:69:35:9b: 55:6f:19:81:1c:11:54:a0:b3:60:24:ff:68:af:6b: 26:11:99:69:ff:cf:6b:c0:71:7d:d0:50:63:8e:1e: 8f:32:94:9f:98:6d:40:55:d6:f1:47:39:85:a7:57: 0d:87:30:30:0a:02:a4:2d:52:79:f1:68:b3:15:71: a1:83:99:76:d3:1b:89:88:72:35:9d:a9:b5:94:e2: 95:39:5f:df:6e:af:25:6e:26:30:80:43:73:2c:eb: fc:71:db:88:8e:9b:48:e3:82:16:02:68:25:0a:f6: 3f:5f:dc:b2:68:be:88:a7:8a:a5:ed:b4:d6:ed:2f: 88:51:59:6d:9a:c1:15:f6:74:c9:a6:84:ae:a9:c3: 06:d9:e4:e3:41:e6:6e:19:29:99:9d:9b:9e:27:d6: 09:9d:95:95:85:d0:09:37:60:c4:bd:01:c2:f4:23: 2c:e3:d5:a9:c3:64:36:81:3a:87:c0:d7:9d:72:b6: c0:dd:56:cf:f9:a7:3d:21:d1:72:d6:d8:b7:34:68: 5e:98:57:db:fa:bc:62:77:9e:cf:ae:f0:47:a5:b7: 90:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1E:48:38:32:9E:55:20:41:AD:42:A3:98:9D:79:FD:10:B4:9C:27 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198889.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:3c00::/40 Signature Algorithm: sha256WithRSAEncryption 0e:c8:7d:05:d3:6b:d1:8a:7c:d5:6f:b2:55:92:78:7c:e3:ce: 07:be:30:6e:b5:5b:d2:d1:af:1e:3d:07:00:8a:31:a3:f0:94: e3:2e:cb:64:d1:2e:ae:6c:04:16:3a:4b:5b:85:00:71:ad:37: cb:b8:bc:9e:f7:12:b4:af:a8:de:98:35:91:0f:e4:81:95:62: 6f:62:b4:f8:b1:f4:99:db:78:6b:74:f0:9e:5c:ea:9d:da:98: ea:58:1b:0d:e1:e4:ab:09:58:53:18:95:bd:b4:e5:81:f6:a6: 35:96:95:ad:4d:04:1c:5b:57:27:e4:86:3f:4d:28:82:68:74: 3c:96:df:dc:48:b4:e0:f1:3c:01:13:23:8b:ed:3b:cb:27:e0: 3f:44:d6:4c:53:2f:bc:0b:be:90:75:0d:15:73:1f:fc:15:5b: 2a:c0:4e:4c:97:8a:5d:ae:6b:1c:cb:f1:1e:a5:27:ef:c3:fe: ac:1a:3b:f4:87:42:df:f4:2d:7c:43:e2:37:ee:15:84:c1:6a: d4:75:b2:6a:38:39:10:ea:6f:97:f7:7b:b8:68:6d:a1:ae:a1: bf:b7:c7:4d:fb:32:f6:0c:7b:47:01:38:a9:f0:c7:a1:f8:6c: 25:6a:ed:7e:7d:66:c1:b3:e5:93:bf:92:df:31:64:6e:b3:b7: 39:10:ad:8d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCGWrcmzfTrwX+c2D6JEkp7Joc20wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDRaFw0yNzA2MDQwNzEyNDRaMDMxMTAvBgNV BAMTKDU3MUU0ODM4MzI5RTU1MjA0MUFENDJBMzk4OUQ3OUZEMTBCNDlDMjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbQkZkuM4KqXjImX6nJiAy13oW KjnZJaRY1nT2SaCj2ZqgOOmOWmEJ+Wk1m1VvGYEcEVSgs2Ak/2ivayYRmWn/z2vA cX3QUGOOHo8ylJ+YbUBV1vFHOYWnVw2HMDAKAqQtUnnxaLMVcaGDmXbTG4mIcjWd qbWU4pU5X99uryVuJjCAQ3Ms6/xx24iOm0jjghYCaCUK9j9f3LJovoiniqXttNbt L4hRWW2awRX2dMmmhK6pwwbZ5ONB5m4ZKZmdm54n1gmdlZWF0Ak3YMS9AcL0Iyzj 1anDZDaBOofA151ytsDdVs/5pz0h0XLW2Lc0aF6YV9v6vGJ3ns+u8Eelt5DRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUVx5IODKeVSBBrUKjmJ15/RC0nCcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4ODg5LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTwwDQYJKoZIhvcNAQELBQADggEBAA7I fQXTa9GKfNVvslWSeHzjzge+MG61W9LRrx49BwCKMaPwlOMuy2TRLq5sBBY6S1uF AHGtN8u4vJ73ErSvqN6YNZEP5IGVYm9itPix9JnbeGt08J5c6p3amOpYGw3h5KsJ WFMYlb205YH2pjWWla1NBBxbVyfkhj9NKIJodDyW39xItODxPAETI4vtO8sn4D9E 1kxTL7wLvpB1DRVzH/wVWyrATkyXil2uaxzL8R6lJ+/D/qwaO/SHQt/0LXxD4jfu FYTBatR1smo4ORDqb5f3e7hobaGuob+3x037MvYMe0cBOKnwx6H4bCVq7X59ZsGz 5ZO/kt8xZG6ztzkQrY0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:58 2026 by rpki-client