$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198923.roa File: AS198923.roa (raw, json) Hash identifier: R82KvI9cEm9FUcNaAGAvLbdmE6cdMtAab0nuvJaCEm0= Subject key identifier: 0B:45:D9:62:5A:9E:B2:50:A1:AE:14:12:7C:38:79:ED:13:4C:23:BD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 63C643C7E554832C5EBCF72355C3D96CA77FB5BC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198923.roa Signing time: Fri 04 Jul 2025 06:53:01 +0000 ROA not before: Fri 04 Jul 2025 06:48:01 +0000 ROA not after: Fri 03 Jul 2026 06:53:01 +0000 asID: 198923 IP address blocks: 2a06:9f81:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:c6:43:c7:e5:54:83:2c:5e:bc:f7:23:55:c3:d9:6c:a7:7f:b5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:01 2025 GMT Not After : Jul 3 06:53:01 2026 GMT Subject: CN=0B45D9625A9EB250A1AE14127C3879ED134C23BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e0:af:15:10:98:60:34:b0:d3:dc:ce:24:e1: 82:b1:c7:78:0a:53:2e:89:fc:49:5d:24:05:73:c8: 9a:f0:ba:56:df:d2:f4:1a:d1:38:9c:fe:52:f9:b3: b5:c7:d2:d8:96:28:74:33:13:c9:ae:c5:ae:c7:5c: 69:4d:72:0f:13:51:28:01:88:5d:40:dd:83:e5:34: 34:1c:2d:8e:16:4b:ce:6b:2a:e5:f0:b2:45:65:bd: 75:57:6a:1e:78:fd:1e:84:dc:01:e5:f8:a9:85:e8: 7a:4c:ef:8b:79:d2:9d:3a:a2:5f:e7:4c:98:6d:df: 1e:93:03:fa:8a:30:eb:8c:81:5d:b8:f9:5e:a2:7f: d0:76:e2:b5:8f:71:da:b7:65:47:27:d8:64:77:aa: 4a:0b:3f:13:7d:84:03:30:4e:61:20:13:0a:d0:a1: 9e:68:89:7b:14:14:b6:12:2c:57:0c:bb:c3:bd:91: b2:28:92:7c:c5:26:f1:bb:0d:a3:d0:f3:7b:80:ca: 40:98:a4:3d:c2:e4:3e:36:13:1d:50:c2:f5:7e:f6: c6:66:7d:4a:4a:2f:a6:9b:6b:0a:0c:e1:7a:22:7a: f6:8c:09:23:9b:19:b2:84:89:76:58:5f:7a:d5:15: 86:77:52:09:d3:f7:2c:0a:9a:0c:ea:f0:b8:c9:83: ef:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:45:D9:62:5A:9E:B2:50:A1:AE:14:12:7C:38:79:ED:13:4C:23:BD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198923.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:6500::/40 Signature Algorithm: sha256WithRSAEncryption 55:03:12:9f:ca:ba:fa:a3:50:68:fd:5a:36:6b:d5:44:e6:6b: 29:9a:01:84:e7:75:8f:6b:f0:a9:84:e2:81:35:59:48:8d:e4: 04:49:ae:61:2f:8e:87:ae:9b:c6:d2:d6:b0:8b:3f:ff:ce:cf: ee:36:b6:8e:ed:90:3a:c4:ee:d8:98:f3:ce:12:60:65:75:0d: 3a:ed:e8:11:e1:d1:2e:6f:8f:8e:6d:95:46:96:46:59:aa:c1: 3b:f6:6c:5e:13:f8:a1:ee:76:11:10:a5:97:90:ca:4e:94:8a: 09:86:4b:ee:ea:b0:a0:61:04:7d:e0:6a:c2:44:f5:09:6b:2a: a5:99:b5:90:7a:40:1b:d6:91:21:aa:20:67:e7:d7:fe:e5:ae: 34:29:33:60:3a:a6:89:b5:b0:56:72:0e:8b:24:c9:74:e7:bc: a3:02:0a:42:68:60:e1:96:c2:70:b4:3e:2d:93:f5:28:54:20: 70:ed:0e:91:46:74:78:15:8a:d7:1c:b2:fa:91:97:7b:ff:b4: e6:6f:0f:4e:76:6a:ec:8d:0d:3c:7a:3c:76:43:e5:29:fd:23: a5:f1:30:a0:ae:a9:1e:ec:a2:3e:5b:a6:9c:19:c5:ed:1c:4e: 93:4c:01:7d:ae:88:37:33:83:5b:6a:4a:f2:ce:ca:07:b0:5e: bb:f4:7d:f4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUY8ZDx+VUgyxevPcjVcPZbKd/tbwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MDFaFw0yNjA3MDMwNjUzMDFaMDMxMTAvBgNV BAMTKDBCNDVEOTYyNUE5RUIyNTBBMUFFMTQxMjdDMzg3OUVEMTM0QzIzQkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi4K8VEJhgNLDT3M4k4YKxx3gK Uy6J/EldJAVzyJrwulbf0vQa0Tic/lL5s7XH0tiWKHQzE8muxa7HXGlNcg8TUSgB iF1A3YPlNDQcLY4WS85rKuXwskVlvXVXah54/R6E3AHl+KmF6HpM74t50p06ol/n TJht3x6TA/qKMOuMgV24+V6if9B24rWPcdq3ZUcn2GR3qkoLPxN9hAMwTmEgEwrQ oZ5oiXsUFLYSLFcMu8O9kbIoknzFJvG7DaPQ83uAykCYpD3C5D42Ex1QwvV+9sZm fUpKL6abawoM4XoievaMCSObGbKEiXZYX3rVFYZ3UgnT9ywKmgzq8LjJg+/3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUC0XZYlqeslChrhQSfDh57RNMI70wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgWUwDQYJKoZIhvcNAQELBQADggEBAFUD Ep/KuvqjUGj9WjZr1UTmaymaAYTndY9r8KmE4oE1WUiN5ARJrmEvjoeum8bS1rCL P//Oz+42to7tkDrE7tiY884SYGV1DTrt6BHh0S5vj45tlUaWRlmqwTv2bF4T+KHu dhEQpZeQyk6UigmGS+7qsKBhBH3gasJE9QlrKqWZtZB6QBvWkSGqIGfn1/7lrjQp M2A6pom1sFZyDoskyXTnvKMCCkJoYOGWwnC0Pi2T9ShUIHDtDpFGdHgVitccsvqR l3v/tOZvD052auyNDTx6PHZD5Sn9I6XxMKCuqR7soj5bppwZxe0cTpNMAX2uiDcz g1tqSvLOygewXrv0ffQ= -----END CERTIFICATE-----Generated at Wed Nov 5 19:10:57 2025 by rpki-client