$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198923.roa File: AS198923.roa (raw, json) Hash identifier: SQFpkOxV66kQeThEUV5vooRJXNRwA9hoTzah5dgWvYg= Subject key identifier: DF:60:34:23:00:D1:8F:82:C6:46:F7:FE:F4:CF:0D:96:4A:F4:FA:67 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4101D77C14AE3158AC8CE7D1AE750C250E693B82 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198923.roa Signing time: Fri 05 Jun 2026 07:12:18 +0000 ROA not before: Fri 05 Jun 2026 07:07:18 +0000 ROA not after: Fri 04 Jun 2027 07:12:18 +0000 asID: 198923 IP address blocks: 2a06:9f81:6500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:01:d7:7c:14:ae:31:58:ac:8c:e7:d1:ae:75:0c:25:0e:69:3b:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:18 2026 GMT Not After : Jun 4 07:12:18 2027 GMT Subject: CN=DF60342300D18F82C646F7FEF4CF0D964AF4FA67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:04:1a:c9:3a:b4:b6:90:d3:c2:3e:9d:c2:eb: 75:1d:2f:f7:66:54:d5:ad:47:0a:f6:08:ea:40:db: ce:06:94:80:06:1f:97:b4:c2:a7:85:70:47:c1:fa: db:32:96:bf:53:6e:ad:ea:e7:af:18:65:e4:19:e3: 0a:0d:db:3b:36:6d:c2:a5:8b:e5:39:4f:93:05:78: bf:c3:60:84:22:83:78:0a:aa:98:ba:9d:81:7b:b4: da:a2:73:f1:94:f1:3b:a6:00:04:e2:49:71:06:e5: e8:86:98:f2:2f:e8:ec:3e:78:a1:be:79:18:04:26: 09:b0:00:d2:4f:db:6b:0c:30:0a:7d:dc:d9:db:cf: 08:ef:c4:fd:aa:4d:4c:5d:4a:91:84:d7:e7:b0:e1: d5:3c:ce:7d:39:eb:e1:b7:8e:39:9b:de:28:91:ad: da:7a:6d:1a:65:7a:1b:80:ae:51:e9:97:9f:76:df: a3:6a:02:20:cf:0f:db:e8:32:5f:3f:a7:88:f4:82: 8b:dc:26:7d:08:60:0e:21:b4:0e:ea:62:d9:e2:86: f0:f4:ab:72:66:b8:a9:60:32:b3:62:78:f4:eb:3b: 7f:cf:34:2c:08:44:69:7c:80:4f:5d:7c:e9:e0:ba: 53:2a:e9:27:74:f2:da:5f:fe:9a:04:0c:d5:1b:2d: 73:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:60:34:23:00:D1:8F:82:C6:46:F7:FE:F4:CF:0D:96:4A:F4:FA:67 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198923.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:6500::/40 Signature Algorithm: sha256WithRSAEncryption 13:1f:57:21:bb:48:9f:fc:14:5c:4f:2d:62:0b:53:04:c4:fd: 43:99:77:34:c2:29:9f:2d:fb:f6:c8:82:aa:8a:e2:26:2d:e3: a7:3b:56:41:c1:5a:b2:5d:52:41:dc:b2:8b:c3:e5:55:36:43: 74:87:d8:06:11:98:af:1c:34:6f:68:34:cc:ff:38:ac:d3:2c: d7:cf:2a:28:88:cc:cb:a8:47:1a:65:0b:37:87:fc:fc:23:c5: 6f:40:f0:2d:b0:ce:61:95:2d:c8:78:cd:85:ee:99:ae:0d:bf: a2:3f:7e:2f:39:68:06:c1:ff:ae:f5:78:96:29:ed:89:e7:7d: b2:c3:20:30:75:d2:36:8b:98:cd:20:5b:19:9e:61:24:28:cc: 22:55:29:f6:9f:28:4d:69:ce:c2:8b:16:0b:0f:00:e3:74:5a: a5:13:26:70:8a:a1:a8:5e:ad:72:e7:61:7d:6c:eb:d6:4f:4f: 68:14:69:cc:4d:06:2d:c5:10:76:e3:51:7f:e7:2d:8f:6f:e3: bc:b5:0f:0a:0b:c3:d3:5d:20:a9:be:3f:73:19:e5:fe:b4:87: 46:a3:a9:48:cc:5b:30:35:55:e4:f0:c6:7a:8f:df:4f:53:57: e7:d9:a8:70:05:89:43:c4:a5:33:79:59:3e:75:b7:4f:c9:9a: 5c:85:8d:4a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUQQHXfBSuMVisjOfRrnUMJQ5pO4IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MThaFw0yNzA2MDQwNzEyMThaMDMxMTAvBgNV BAMTKERGNjAzNDIzMDBEMThGODJDNjQ2RjdGRUY0Q0YwRDk2NEFGNEZBNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNBBrJOrS2kNPCPp3C63UdL/dm VNWtRwr2COpA284GlIAGH5e0wqeFcEfB+tsylr9Tbq3q568YZeQZ4woN2zs2bcKl i+U5T5MFeL/DYIQig3gKqpi6nYF7tNqic/GU8TumAATiSXEG5eiGmPIv6Ow+eKG+ eRgEJgmwANJP22sMMAp93NnbzwjvxP2qTUxdSpGE1+ew4dU8zn056+G3jjmb3iiR rdp6bRplehuArlHpl59236NqAiDPD9voMl8/p4j0govcJn0IYA4htA7qYtnihvD0 q3JmuKlgMrNiePTrO3/PNCwIRGl8gE9dfOngulMq6Sd08tpf/poEDNUbLXNrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU32A0IwDRj4LGRvf+9M8Nlkr0+mcwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTIzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgWUwDQYJKoZIhvcNAQELBQADggEBABMf VyG7SJ/8FFxPLWILUwTE/UOZdzTCKZ8t+/bIgqqK4iYt46c7VkHBWrJdUkHcsovD 5VU2Q3SH2AYRmK8cNG9oNMz/OKzTLNfPKiiIzMuoRxplCzeH/PwjxW9A8C2wzmGV Lch4zYXuma4Nv6I/fi85aAbB/671eJYp7YnnfbLDIDB10jaLmM0gWxmeYSQozCJV KfafKE1pzsKLFgsPAON0WqUTJnCKoaherXLnYX1s69ZPT2gUacxNBi3FEHbjUX/n LY9v47y1DwoLw9NdIKm+P3MZ5f60h0ajqUjMWzA1VeTwxnqP309TV+fZqHAFiUPE pTN5WT51t0/JmlyFjUo= -----END CERTIFICATE-----Generated at Sat Jun 13 09:12:00 2026 by rpki-client