$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198942.roa File: AS198942.roa (raw, json) Hash identifier: EW/NXKo5djmxai1cP4+NlhfwtFpbtPTJOqgyduQhgo0= Subject key identifier: 4D:C8:63:1F:21:5C:93:9E:5E:24:A5:02:F6:24:11:2F:BD:5D:69:8B Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4B714F89DF8C4B2E4713F1D3CE1DD79562A85149 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198942.roa Signing time: Fri 04 Jul 2025 06:53:20 +0000 ROA not before: Fri 04 Jul 2025 06:48:20 +0000 ROA not after: Fri 03 Jul 2026 06:53:20 +0000 asID: 198942 IP address blocks: 2a05:dfc1:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:71:4f:89:df:8c:4b:2e:47:13:f1:d3:ce:1d:d7:95:62:a8:51:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:20 2025 GMT Not After : Jul 3 06:53:20 2026 GMT Subject: CN=4DC8631F215C939E5E24A502F624112FBD5D698B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:ff:c5:ad:51:6d:f0:aa:84:ca:2b:19:e1:67: b3:76:67:32:b0:4f:7c:ce:7a:26:fc:b8:02:a1:af: e8:63:d3:4a:ab:bf:bb:94:78:a8:db:25:48:2e:ba: 81:ba:3b:c4:91:b1:e8:2d:37:eb:3f:a5:4a:5f:3c: e8:be:76:3a:47:c5:56:cc:7c:97:2b:2b:75:4e:ce: 25:8b:7c:3a:8d:75:af:62:c0:14:63:63:e5:5e:2d: 90:f2:bc:2c:29:8d:66:3a:33:47:a2:e6:84:a6:73: dc:f8:32:4e:17:82:6c:df:fd:92:d8:94:85:09:e6: 76:0f:d3:84:7a:cc:d5:e6:f2:1d:67:ad:19:4d:38: c0:4f:f5:b7:14:b1:42:1b:2d:44:72:24:70:79:bf: 3d:04:e1:2f:99:0a:8a:f3:37:fa:ba:38:c8:b9:b7: d7:3d:72:a2:1e:94:dc:b4:9e:51:c7:43:ae:c2:95: 47:c6:74:83:b4:7c:37:42:cd:97:e2:fe:d7:48:08: f1:94:17:9b:69:62:c1:42:4d:67:aa:8c:58:36:21: a8:10:ee:51:bd:b5:6a:45:81:19:ec:1f:48:9e:f6: ba:30:b2:7c:ff:27:e3:8b:56:eb:5d:ec:d5:51:87: e9:8e:ea:b8:1f:b8:e4:0b:77:31:ec:34:86:7b:ea: cd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C8:63:1F:21:5C:93:9E:5E:24:A5:02:F6:24:11:2F:BD:5D:69:8B X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2c00::/40 Signature Algorithm: sha256WithRSAEncryption 30:36:7f:1c:3a:38:e2:df:0b:54:33:12:48:99:d8:81:91:93: 1a:cd:70:e0:15:33:e2:43:e5:08:c1:cf:16:2e:81:56:b9:4e: e1:69:27:ea:7d:e6:4a:b8:66:6d:a3:43:20:ef:be:b4:ed:28: 48:07:dd:8d:5c:28:8d:64:f3:bd:d8:38:10:03:c3:8f:87:8a: 15:b5:b9:1e:1a:0b:f7:f2:5d:50:47:f4:f2:40:d7:98:cd:88: 13:5a:f5:3a:4c:1a:a3:7f:ba:7b:c8:7c:b8:ae:e2:3f:e2:35: 00:7c:28:34:50:41:c4:34:39:1f:fc:2c:f7:36:8c:ac:08:18: 17:7c:d7:11:a5:24:f2:ae:59:54:a7:7f:1f:5f:a8:4a:48:c4: 53:3d:ee:7f:ea:fa:3f:af:80:e0:e6:4e:1e:4d:47:39:f8:ec: 53:f1:85:15:1d:29:07:4c:ca:78:52:6e:a1:3b:0e:99:e7:fd: 6d:9a:42:ab:65:55:ca:26:c3:20:fa:a6:10:80:54:dc:70:33: 84:ac:bb:44:44:4e:5c:3f:74:7a:63:e0:f2:29:5b:9d:7f:1a: 9e:1b:5c:e7:b6:9a:ae:cb:7e:36:ed:2a:1e:15:72:0e:1a:18: b7:ac:10:fa:7c:38:a0:ba:2d:d9:c5:0c:db:e0:b0:83:9b:0e: 0b:18:6c:45 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUS3FPid+MSy5HE/HTzh3XlWKoUUkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjBaFw0yNjA3MDMwNjUzMjBaMDMxMTAvBgNV BAMTKDREQzg2MzFGMjE1QzkzOUU1RTI0QTUwMkY2MjQxMTJGQkQ1RDY5OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4/8WtUW3wqoTKKxnhZ7N2ZzKw T3zOeib8uAKhr+hj00qrv7uUeKjbJUguuoG6O8SRsegtN+s/pUpfPOi+djpHxVbM fJcrK3VOziWLfDqNda9iwBRjY+VeLZDyvCwpjWY6M0ei5oSmc9z4Mk4Xgmzf/ZLY lIUJ5nYP04R6zNXm8h1nrRlNOMBP9bcUsUIbLURyJHB5vz0E4S+ZCorzN/q6OMi5 t9c9cqIelNy0nlHHQ67ClUfGdIO0fDdCzZfi/tdICPGUF5tpYsFCTWeqjFg2IagQ 7lG9tWpFgRnsH0ie9rowsnz/J+OLVutd7NVRh+mO6rgfuOQLdzHsNIZ76s39AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUTchjHyFck55eJKUC9iQRL71daYswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSwwDQYJKoZIhvcNAQELBQADggEBADA2 fxw6OOLfC1QzEkiZ2IGRkxrNcOAVM+JD5QjBzxYugVa5TuFpJ+p95kq4Zm2jQyDv vrTtKEgH3Y1cKI1k873YOBADw4+HihW1uR4aC/fyXVBH9PJA15jNiBNa9TpMGqN/ unvIfLiu4j/iNQB8KDRQQcQ0OR/8LPc2jKwIGBd81xGlJPKuWVSnfx9fqEpIxFM9 7n/q+j+vgODmTh5NRzn47FPxhRUdKQdMynhSbqE7Dpnn/W2aQqtlVcomwyD6phCA VNxwM4Ssu0RETlw/dHpj4PIpW51/Gp4bXOe2mq7LfjbtKh4Vcg4aGLesEPp8OKC6 LdnFDNvgsIObDgsYbEU= -----END CERTIFICATE-----Generated at Wed Nov 5 14:53:24 2025 by rpki-client