$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198942.roa File: AS198942.roa (raw, json) Hash identifier: JhkU8R5hEXbZ+6UWRvn02SxuLN0jWoj9aVj7V6Wn6DI= Subject key identifier: BB:97:61:AD:95:42:80:44:F4:99:2D:DD:FD:C4:3B:A9:5D:A8:A5:CA Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 12248AC976E34CAA605F77A33FE83ECCB7ABBA2F Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198942.roa Signing time: Fri 05 Jun 2026 07:12:33 +0000 ROA not before: Fri 05 Jun 2026 07:07:33 +0000 ROA not after: Fri 04 Jun 2027 07:12:33 +0000 asID: 198942 IP address blocks: 2a05:dfc1:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:24:8a:c9:76:e3:4c:aa:60:5f:77:a3:3f:e8:3e:cc:b7:ab:ba:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:33 2026 GMT Not After : Jun 4 07:12:33 2027 GMT Subject: CN=BB9761AD95428044F4992DDDFDC43BA95DA8A5CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:db:a4:cf:ba:6b:30:d7:f4:59:c9:9b:5d:c8: ad:7b:b0:af:c0:74:d1:8e:45:03:27:83:5b:a0:03: e3:eb:b3:03:0f:70:39:8d:54:c5:26:b6:b7:b2:a1: 9b:9c:d8:55:fc:af:45:7a:27:58:c6:4a:b9:15:77: 04:7a:9c:4e:bc:1e:92:27:2d:8e:64:16:25:64:d5: 61:5f:38:06:55:1b:d7:bc:65:9a:1b:27:7d:a0:38: 10:53:74:99:1b:7c:54:d7:d4:79:36:a9:86:42:54: 73:77:e3:74:d4:36:56:e6:91:79:96:3a:9f:37:30: 31:8a:92:86:90:8b:a1:d2:4f:4e:15:87:e3:60:e7: 6c:6f:f5:1c:ac:c0:d1:5e:65:a5:12:48:d3:8b:78: 72:0a:bf:a2:7e:f4:35:fa:2b:d1:7f:f5:1f:59:5f: 9a:c9:71:8d:af:de:f8:9d:7b:9d:85:9c:48:1e:12: 68:b5:87:07:49:e6:bf:dd:e1:1d:f4:01:0b:59:60: 51:bc:7d:bf:e6:83:1e:cb:df:44:7b:f1:8c:29:e0: f9:32:fe:ef:5e:94:fb:e2:8b:cc:9a:4d:8d:67:36: aa:af:db:81:96:05:1c:c4:59:9c:c9:e6:a3:0a:f3: f7:8b:32:45:ae:60:a4:12:45:99:88:2b:8f:7d:75: 1e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:97:61:AD:95:42:80:44:F4:99:2D:DD:FD:C4:3B:A9:5D:A8:A5:CA X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198942.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2c00::/40 Signature Algorithm: sha256WithRSAEncryption 34:18:56:40:2d:47:bd:83:cc:b3:86:32:44:73:c9:c4:21:6b: 6c:5a:43:6b:89:2a:e1:0a:16:fb:ad:bd:7a:54:af:8e:2b:a2: 1b:9f:f0:ac:21:aa:9d:1f:61:b0:e2:00:a9:90:16:c2:b0:da: 24:96:ab:5f:be:95:dc:15:85:ee:04:b7:bf:88:f3:16:60:7b: 4e:6c:c3:a7:01:47:47:cb:ca:83:c5:00:8d:57:db:15:ce:7e: 02:b3:eb:89:d9:61:27:85:60:49:53:cd:0a:b9:7d:ed:06:fa: 88:54:f4:11:4e:c7:41:30:d7:ac:54:a8:af:32:ef:2b:e5:ab: 8a:38:f3:3e:78:9d:f6:f7:c6:c7:c4:3c:57:d8:7c:b4:75:37: 11:ab:9e:5c:2f:fd:dc:cd:e5:32:61:a9:6a:4f:f9:67:6c:5d: fa:f6:4c:04:e9:5c:ec:d5:a4:4c:8f:81:7f:e1:af:17:e1:5c: 64:2a:94:20:87:21:ca:59:7c:56:32:3f:01:08:51:06:5a:5a: 2d:30:4b:fb:6a:35:90:12:b2:d3:95:5a:4a:21:03:21:0d:21: 33:4a:b3:ce:d8:75:3f:1e:71:dc:e5:76:e9:6b:82:00:3f:39: b3:f0:49:7e:c9:94:1b:28:61:fa:72:fb:c5:e4:f0:f6:43:68: e6:e6:39:3e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEiSKyXbjTKpgX3ejP+g+zLerui8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MzNaFw0yNzA2MDQwNzEyMzNaMDMxMTAvBgNV BAMTKEJCOTc2MUFEOTU0MjgwNDRGNDk5MkREREZEQzQzQkE5NURBOEE1Q0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc26TPumsw1/RZyZtdyK17sK/A dNGORQMng1ugA+PrswMPcDmNVMUmtreyoZuc2FX8r0V6J1jGSrkVdwR6nE68HpIn LY5kFiVk1WFfOAZVG9e8ZZobJ32gOBBTdJkbfFTX1Hk2qYZCVHN343TUNlbmkXmW Op83MDGKkoaQi6HST04Vh+Ng52xv9RyswNFeZaUSSNOLeHIKv6J+9DX6K9F/9R9Z X5rJcY2v3vide52FnEgeEmi1hwdJ5r/d4R30AQtZYFG8fb/mgx7L30R78Ywp4Pky /u9elPvii8yaTY1nNqqv24GWBRzEWZzJ5qMK8/eLMkWuYKQSRZmIK499dR7fAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUu5dhrZVCgET0mS3d/cQ7qV2opcowHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTQyLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSwwDQYJKoZIhvcNAQELBQADggEBADQY VkAtR72DzLOGMkRzycQha2xaQ2uJKuEKFvutvXpUr44rohuf8Kwhqp0fYbDiAKmQ FsKw2iSWq1++ldwVhe4Et7+I8xZge05sw6cBR0fLyoPFAI1X2xXOfgKz64nZYSeF YElTzQq5fe0G+ohU9BFOx0Ew16xUqK8y7yvlq4o48z54nfb3xsfEPFfYfLR1NxGr nlwv/dzN5TJhqWpP+WdsXfr2TATpXOzVpEyPgX/hrxfhXGQqlCCHIcpZfFYyPwEI UQZaWi0wS/tqNZASstOVWkohAyENITNKs87YdT8ecdzldulrggA/ObPwSX7JlBso Yfpy+8Xk8PZDaObmOT4= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:55 2026 by rpki-client