$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198981.roa File: AS198981.roa (raw, json) Hash identifier: 4a81UUht62uhob1CmNSplrF76hisjLx0ZfZw2JVTCnE= Subject key identifier: F7:59:61:69:A9:E4:FF:84:C7:E2:8F:4D:41:3C:FD:0A:0E:22:D1:B3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 584E3DDB7FA9205C396203CD78B3180BB15AB747 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198981.roa Signing time: Fri 05 Jun 2026 07:12:17 +0000 ROA not before: Fri 05 Jun 2026 07:07:17 +0000 ROA not after: Fri 04 Jun 2027 07:12:17 +0000 asID: 198981 IP address blocks: 2a05:dfc1:2b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:4e:3d:db:7f:a9:20:5c:39:62:03:cd:78:b3:18:0b:b1:5a:b7:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:17 2026 GMT Not After : Jun 4 07:12:17 2027 GMT Subject: CN=F7596169A9E4FF84C7E28F4D413CFD0A0E22D1B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:90:77:e0:b9:99:18:2c:f3:19:32:c4:b2:da: 4c:05:a6:b6:5c:be:c7:1e:f5:46:d0:aa:3a:d6:cd: 8d:24:35:08:8f:37:20:0c:11:fa:a7:e9:ae:dc:15: a9:26:8d:b0:95:11:91:f3:c4:5c:c0:f8:70:55:e7: 41:da:ef:4b:aa:6a:aa:71:f4:33:da:97:64:64:48: a8:9b:c0:29:6d:33:32:d4:44:50:f2:0b:9c:f0:29: a5:68:d3:d9:2d:30:89:f9:aa:5a:60:da:8a:ce:a0: fc:e9:19:69:45:af:5b:39:f4:56:39:3a:6f:75:85: 5a:1d:db:61:17:5a:f1:93:a0:6b:68:83:c8:0d:09: 0f:c8:a6:8e:0c:a3:a1:77:c3:da:f4:a0:eb:15:fa: 58:b4:da:56:56:22:d8:be:36:b6:51:f5:80:f5:0b: f3:6b:6d:5a:fe:82:ce:4b:2b:a5:5e:b6:e6:7a:ff: 50:c3:7c:c1:3d:f5:d1:0b:ac:64:42:fd:84:03:f1: c3:aa:98:d4:bd:86:0d:bd:69:cd:72:b7:2f:20:66: d1:fd:bb:cf:b3:3c:65:2f:fe:40:4b:5d:4b:26:b5: 87:05:2d:42:a3:33:9c:5c:4b:49:26:38:1a:13:cf: 04:92:cd:4f:7b:7b:0b:c0:2e:da:a4:7d:0c:41:f7: 86:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:59:61:69:A9:E4:FF:84:C7:E2:8F:4D:41:3C:FD:0A:0E:22:D1:B3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS198981.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:2b00::/40 Signature Algorithm: sha256WithRSAEncryption 95:1a:99:a0:30:a8:dc:bb:64:47:f5:a4:74:90:0f:90:91:d3: 92:bb:06:99:d0:9d:5e:1f:f1:df:32:9e:32:35:cd:96:7a:b4: 59:e1:94:24:cc:37:38:fa:98:fb:75:92:70:bc:26:0a:98:a8: 36:85:e0:d4:5a:10:fd:19:6a:7f:e5:a1:0a:67:7e:7a:ab:bf: 36:c4:05:95:ac:92:77:81:b0:21:f9:76:12:ec:82:53:c2:9d: 4d:37:9a:8c:23:9b:30:ed:c9:9c:63:cd:c1:b8:22:1b:4e:e5: c0:ee:5d:8f:9b:bd:29:d5:18:f0:9f:cc:b8:15:5d:61:58:62: 2e:a8:1d:76:0d:e5:fa:50:aa:5d:a7:d5:11:d3:df:e3:a7:3b: a8:20:7b:d5:4f:c9:ef:ca:58:e4:76:a4:92:10:99:ba:02:c2: ef:54:31:b0:61:45:05:08:c7:8f:9a:11:a9:e7:ed:7f:9a:b1: 84:b5:f7:b6:70:b6:5a:58:cc:a1:5a:07:5d:c5:aa:b9:74:26: f0:70:a2:6d:5d:f7:26:ed:e5:b2:06:d6:36:84:5b:70:50:e0: e8:60:4e:14:fe:e0:51:1d:78:f1:ac:f3:5e:59:05:f3:03:45: f8:69:9b:6e:6a:e1:32:01:50:59:dd:c2:2a:19:6a:7c:5d:89: 2e:4c:7f:0c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWE4923+pIFw5YgPNeLMYC7Fat0cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTdaFw0yNzA2MDQwNzEyMTdaMDMxMTAvBgNV BAMTKEY3NTk2MTY5QTlFNEZGODRDN0UyOEY0RDQxM0NGRDBBMEUyMkQxQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNkHfguZkYLPMZMsSy2kwFprZc vsce9UbQqjrWzY0kNQiPNyAMEfqn6a7cFakmjbCVEZHzxFzA+HBV50Ha70uqaqpx 9DPal2RkSKibwCltMzLURFDyC5zwKaVo09ktMIn5qlpg2orOoPzpGWlFr1s59FY5 Om91hVod22EXWvGToGtog8gNCQ/Ipo4Mo6F3w9r0oOsV+li02lZWIti+NrZR9YD1 C/NrbVr+gs5LK6VetuZ6/1DDfME99dELrGRC/YQD8cOqmNS9hg29ac1yty8gZtH9 u8+zPGUv/kBLXUsmtYcFLUKjM5xcS0kmOBoTzwSSzU97ewvALtqkfQxB94bdAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU91lhaank/4TH4o9NQTz9Cg4i0bMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk4OTgxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwSswDQYJKoZIhvcNAQELBQADggEBAJUa maAwqNy7ZEf1pHSQD5CR05K7BpnQnV4f8d8ynjI1zZZ6tFnhlCTMNzj6mPt1knC8 JgqYqDaF4NRaEP0Zan/loQpnfnqrvzbEBZWskneBsCH5dhLsglPCnU03mowjmzDt yZxjzcG4IhtO5cDuXY+bvSnVGPCfzLgVXWFYYi6oHXYN5fpQql2n1RHT3+OnO6gg e9VPye/KWOR2pJIQmboCwu9UMbBhRQUIx4+aEann7X+asYS197ZwtlpYzKFaB13F qrl0JvBwom1d9ybt5bIG1jaEW3BQ4OhgThT+4FEdePGs815ZBfMDRfhpm25q4TIB UFndwioZanxdiS5Mfww= -----END CERTIFICATE-----Generated at Sat Jun 13 06:43:22 2026 by rpki-client