$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199073.roa File: AS199073.roa (raw, json) Hash identifier: pG4deGnd5774mHbjtdzTabRbO80bOkXJk6jxYmzUKIQ= Subject key identifier: 77:52:F2:DB:03:93:28:7F:8F:39:C0:5F:9D:9D:55:89:05:93:89:BC Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0EEF5EDF536E0F22B57952F2CCBEA267F94AB0E6 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199073.roa Signing time: Fri 04 Jul 2025 06:53:15 +0000 ROA not before: Fri 04 Jul 2025 06:48:15 +0000 ROA not after: Fri 03 Jul 2026 06:53:15 +0000 asID: 199073 IP address blocks: 2a05:dfc1:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ef:5e:df:53:6e:0f:22:b5:79:52:f2:cc:be:a2:67:f9:4a:b0:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:15 2025 GMT Not After : Jul 3 06:53:15 2026 GMT Subject: CN=7752F2DB0393287F8F39C05F9D9D5589059389BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:37:14:5f:f2:13:07:50:a5:d3:29:3d:b0:d4: 73:90:db:a4:80:33:b6:c0:32:3e:2f:1a:29:45:4b: 30:3c:8f:42:c0:1d:00:17:0b:2d:5b:45:85:48:65: ca:f8:10:fe:41:63:78:b9:95:23:7a:34:e6:22:12: 37:eb:10:5b:02:e1:8a:f8:df:90:eb:64:f7:22:4a: ae:fd:7e:62:7c:66:3e:f4:f1:cc:25:4a:da:24:fe: cd:78:e1:0c:d6:4f:3a:93:06:92:f0:a9:33:1a:42: fe:b7:dd:8e:c6:14:03:5c:a2:6c:5c:81:19:27:82: 2a:87:3b:4c:92:f0:87:23:61:f3:07:0c:1f:bd:0d: 32:63:ab:7f:70:54:41:8d:5a:98:01:ac:19:ef:8f: 02:6a:cb:5d:5b:4e:05:3f:22:7e:e3:e1:b7:a4:8c: 7f:b7:b9:11:c6:83:55:8a:c0:6d:20:19:16:21:23: f2:f8:a8:40:be:3b:88:6b:31:66:53:37:c5:9a:5e: a8:38:e0:7f:05:2a:76:98:6a:58:82:4b:8f:f8:eb: 5c:71:8c:20:33:e5:59:36:65:8e:5a:dd:00:db:f4: bf:e5:cf:cf:1f:a3:b9:62:37:ec:31:c0:79:1e:44: 98:1e:6d:b7:47:9a:7e:c1:0d:86:43:28:b7:06:c5: cf:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:52:F2:DB:03:93:28:7F:8F:39:C0:5F:9D:9D:55:89:05:93:89:BC X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 26:fd:f5:15:7f:19:b2:10:89:dc:ed:4b:c3:33:86:64:d5:66: 6a:3c:cf:33:b2:e6:86:8e:91:6b:0f:0f:09:d7:38:4b:fb:7a: 19:bf:60:ae:12:0b:0f:53:d5:2e:1f:cd:68:e8:99:ef:39:b9: d1:7d:8c:58:22:8a:7c:7f:4b:23:cd:35:a2:3a:b0:45:30:ca: e7:5b:f4:38:57:bb:f8:b1:58:f0:03:9b:80:e6:25:f1:0c:3a: 6d:07:47:02:32:a0:95:24:2f:13:18:fc:ac:e6:2e:57:b0:9c: 6b:5c:de:f6:41:da:f8:50:6a:b1:87:ec:60:b8:17:0c:bc:41: 71:01:b3:09:1b:ef:a0:65:74:24:63:06:08:fe:37:41:9f:d8: ad:ce:a3:ef:7b:0b:69:b9:66:3d:d1:cb:16:c1:95:98:eb:3f: 96:d0:2d:11:24:63:84:cc:6c:b2:6c:91:dc:0e:72:b4:6e:7a: 37:5e:b4:42:35:f4:d5:6c:31:a3:ad:cb:0d:0a:f3:54:1d:cf: b4:1b:c3:bb:1d:4f:83:66:9c:3a:12:fc:93:e8:66:66:ae:ed: 70:81:d0:d2:d3:9b:64:08:d6:e3:d8:c9:fd:97:e0:08:52:aa: c3:5d:21:4f:9b:d4:8c:1e:6a:58:f5:a5:22:62:2d:b1:63:84: 67:ab:c0:1b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDu9e31NuDyK1eVLyzL6iZ/lKsOYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTVaFw0yNjA3MDMwNjUzMTVaMDMxMTAvBgNV BAMTKDc3NTJGMkRCMDM5MzI4N0Y4RjM5QzA1RjlEOUQ1NTg5MDU5Mzg5QkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD9NxRf8hMHUKXTKT2w1HOQ26SA M7bAMj4vGilFSzA8j0LAHQAXCy1bRYVIZcr4EP5BY3i5lSN6NOYiEjfrEFsC4Yr4 35DrZPciSq79fmJ8Zj708cwlStok/s144QzWTzqTBpLwqTMaQv633Y7GFANcomxc gRkngiqHO0yS8IcjYfMHDB+9DTJjq39wVEGNWpgBrBnvjwJqy11bTgU/In7j4bek jH+3uRHGg1WKwG0gGRYhI/L4qEC+O4hrMWZTN8WaXqg44H8FKnaYaliCS4/461xx jCAz5Vk2ZY5a3QDb9L/lz88fo7liN+wxwHkeRJgebbdHmn7BDYZDKLcGxc+7AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUd1Ly2wOTKH+POcBfnZ1ViQWTibwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MDczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRswDQYJKoZIhvcNAQELBQADggEBACb9 9RV/GbIQidztS8MzhmTVZmo8zzOy5oaOkWsPDwnXOEv7ehm/YK4SCw9T1S4fzWjo me85udF9jFgiinx/SyPNNaI6sEUwyudb9DhXu/ixWPADm4DmJfEMOm0HRwIyoJUk LxMY/KzmLlewnGtc3vZB2vhQarGH7GC4Fwy8QXEBswkb76BldCRjBgj+N0Gf2K3O o+97C2m5Zj3RyxbBlZjrP5bQLREkY4TMbLJskdwOcrRuejdetEI19NVsMaOtyw0K 81Qdz7Qbw7sdT4NmnDoS/JPoZmau7XCB0NLTm2QI1uPYyf2X4AhSqsNdIU+b1Iwe alj1pSJiLbFjhGerwBs= -----END CERTIFICATE-----Generated at Wed Nov 5 08:43:54 2025 by rpki-client