$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199073.roa File: AS199073.roa (raw, json) Hash identifier: dwmlKFdQzL2QdkBUYIvnGkKGdjsjJlA3/ZCg8TlgJKs= Subject key identifier: 59:03:23:8A:55:9E:13:2E:F8:EB:EC:CE:FE:94:9B:3E:63:06:95:CE Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 6464CAB6CBFC3029E930F2CB210318B84CBCB528 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199073.roa Signing time: Fri 05 Jun 2026 07:12:08 +0000 ROA not before: Fri 05 Jun 2026 07:07:08 +0000 ROA not after: Fri 04 Jun 2027 07:12:08 +0000 asID: 199073 IP address blocks: 2a05:dfc1:1b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:64:ca:b6:cb:fc:30:29:e9:30:f2:cb:21:03:18:b8:4c:bc:b5:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:08 2026 GMT Not After : Jun 4 07:12:08 2027 GMT Subject: CN=5903238A559E132EF8EBECCEFE949B3E630695CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c3:d5:84:e0:1a:d0:97:37:f6:10:ff:2f:ac: 63:97:fd:9e:4b:98:dd:70:50:22:68:43:d0:05:ea: 25:16:65:8d:47:75:72:72:48:1e:35:3a:82:7b:be: 18:c8:57:8d:bb:40:9e:05:1a:b0:5c:cd:f0:95:b1: 29:47:41:9f:8f:d3:4c:88:37:1d:64:44:98:1a:8f: 0a:9d:43:be:b2:d5:ba:0e:f2:31:48:99:f8:b9:6c: 96:78:55:b6:15:4d:f6:5c:49:41:5b:56:29:df:00: fd:f8:0d:cb:e3:08:63:3b:8e:6f:bf:c9:98:9e:78: b3:9c:62:a5:65:09:c4:6a:b6:72:02:41:ae:b2:84: 75:2c:48:24:b8:e0:48:14:3c:e3:f3:43:68:92:fa: c8:ce:54:d9:01:23:83:6f:77:c2:68:53:63:91:22: ee:84:ea:27:1f:32:12:b6:97:bf:d9:e1:04:e0:25: 2b:6c:f3:7d:00:36:03:02:f0:f1:d7:78:52:d4:a4: 14:e0:8e:b6:13:a1:ba:5a:d7:27:6d:c9:98:9c:06: 92:f3:b1:92:7d:25:86:2b:f1:9a:b0:4c:75:0e:fe: ac:f1:56:a4:5b:07:bd:7e:53:be:42:df:bf:91:25: d9:94:2b:ec:38:08:84:2a:96:23:da:13:b4:91:bd: 41:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:03:23:8A:55:9E:13:2E:F8:EB:EC:CE:FE:94:9B:3E:63:06:95:CE X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199073.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1b00::/40 Signature Algorithm: sha256WithRSAEncryption 39:a1:82:b6:f9:41:10:3b:d1:31:05:1f:16:de:4b:f2:99:7d: 50:1f:52:02:43:30:72:6c:79:35:2e:90:eb:14:72:0a:4f:64: 2c:69:2e:e6:00:de:d1:e6:4b:f3:37:51:cd:e9:e7:69:92:fd: 84:4a:05:99:5a:87:90:c3:ac:67:a6:5b:07:02:17:86:96:c3: 9a:24:2a:71:ed:d5:7c:c1:1b:c8:fd:cb:2d:0b:e7:6c:60:ca: 85:7b:4d:5f:30:01:fc:36:f2:38:32:38:f5:ec:78:2f:97:7e: 97:2d:69:40:22:49:9b:0b:32:27:b2:c3:69:05:68:1b:90:25: 17:04:3c:88:92:89:3f:15:e4:50:00:d4:b3:3a:75:d2:60:4b: 76:74:a6:c2:2a:98:fd:e6:5e:c8:33:03:54:54:66:3c:19:7f: 7a:25:39:33:40:69:c3:b3:35:46:3a:4a:92:34:72:98:bc:34: 91:2c:43:02:d4:f3:36:37:d7:4b:1b:17:de:b7:ef:37:d0:3f: 55:f5:bf:c6:5e:0b:2f:58:66:93:96:6b:dd:15:70:41:f7:24: 5b:15:8d:6e:d0:af:87:d9:5f:af:96:8a:d8:8a:5d:5b:c8:01: ad:ce:b5:46:1e:ab:4c:ce:97:33:4e:fb:04:77:90:eb:2e:b7: 29:41:a0:d8 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZGTKtsv8MCnpMPLLIQMYuEy8tSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDhaFw0yNzA2MDQwNzEyMDhaMDMxMTAvBgNV BAMTKDU5MDMyMzhBNTU5RTEzMkVGOEVCRUNDRUZFOTQ5QjNFNjMwNjk1Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTw9WE4BrQlzf2EP8vrGOX/Z5L mN1wUCJoQ9AF6iUWZY1HdXJySB41OoJ7vhjIV427QJ4FGrBczfCVsSlHQZ+P00yI Nx1kRJgajwqdQ76y1boO8jFImfi5bJZ4VbYVTfZcSUFbVinfAP34DcvjCGM7jm+/ yZieeLOcYqVlCcRqtnICQa6yhHUsSCS44EgUPOPzQ2iS+sjOVNkBI4Nvd8JoU2OR Iu6E6icfMhK2l7/Z4QTgJSts830ANgMC8PHXeFLUpBTgjrYTobpa1ydtyZicBpLz sZJ9JYYr8ZqwTHUO/qzxVqRbB71+U75C37+RJdmUK+w4CIQqliPaE7SRvUGxAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUWQMjilWeEy746+zO/pSbPmMGlc4wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MDczLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRswDQYJKoZIhvcNAQELBQADggEBADmh grb5QRA70TEFHxbeS/KZfVAfUgJDMHJseTUukOsUcgpPZCxpLuYA3tHmS/M3Uc3p 52mS/YRKBZlah5DDrGemWwcCF4aWw5okKnHt1XzBG8j9yy0L52xgyoV7TV8wAfw2 8jgyOPXseC+XfpctaUAiSZsLMieyw2kFaBuQJRcEPIiSiT8V5FAA1LM6ddJgS3Z0 psIqmP3mXsgzA1RUZjwZf3olOTNAacOzNUY6SpI0cpi8NJEsQwLU8zY310sbF963 7zfQP1X1v8ZeCy9YZpOWa90VcEH3JFsVjW7Qr4fZX6+WitiKXVvIAa3OtUYeq0zO lzNO+wR3kOsutylBoNg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:26 2026 by rpki-client