$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199094.roa File: AS199094.roa (raw, json) Hash identifier: l4Bx6HklSKMvr9OWioZ+VzLsGruj2PwfqGQ+IKERR6Y= Subject key identifier: F1:3F:EE:1A:74:E2:62:56:8C:E3:11:53:E3:74:7E:93:46:79:7B:84 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 49930A00E47C67004F92F63BBFB33E9D7A8DEB1A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199094.roa Signing time: Fri 05 Jun 2026 07:12:20 +0000 ROA not before: Fri 05 Jun 2026 07:07:20 +0000 ROA not after: Fri 04 Jun 2027 07:12:20 +0000 asID: 199094 IP address blocks: 2a05:dfc1:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:93:0a:00:e4:7c:67:00:4f:92:f6:3b:bf:b3:3e:9d:7a:8d:eb:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:20 2026 GMT Not After : Jun 4 07:12:20 2027 GMT Subject: CN=F13FEE1A74E262568CE31153E3747E9346797B84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:22:a1:ef:c0:db:c5:cf:57:62:1f:6c:4b: ef:ca:c6:4e:20:f7:cd:6a:6c:ca:ea:11:c8:d4:57: 5a:84:67:9b:ab:5c:3f:ab:87:f3:fb:99:89:10:71: 5d:75:7f:01:aa:0c:ed:9f:17:4e:34:0a:76:b3:30: a5:1f:26:d8:54:92:7a:c6:8f:61:ef:34:93:b5:e6: fe:7c:01:b6:d9:08:67:a3:c3:29:c0:84:da:a0:98: 98:f9:7b:b0:15:86:6b:9c:a6:79:8e:17:0f:6d:27: 9a:13:6b:97:e5:51:1f:53:d1:9e:0b:16:87:29:4a: a7:53:ba:88:74:d1:15:ca:44:1e:45:16:79:e3:16: 2a:b4:ad:08:9d:c5:59:5b:63:c1:b1:ab:0e:76:3a: 02:0c:52:c6:f4:50:45:03:10:53:36:ae:07:e1:b0: fe:98:4e:d2:6c:8e:93:45:36:2f:70:a6:2f:51:e0: 0c:9d:22:45:31:74:b8:77:bc:3d:69:51:a1:a0:2a: fc:a3:35:9e:98:3a:f7:30:61:ac:6a:22:3d:84:e1: 22:1e:f5:66:fc:a0:db:19:db:00:1f:76:ce:22:17: a2:23:04:6f:b2:b0:29:af:29:81:ff:47:04:8d:c7: 42:c8:cb:b8:ed:ac:34:bc:9a:79:b6:25:b5:84:da: fd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3F:EE:1A:74:E2:62:56:8C:E3:11:53:E3:74:7E:93:46:79:7B:84 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199094.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:1800::/40 Signature Algorithm: sha256WithRSAEncryption 9b:b8:60:26:7a:c5:d7:da:4e:86:05:bb:e1:8b:e4:7e:94:2a: b0:8a:39:6a:19:8b:a4:b2:95:a8:9a:f6:2d:9a:48:e5:48:85: f6:fe:a6:68:c8:4a:ff:9a:51:50:4f:36:54:10:81:f9:57:24: 1b:50:77:f5:7b:02:bc:0e:2e:d1:f9:f0:7d:49:fa:04:15:c9: c2:30:a7:72:2f:da:44:eb:7b:6f:c6:e5:1a:fa:17:ff:20:28: 1c:d2:f3:1f:91:d7:7b:b0:ab:a6:9a:55:6f:4d:35:8a:99:0b: 62:ef:37:f5:31:c6:93:d7:b6:c9:3f:5a:50:9f:50:dd:25:53: 68:1e:82:9c:cf:ce:aa:81:14:66:5e:47:93:df:be:6f:ac:2b: de:55:f6:91:40:c9:f6:8c:39:3d:b9:59:50:e0:2d:e3:c1:bd: b9:f7:78:2e:78:6d:1d:46:56:50:58:81:34:a4:51:eb:cd:e3: 23:99:b3:37:27:c0:bc:7f:a2:43:fb:35:cd:c9:79:13:e5:88: 26:e0:88:79:66:a9:9b:60:d2:0e:b3:fb:0c:bf:10:ed:52:e3: 3b:4e:d8:40:3f:69:aa:7d:fd:6b:7b:1b:55:14:86:fc:0b:3c: 36:1f:fc:95:fe:77:f0:62:a1:d2:99:45:d2:9f:eb:50:b2:45: bf:99:15:34 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUSZMKAOR8ZwBPkvY7v7M+nXqN6xowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjBaFw0yNzA2MDQwNzEyMjBaMDMxMTAvBgNV BAMTKEYxM0ZFRTFBNzRFMjYyNTY4Q0UzMTE1M0UzNzQ3RTkzNDY3OTdCODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+lSKh78Dbxc9XYh9sS+/Kxk4g 981qbMrqEcjUV1qEZ5urXD+rh/P7mYkQcV11fwGqDO2fF040CnazMKUfJthUknrG j2HvNJO15v58AbbZCGejwynAhNqgmJj5e7AVhmucpnmOFw9tJ5oTa5flUR9T0Z4L FocpSqdTuoh00RXKRB5FFnnjFiq0rQidxVlbY8Gxqw52OgIMUsb0UEUDEFM2rgfh sP6YTtJsjpNFNi9wpi9R4AydIkUxdLh3vD1pUaGgKvyjNZ6YOvcwYaxqIj2E4SIe 9Wb8oNsZ2wAfds4iF6IjBG+ysCmvKYH/RwSNx0LIy7jtrDS8mnm2JbWE2v2FAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8T/uGnTiYlaM4xFT43R+k0Z5e4QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MDk0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwRgwDQYJKoZIhvcNAQELBQADggEBAJu4 YCZ6xdfaToYFu+GL5H6UKrCKOWoZi6Sylaia9i2aSOVIhfb+pmjISv+aUVBPNlQQ gflXJBtQd/V7ArwOLtH58H1J+gQVycIwp3Iv2kTre2/G5Rr6F/8gKBzS8x+R13uw q6aaVW9NNYqZC2LvN/UxxpPXtsk/WlCfUN0lU2gegpzPzqqBFGZeR5Pfvm+sK95V 9pFAyfaMOT25WVDgLePBvbn3eC54bR1GVlBYgTSkUevN4yOZszcnwLx/okP7Nc3J eRPliCbgiHlmqZtg0g6z+wy/EO1S4ztO2EA/aap9/Wt7G1UUhvwLPDYf/JX+d/Bi odKZRdKf61CyRb+ZFTQ= -----END CERTIFICATE-----Generated at Sat Jun 13 10:22:56 2026 by rpki-client