$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199184.roa File: AS199184.roa (raw, json) Hash identifier: ujT3CK4QC33I15/zwlLg4rvFQFUzYa6IfhsJc2f5+7k= Subject key identifier: 12:38:00:D9:6F:9A:D3:4D:CB:63:4F:C4:FF:2F:1F:32:07:6B:DB:74 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 5A4A5FE6DB10DE32AC2492D08427BC9DEDC18DBE Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199184.roa Signing time: Fri 05 Jun 2026 07:12:10 +0000 ROA not before: Fri 05 Jun 2026 07:07:10 +0000 ROA not after: Fri 04 Jun 2027 07:12:10 +0000 asID: 199184 IP address blocks: 2a0a:6040:9d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:4a:5f:e6:db:10:de:32:ac:24:92:d0:84:27:bc:9d:ed:c1:8d:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:10 2026 GMT Not After : Jun 4 07:12:10 2027 GMT Subject: CN=123800D96F9AD34DCB634FC4FF2F1F32076BDB74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:27:7e:5b:5e:db:c5:52:09:8f:47:30:de: 5e:3c:2e:73:f8:7b:80:65:f4:ff:18:e0:8d:06:70: df:ec:54:38:2f:de:cb:53:06:b9:d5:de:7d:80:c8: 32:a1:56:00:12:df:b1:a4:ea:3a:b4:8e:85:c2:dc: e9:f4:17:16:70:ba:67:09:9b:45:47:64:3c:be:8d: fb:d8:99:e7:98:75:eb:4b:87:f5:7c:c7:42:e5:4b: 03:30:92:e3:2a:6a:8a:3b:14:16:03:55:88:20:77: 35:91:9e:d8:16:52:da:ed:2f:12:cd:de:54:69:b6: 21:32:30:a2:cb:7f:b5:61:50:95:cd:f8:ad:c8:fd: 38:5e:5e:93:71:78:81:c7:b1:64:fc:a2:dd:dc:5c: 1c:a2:37:a5:1c:7e:ed:57:7e:b0:9b:98:7c:1c:94: e5:9f:25:30:42:5f:cf:6a:e4:7b:6a:0d:30:92:05: ad:97:15:01:7d:56:2b:02:ef:dd:a4:1a:a8:a1:f8: a2:80:12:c9:df:a3:e8:65:1f:b1:76:fa:ea:e6:ea: 56:3b:79:cc:80:6f:9c:f5:ff:81:50:44:13:fb:af: 33:b1:8e:fa:0c:5c:8b:ce:14:42:a4:79:e7:35:c1: 23:f2:0c:8c:cc:2a:df:d9:b4:28:c6:00:73:14:e7: 2b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:38:00:D9:6F:9A:D3:4D:CB:63:4F:C4:FF:2F:1F:32:07:6B:DB:74 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9d00::/40 Signature Algorithm: sha256WithRSAEncryption 52:87:de:4f:6a:26:f5:44:48:8c:8e:4c:3c:be:25:00:91:43: 00:8b:f5:bd:cb:6c:b9:d0:1f:81:a7:4d:fb:ee:60:16:67:11: 29:aa:05:2b:97:11:9d:cb:ae:b9:aa:dc:0f:02:42:12:ab:95: e8:02:2b:32:2d:89:57:94:10:d3:81:54:37:23:20:d8:ec:4e: fd:aa:c6:80:ce:56:37:ef:13:25:5b:86:92:78:19:b4:9a:d3: 94:e0:07:40:1f:38:1b:a4:cf:29:68:5c:fa:72:f2:1e:54:08: bd:26:5e:2b:9e:1e:d2:ab:07:74:c3:7b:d1:f9:a3:6f:7d:0b: 44:27:ba:1c:e6:bd:81:9b:60:be:c1:1a:b3:35:29:50:07:c0: 6c:d5:56:cf:79:c5:6c:9e:04:72:6b:19:81:b6:1a:4d:e5:1f: bd:d1:47:00:e3:dc:e5:08:69:16:49:d8:0a:e1:68:2b:97:bf: 36:ca:2b:52:44:38:fd:1c:96:50:9c:af:88:0e:04:9c:70:1c: 57:4f:f5:13:7c:60:a1:7f:7b:c4:a3:eb:e6:64:d9:90:a6:b3: b7:e0:2e:fe:ee:d4:f7:63:94:a3:c5:f4:cb:63:bf:58:12:5f: 7e:2a:d9:42:9d:dc:85:2c:b3:2d:21:5d:22:b7:c3:bd:f1:07: 21:10:33:34 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWkpf5tsQ3jKsJJLQhCe8ne3Bjb4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTBaFw0yNzA2MDQwNzEyMTBaMDMxMTAvBgNV BAMTKDEyMzgwMEQ5NkY5QUQzNERDQjYzNEZDNEZGMkYxRjMyMDc2QkRCNzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqSid+W17bxVIJj0cw3l48LnP4 e4Bl9P8Y4I0GcN/sVDgv3stTBrnV3n2AyDKhVgAS37Gk6jq0joXC3On0FxZwumcJ m0VHZDy+jfvYmeeYdetLh/V8x0LlSwMwkuMqaoo7FBYDVYggdzWRntgWUtrtLxLN 3lRptiEyMKLLf7VhUJXN+K3I/TheXpNxeIHHsWT8ot3cXByiN6Ucfu1XfrCbmHwc lOWfJTBCX89q5HtqDTCSBa2XFQF9VisC792kGqih+KKAEsnfo+hlH7F2+urm6lY7 ecyAb5z1/4FQRBP7rzOxjvoMXIvOFEKkeec1wSPyDIzMKt/ZtCjGAHMU5yuPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEjgA2W+a003LY0/E/y8fMgdr23QwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MTg0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJ0wDQYJKoZIhvcNAQELBQADggEBAFKH 3k9qJvVESIyOTDy+JQCRQwCL9b3LbLnQH4GnTfvuYBZnESmqBSuXEZ3Lrrmq3A8C QhKrlegCKzItiVeUENOBVDcjINjsTv2qxoDOVjfvEyVbhpJ4GbSa05TgB0AfOBuk zyloXPpy8h5UCL0mXiueHtKrB3TDe9H5o299C0QnuhzmvYGbYL7BGrM1KVAHwGzV Vs95xWyeBHJrGYG2Gk3lH73RRwDj3OUIaRZJ2ArhaCuXvzbKK1JEOP0cllCcr4gO BJxwHFdP9RN8YKF/e8Sj6+Zk2ZCms7fgLv7u1PdjlKPF9Mtjv1gSX34q2UKd3IUs sy0hXSK3w73xByEQMzQ= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:01 2026 by rpki-client