$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199184.roa File: AS199184.roa (raw, json) Hash identifier: DNw9xlBHocgU3JCYv0h4YrHU6XEfWAd63Vz6w3ZDKOE= Subject key identifier: E4:E9:AC:AE:C6:7B:37:EE:51:86:73:75:D2:21:8D:E9:74:2C:16:4C Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0707A23450E0B86C67A662554A7AF9091A75894C Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199184.roa Signing time: Fri 04 Jul 2025 06:53:26 +0000 ROA not before: Fri 04 Jul 2025 06:48:26 +0000 ROA not after: Fri 03 Jul 2026 06:53:26 +0000 asID: 199184 IP address blocks: 2a0a:6040:9d00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:07:a2:34:50:e0:b8:6c:67:a6:62:55:4a:7a:f9:09:1a:75:89:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:26 2025 GMT Not After : Jul 3 06:53:26 2026 GMT Subject: CN=E4E9ACAEC67B37EE51867375D2218DE9742C164C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bc:ce:61:f7:cc:f1:f7:b7:b8:0a:0e:c4:e7: b5:ee:fe:7b:b8:2f:e9:22:d2:5d:5c:30:2b:fc:1f: ca:45:64:e4:f3:8e:9e:6f:69:7a:f1:60:44:00:46: 8c:d5:32:22:6c:0e:7c:5a:f8:ca:0d:46:cf:00:cb: 01:8f:ca:5d:d2:7c:33:6d:ef:b6:83:5b:d8:96:44: 05:10:96:c6:1d:10:dc:b7:8f:f3:cd:a5:79:2f:67: 57:5c:32:ca:11:d6:1f:6c:ad:dc:88:bf:fb:90:fd: 4b:fa:ce:35:8d:ed:c6:66:64:5b:b7:b5:38:d1:bf: d4:b6:e8:18:00:f3:4a:98:0e:35:40:30:56:00:ce: 80:5d:46:7c:02:9e:6b:7e:40:10:3d:45:4a:a2:b0: fe:d6:46:eb:19:b2:d4:e3:d0:c1:ae:8e:9e:2d:e3: 88:9d:3e:30:dd:87:cc:ce:74:cc:ae:12:4a:63:c7: 8e:00:a3:4e:83:b6:85:d3:17:fc:1e:6e:7f:83:27: 03:da:4a:49:3f:a2:0d:b2:72:da:e8:5a:04:64:5c: 4b:f3:37:b0:37:d9:a0:70:4e:8a:37:4c:57:20:1c: 45:42:85:2e:f1:af:b6:e3:4a:28:12:62:70:92:67: 22:09:20:8d:38:53:ae:45:d5:7f:8e:d8:f5:38:55: f1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:E9:AC:AE:C6:7B:37:EE:51:86:73:75:D2:21:8D:E9:74:2C:16:4C X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199184.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:9d00::/40 Signature Algorithm: sha256WithRSAEncryption 06:0d:7b:6f:4f:38:8d:57:55:84:31:5a:c9:69:1c:8f:53:95: a7:82:18:49:ec:be:9a:6b:14:19:9d:91:b6:c2:a2:ab:b4:85: da:68:fa:27:99:31:2f:cb:09:a9:54:34:83:a8:3f:f4:d0:fd: da:5e:20:9a:2d:ff:d9:6a:cd:8a:4a:7a:5d:c6:6a:7f:7a:4d: a0:33:c2:01:04:77:29:f8:3f:76:d0:5c:3d:78:fe:32:82:bc: b3:0e:30:84:9b:de:96:cc:fb:ab:1e:45:92:e0:fc:56:54:d4: 02:af:64:12:22:c0:ec:a8:b4:50:5b:26:83:e6:43:5a:8a:c5: 63:00:88:e4:ed:c4:cb:40:5e:63:4d:74:1d:51:d4:47:3d:01: 3d:a1:3c:93:2b:24:64:9d:10:24:e5:1f:5d:23:ac:61:1f:77: c4:bd:13:26:92:f1:1e:97:db:8d:d6:29:fd:81:c2:52:75:fc: 8a:8a:a7:a2:ea:3c:d5:6d:63:f8:8a:0c:06:2a:5c:a3:a3:f3: 3e:95:80:b6:96:41:22:5e:2b:42:ac:4b:c9:7f:64:a4:0f:6a: 79:1b:3a:5b:0f:44:2a:0a:93:ef:62:7d:28:05:8f:1e:a2:ac: 34:31:13:d8:55:1e:ef:0b:43:1b:67:b6:f1:51:81:68:27:cd: b5:6f:0c:4d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBweiNFDguGxnpmJVSnr5CRp1iUwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjZaFw0yNjA3MDMwNjUzMjZaMDMxMTAvBgNV BAMTKEU0RTlBQ0FFQzY3QjM3RUU1MTg2NzM3NUQyMjE4REU5NzQyQzE2NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDbvM5h98zx97e4Cg7E57Xu/nu4 L+ki0l1cMCv8H8pFZOTzjp5vaXrxYEQARozVMiJsDnxa+MoNRs8AywGPyl3SfDNt 77aDW9iWRAUQlsYdENy3j/PNpXkvZ1dcMsoR1h9srdyIv/uQ/Uv6zjWN7cZmZFu3 tTjRv9S26BgA80qYDjVAMFYAzoBdRnwCnmt+QBA9RUqisP7WRusZstTj0MGujp4t 44idPjDdh8zOdMyuEkpjx44Ao06DtoXTF/webn+DJwPaSkk/og2yctroWgRkXEvz N7A32aBwToo3TFcgHEVChS7xr7bjSigSYnCSZyIJII04U65F1X+O2PU4VfHhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU5OmsrsZ7N+5RhnN10iGN6XQsFkwwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MTg0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQJ0wDQYJKoZIhvcNAQELBQADggEBAAYN e29POI1XVYQxWslpHI9TlaeCGEnsvpprFBmdkbbCoqu0hdpo+ieZMS/LCalUNIOo P/TQ/dpeIJot/9lqzYpKel3Gan96TaAzwgEEdyn4P3bQXD14/jKCvLMOMISb3pbM +6seRZLg/FZU1AKvZBIiwOyotFBbJoPmQ1qKxWMAiOTtxMtAXmNNdB1R1Ec9AT2h PJMrJGSdECTlH10jrGEfd8S9EyaS8R6X243WKf2BwlJ1/IqKp6LqPNVtY/iKDAYq XKOj8z6VgLaWQSJeK0KsS8l/ZKQPankbOlsPRCoKk+9ifSgFjx6irDQxE9hVHu8L QxtntvFRgWgnzbVvDE0= -----END CERTIFICATE-----Generated at Wed Nov 5 14:10:32 2025 by rpki-client