$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199266.roa File: AS199266.roa (raw, json) Hash identifier: mwHT39shgzS3pO1bgK8co4BJMdyUwn46VRL4JvkKpLY= Subject key identifier: EB:39:94:CF:0A:57:B5:3F:85:36:D8:B8:68:27:7B:68:40:AD:55:FB Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 352AF0799E14383F0869102FF21CFAB7CFC91B59 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199266.roa Signing time: Fri 04 Jul 2025 06:52:56 +0000 ROA not before: Fri 04 Jul 2025 06:47:56 +0000 ROA not after: Fri 03 Jul 2026 06:52:56 +0000 asID: 199266 IP address blocks: 2a0a:6040:8900::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:2a:f0:79:9e:14:38:3f:08:69:10:2f:f2:1c:fa:b7:cf:c9:1b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:47:56 2025 GMT Not After : Jul 3 06:52:56 2026 GMT Subject: CN=EB3994CF0A57B53F8536D8B868277B6840AD55FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:cc:77:40:6e:3b:25:4e:92:e6:ae:57:d4: 2a:3b:c2:76:0e:8c:06:86:f0:ab:48:de:a5:d6:6b: 48:9e:57:0a:22:69:30:63:b7:e8:83:a4:c3:16:06: 5d:de:a8:28:35:3d:07:ea:1f:18:57:bb:23:68:2f: 57:62:96:0e:11:6a:9f:ae:2a:f2:66:a5:69:15:eb: 05:95:73:be:35:25:cf:fe:69:e2:ac:e4:43:27:c7: 6b:a9:e1:11:4c:7c:73:86:55:b2:2a:2e:0c:0d:c6: c4:df:fd:9b:c5:71:b5:18:de:8d:d1:60:7c:1c:0b: a5:7b:df:eb:d3:1a:4d:8c:cd:12:50:1c:44:9a:83: 81:06:93:f0:49:4e:0a:61:a6:68:80:39:d9:7c:53: af:f6:09:40:e5:64:0c:d0:13:05:7a:69:c1:ea:86: 73:ef:5f:cf:83:84:38:af:a7:da:9d:07:0e:ed:a3: 3c:ad:66:a7:88:b5:9a:b0:78:70:85:17:c4:65:81: 48:6f:53:ba:e9:8b:ca:0d:ef:96:f0:5b:51:88:42: 52:0a:8e:58:55:93:58:30:4f:69:85:f3:2b:3f:19: 77:8d:56:c6:04:46:9f:14:10:42:b2:ca:84:b7:93: b8:76:bc:30:a0:4d:c6:19:d4:e1:fb:b5:f6:ef:2b: d0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:39:94:CF:0A:57:B5:3F:85:36:D8:B8:68:27:7B:68:40:AD:55:FB X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199266.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8900::/40 Signature Algorithm: sha256WithRSAEncryption c4:a4:97:fe:82:4c:d7:dd:c7:81:a9:7c:93:cc:60:c5:98:55: 41:9e:a1:13:4b:b6:95:5c:d4:a6:ef:52:b6:38:72:34:81:32: 58:b6:f4:02:1d:ed:65:d2:2b:c1:fe:68:e8:f3:b0:c8:79:a2: 76:7e:b9:1f:99:9d:a1:d8:7c:3b:31:d3:c6:da:7f:02:fb:31: 3b:6c:b7:58:3e:f1:eb:de:35:01:eb:23:03:d6:ea:1a:b2:9a: 6a:1d:59:9d:88:5e:51:50:f7:1e:ba:b6:db:38:38:00:93:89: da:07:38:8d:07:c5:99:45:50:59:8b:bb:93:7e:df:4a:10:9e: 56:fd:c2:4c:bd:59:bd:6c:da:d3:1c:20:1d:e6:a0:2b:cf:12: 12:f7:8c:36:db:20:e5:e6:01:a7:d4:9f:44:9c:5d:03:92:25: 04:af:f9:59:3f:9e:69:f5:19:3a:44:26:23:c7:67:1e:d4:d6: 05:aa:fa:4a:79:24:db:07:13:16:e5:3e:b0:6b:9c:af:11:df: f5:20:6d:88:1a:5f:b1:78:b6:34:f4:e6:e4:61:8f:e7:93:5e: 32:a2:45:0e:76:86:e1:42:ce:59:c9:45:7e:33:f8:36:8b:03: 75:77:cb:35:66:22:00:59:82:1f:25:7a:41:ba:a5:9a:31:99: 91:e4:e9:84 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUNSrweZ4UOD8IaRAv8hz6t8/JG1kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ3NTZaFw0yNjA3MDMwNjUyNTZaMDMxMTAvBgNV BAMTKEVCMzk5NENGMEE1N0I1M0Y4NTM2RDhCODY4Mjc3QjY4NDBBRDU1RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN5Mx3QG47JU6S5q5X1Co7wnYO jAaG8KtI3qXWa0ieVwoiaTBjt+iDpMMWBl3eqCg1PQfqHxhXuyNoL1dilg4Rap+u KvJmpWkV6wWVc741Jc/+aeKs5EMnx2up4RFMfHOGVbIqLgwNxsTf/ZvFcbUY3o3R YHwcC6V73+vTGk2MzRJQHESag4EGk/BJTgphpmiAOdl8U6/2CUDlZAzQEwV6acHq hnPvX8+DhDivp9qdBw7tozytZqeItZqweHCFF8RlgUhvU7rpi8oN75bwW1GIQlIK jlhVk1gwT2mF8ys/GXeNVsYERp8UEEKyyoS3k7h2vDCgTcYZ1OH7tfbvK9AZAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU6zmUzwpXtT+FNti4aCd7aECtVfswHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MjY2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIkwDQYJKoZIhvcNAQELBQADggEBAMSk l/6CTNfdx4GpfJPMYMWYVUGeoRNLtpVc1KbvUrY4cjSBMli29AId7WXSK8H+aOjz sMh5onZ+uR+ZnaHYfDsx08bafwL7MTtst1g+8eveNQHrIwPW6hqymmodWZ2IXlFQ 9x66tts4OACTidoHOI0HxZlFUFmLu5N+30oQnlb9wky9Wb1s2tMcIB3moCvPEhL3 jDbbIOXmAafUn0ScXQOSJQSv+Vk/nmn1GTpEJiPHZx7U1gWq+kp5JNsHExblPrBr nK8R3/UgbYgaX7F4tjT05uRhj+eTXjKiRQ52huFCzlnJRX4z+DaLA3V3yzVmIgBZ gh8lekG6pZoxmZHk6YQ= -----END CERTIFICATE-----Generated at Wed Nov 5 20:29:50 2025 by rpki-client