$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199344.roa File: AS199344.roa (raw, json) Hash identifier: DWV1Y/QM7ddOGhD95zeIqrF8AaltIoFsma41b5DAdZw= Subject key identifier: 5C:D7:6B:A6:78:00:32:FF:97:39:CC:EB:37:88:7D:51:9B:CF:62:79 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 597409E9B96995D38224BCE3E64CF8899BB0E23D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199344.roa Signing time: Fri 05 Jun 2026 07:12:19 +0000 ROA not before: Fri 05 Jun 2026 07:07:19 +0000 ROA not after: Fri 04 Jun 2027 07:12:19 +0000 asID: 199344 IP address blocks: 2a0a:6040:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:74:09:e9:b9:69:95:d3:82:24:bc:e3:e6:4c:f8:89:9b:b0:e2:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:19 2026 GMT Not After : Jun 4 07:12:19 2027 GMT Subject: CN=5CD76BA6780032FF9739CCEB37887D519BCF6279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6c:15:b9:1d:dc:af:45:72:13:37:4d:c9:b1: 22:e7:f9:de:da:84:79:52:c9:79:e8:79:41:6f:27: a9:e4:01:29:2b:a6:e7:f7:1f:e4:9b:89:d2:26:47: b0:31:d4:6b:16:5b:05:59:63:ec:d8:67:88:ed:01: d7:74:7a:c1:82:3c:32:29:7f:bc:d0:f1:02:86:7a: 97:f2:da:e7:64:b3:0f:de:25:09:36:4d:28:b8:d0: cd:41:18:60:22:d8:40:66:3c:af:66:0b:04:d4:01: 3f:64:dd:9d:98:23:2a:4a:d1:4b:17:59:fe:1a:d9: 26:ee:d0:cc:5a:7e:48:1c:b9:c5:8c:a9:6d:7e:93: 24:1a:bd:e1:e4:06:29:bc:99:db:ed:cd:6a:bf:2e: 5a:61:51:3d:c0:4f:78:48:bc:ed:9a:07:d9:06:45: 73:46:fe:ce:ca:d7:66:ca:ee:cc:38:a5:79:6d:59: 56:f3:b7:84:49:e1:a8:a0:f5:7d:02:73:bb:f8:64: e9:53:a4:60:ea:c0:54:86:ec:07:ff:f0:f7:5d:ce: 9e:d8:2e:01:e0:97:b6:6b:32:56:5b:7a:e3:56:66: 71:90:d1:eb:be:43:ac:42:ac:54:42:39:45:56:c4: 03:9e:5e:c5:dc:de:48:77:82:00:2c:81:9a:74:2c: 8a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D7:6B:A6:78:00:32:FF:97:39:CC:EB:37:88:7D:51:9B:CF:62:79 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199344.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8600::/40 Signature Algorithm: sha256WithRSAEncryption d4:aa:e2:79:9b:69:eb:74:64:75:be:66:a8:a4:38:55:32:66: 98:ec:3b:cd:f5:91:71:7d:3b:89:4d:93:63:23:2c:f8:af:d4: 1e:0d:ba:99:ae:8f:4c:2a:e2:34:be:1b:58:55:7f:1c:2b:98: b4:9a:b4:f9:df:12:96:10:98:da:68:91:a9:00:7c:6a:09:37: cc:82:4a:ec:22:c4:cf:e1:ca:4f:24:fe:21:e8:d6:e7:a4:36: 55:e2:56:d5:f2:73:b9:6a:ec:69:9d:15:80:36:dc:cc:00:0b: 0a:f8:69:a5:c9:43:35:94:0c:01:f9:9b:20:7c:28:69:81:b1: 7a:ce:ed:14:09:cb:42:2e:6a:8b:11:79:83:de:b3:f7:69:b7: 45:86:40:b8:e1:05:d2:f6:90:e9:25:56:ef:13:66:f8:a2:e4: 29:4a:33:fc:ca:ae:bf:c7:4f:df:78:d7:12:d8:ab:a9:46:42: 5c:9c:02:46:3d:06:63:f9:e2:f2:ac:d1:a8:65:5d:e4:67:75: ba:be:66:fe:e5:73:d5:e2:fe:5b:2b:78:fa:22:ca:6c:9f:bb: 5a:7a:7c:64:51:4a:23:89:b2:13:31:06:fa:37:e8:68:8f:ce: 47:91:83:c6:c9:71:03:24:23:ab:8b:66:94:8d:1f:18:3e:7f: 65:1e:0f:08 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUWXQJ6blpldOCJLzj5kz4iZuw4j0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTlaFw0yNzA2MDQwNzEyMTlaMDMxMTAvBgNV BAMTKDVDRDc2QkE2NzgwMDMyRkY5NzM5Q0NFQjM3ODg3RDUxOUJDRjYyNzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1bBW5HdyvRXITN03JsSLn+d7a hHlSyXnoeUFvJ6nkASkrpuf3H+SbidImR7Ax1GsWWwVZY+zYZ4jtAdd0esGCPDIp f7zQ8QKGepfy2udksw/eJQk2TSi40M1BGGAi2EBmPK9mCwTUAT9k3Z2YIypK0UsX Wf4a2Sbu0MxafkgcucWMqW1+kyQaveHkBim8mdvtzWq/LlphUT3AT3hIvO2aB9kG RXNG/s7K12bK7sw4pXltWVbzt4RJ4aig9X0Cc7v4ZOlTpGDqwFSG7Af/8Pddzp7Y LgHgl7ZrMlZbeuNWZnGQ0eu+Q6xCrFRCOUVWxAOeXsXc3kh3ggAsgZp0LIozAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXNdrpngAMv+XOczrN4h9UZvPYnkwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MzQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIYwDQYJKoZIhvcNAQELBQADggEBANSq 4nmbaet0ZHW+ZqikOFUyZpjsO831kXF9O4lNk2MjLPiv1B4Nupmuj0wq4jS+G1hV fxwrmLSatPnfEpYQmNpokakAfGoJN8yCSuwixM/hyk8k/iHo1uekNlXiVtXyc7lq 7GmdFYA23MwACwr4aaXJQzWUDAH5myB8KGmBsXrO7RQJy0IuaosReYPes/dpt0WG QLjhBdL2kOklVu8TZvii5ClKM/zKrr/HT9941xLYq6lGQlycAkY9BmP54vKs0ahl XeRndbq+Zv7lc9Xi/lsrePoiymyfu1p6fGRRSiOJshMxBvo36GiPzkeRg8bJcQMk I6uLZpSNHxg+f2UeDwg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:10:57 2026 by rpki-client