$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199344.roa File: AS199344.roa (raw, json) Hash identifier: qhWaeSRP916XtJRZMCgd0Cwp65LcmEekxWF/OPjXi50= Subject key identifier: CF:D2:E6:EA:06:69:9C:52:4B:6E:72:90:14:98:F8:CE:58:63:CE:A1 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 4E79299C8DFAD77F86518237A1E3DA6EFB511940 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199344.roa Signing time: Fri 04 Jul 2025 06:53:22 +0000 ROA not before: Fri 04 Jul 2025 06:48:22 +0000 ROA not after: Fri 03 Jul 2026 06:53:22 +0000 asID: 199344 IP address blocks: 2a0a:6040:8600::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:79:29:9c:8d:fa:d7:7f:86:51:82:37:a1:e3:da:6e:fb:51:19:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:22 2025 GMT Not After : Jul 3 06:53:22 2026 GMT Subject: CN=CFD2E6EA06699C524B6E72901498F8CE5863CEA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:6f:a8:63:20:a5:26:8e:08:7a:71:d1:75:05: 5b:95:38:cf:7f:5d:9c:5d:92:97:39:4b:f9:43:27: 68:b5:9f:e1:be:c1:7e:79:3d:87:16:1d:dc:27:75: 96:92:c9:eb:36:a5:9c:82:47:9f:62:5a:e2:cb:22: cc:b1:e0:ab:09:59:71:bd:94:76:a2:85:d3:7f:b0: 82:89:83:8c:0e:40:9a:c6:54:0b:6a:d9:da:ab:c7: 0c:08:a1:1a:d7:09:c5:0a:81:08:e8:d4:73:d5:4f: f2:82:34:27:53:96:78:16:02:12:0c:01:a3:db:ca: 76:c2:3f:2c:61:0d:52:15:a1:89:bb:24:4f:0c:8a: 2b:b6:da:df:7f:fb:34:7d:08:b8:61:1f:8d:f1:a1: 2c:21:41:c1:76:f9:81:c3:ba:56:8d:88:ae:df:3d: 84:07:03:6e:9f:9b:37:9c:36:ae:54:fa:34:9a:6c: b0:91:6c:3a:06:a0:01:3b:62:81:05:8a:35:4a:6d: 77:fc:ab:02:05:4e:d9:45:c2:29:b3:06:d7:d7:ab: c9:48:2e:8a:92:ee:98:de:f6:91:e6:87:91:70:33: ce:40:f9:6c:98:97:d9:3e:08:45:48:6d:ef:bb:52: 1f:e6:bd:1f:7f:75:f4:78:d6:20:24:34:1c:38:77: 2f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D2:E6:EA:06:69:9C:52:4B:6E:72:90:14:98:F8:CE:58:63:CE:A1 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199344.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:8600::/40 Signature Algorithm: sha256WithRSAEncryption a1:49:1e:8d:9f:6f:1a:37:a7:6c:af:8c:52:2c:38:c8:42:24: c6:96:68:13:0a:b2:d6:c6:23:91:26:52:7c:f3:72:08:cb:af: c2:10:17:a1:1e:27:0d:2d:cb:5d:80:0e:d3:bb:44:72:77:3b: 87:dd:42:d9:eb:64:d9:70:21:85:b8:f5:90:8f:a1:9b:37:a7: 5f:7c:82:8a:df:9f:63:5c:39:1a:be:a9:e3:04:4e:c6:9e:ce: fd:56:34:ec:d4:61:7c:d6:df:9b:31:95:7d:79:8f:05:e0:4c: 0c:fa:0f:55:52:cc:fc:25:61:5a:4e:cc:d5:a1:b4:80:6a:0e: 86:94:d3:a8:6f:50:d5:c0:23:4b:ae:cc:d7:92:b3:52:93:d5: a3:2f:fe:f5:be:3d:20:2a:54:a6:98:0f:26:fb:81:e1:6f:47: 81:15:30:ec:eb:fb:68:c5:01:4d:ba:81:e1:8d:da:9c:48:88: a7:32:84:13:ea:41:40:47:8b:cf:c6:7c:13:68:74:d6:af:65: 4e:37:6f:2b:13:d7:56:51:ed:24:95:93:d7:eb:39:0a:76:62: 34:cb:c4:74:6b:7e:4a:71:11:62:2d:63:9a:8d:ed:bb:89:2c: 3d:3f:56:95:2a:21:b8:3f:9b:fa:cd:4c:98:b0:f1:ce:24:d3: fe:07:e6:c4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUTnkpnI3613+GUYI3oePabvtRGUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjJaFw0yNjA3MDMwNjUzMjJaMDMxMTAvBgNV BAMTKENGRDJFNkVBMDY2OTlDNTI0QjZFNzI5MDE0OThGOENFNTg2M0NFQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnb6hjIKUmjgh6cdF1BVuVOM9/ XZxdkpc5S/lDJ2i1n+G+wX55PYcWHdwndZaSyes2pZyCR59iWuLLIsyx4KsJWXG9 lHaihdN/sIKJg4wOQJrGVAtq2dqrxwwIoRrXCcUKgQjo1HPVT/KCNCdTlngWAhIM AaPbynbCPyxhDVIVoYm7JE8Miiu22t9/+zR9CLhhH43xoSwhQcF2+YHDulaNiK7f PYQHA26fmzecNq5U+jSabLCRbDoGoAE7YoEFijVKbXf8qwIFTtlFwimzBtfXq8lI LoqS7pje9pHmh5FwM85A+WyYl9k+CEVIbe+7Uh/mvR9/dfR41iAkNBw4dy8rAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUz9Lm6gZpnFJLbnKQFJj4zlhjzqEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MzQ0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQIYwDQYJKoZIhvcNAQELBQADggEBAKFJ Ho2fbxo3p2yvjFIsOMhCJMaWaBMKstbGI5EmUnzzcgjLr8IQF6EeJw0ty12ADtO7 RHJ3O4fdQtnrZNlwIYW49ZCPoZs3p198gorfn2NcORq+qeMETsaezv1WNOzUYXzW 35sxlX15jwXgTAz6D1VSzPwlYVpOzNWhtIBqDoaU06hvUNXAI0uuzNeSs1KT1aMv /vW+PSAqVKaYDyb7geFvR4EVMOzr+2jFAU26geGN2pxIiKcyhBPqQUBHi8/GfBNo dNavZU43bysT11ZR7SSVk9frOQp2YjTLxHRrfkpxEWItY5qN7buJLD0/VpUqIbg/ m/rNTJiw8c4k0/4H5sQ= -----END CERTIFICATE-----Generated at Wed Nov 5 20:30:23 2025 by rpki-client