$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199347.roa File: AS199347.roa (raw, json) Hash identifier: EMw6ZBB82OjM3FqTqcsamoRoX2hv0FAUS2p5NsoZIT4= Subject key identifier: 62:D3:AE:92:5E:B9:50:8F:F7:90:4A:FF:69:64:89:2A:A4:E2:2D:E3 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0AD419927D9266DA3D8DFA3D2874599FD396C90E Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199347.roa Signing time: Fri 04 Jul 2025 06:53:12 +0000 ROA not before: Fri 04 Jul 2025 06:48:12 +0000 ROA not after: Fri 03 Jul 2026 06:53:12 +0000 asID: 199347 IP address blocks: 2a0a:6040:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 04 Aug 2025 23:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:d4:19:92:7d:92:66:da:3d:8d:fa:3d:28:74:59:9f:d3:96:c9:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:12 2025 GMT Not After : Jul 3 06:53:12 2026 GMT Subject: CN=62D3AE925EB9508FF7904AFF6964892AA4E22DE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e2:7f:ed:2a:84:c9:16:d8:72:76:b5:18:11: 95:1a:b1:ea:83:99:ff:b7:34:dd:04:00:04:13:42: 58:76:c7:0a:d6:09:69:ac:1a:27:5e:a1:3f:3f:19: cb:7b:6a:5f:cc:1e:18:dd:a2:e9:9c:ae:20:88:10: 22:3e:30:9b:42:9d:18:17:a2:85:f2:af:e7:a3:8e: cc:0d:e2:7a:4c:fc:9e:fc:53:e8:3d:95:26:5d:ce: 34:1e:b8:ac:64:dd:a9:a3:70:2e:3f:55:1f:b2:b3: d7:5d:b4:a1:31:a8:51:2e:d7:ac:82:7d:97:b3:be: 30:3b:29:92:75:28:de:d1:1d:44:16:d8:d0:7e:b3: 62:3f:ba:be:50:7d:3f:1e:2b:c3:04:d5:7d:59:c5: 92:03:c4:5b:6d:63:64:8e:ab:ae:57:f5:2d:26:91: 30:5d:9f:51:5d:e7:15:8a:2e:42:2c:b9:77:87:fe: 74:1c:8c:dc:f0:e3:8b:1a:35:a5:e9:6a:bc:0f:10: bd:ed:67:72:24:b7:80:62:96:45:b9:72:0e:e5:86: 1d:0d:70:04:81:f6:e0:88:52:77:b3:7a:df:1a:98: bd:78:94:bd:ff:6a:9f:be:eb:88:a5:75:9b:9c:5a: 9b:ca:fe:a4:71:ae:9d:8d:c8:e8:9e:b8:de:94:99: 27:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:D3:AE:92:5E:B9:50:8F:F7:90:4A:FF:69:64:89:2A:A4:E2:2D:E3 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4000::/40 Signature Algorithm: sha256WithRSAEncryption 84:3f:b7:22:2d:19:82:69:cd:0b:ab:27:7e:35:da:a5:39:96: 7e:04:14:6b:a9:45:85:86:01:ed:01:bc:5d:3b:56:20:8e:60: 97:fc:cd:1a:d2:88:32:fd:42:4a:ab:89:c9:ad:4f:f5:e2:72: fd:d8:52:e4:64:ba:7b:4f:fc:2f:42:9f:d9:d6:c9:ed:e3:df: 5c:73:c4:bd:5d:1d:ee:1a:b5:10:aa:3f:f3:b1:72:97:cd:e5: 05:fb:78:17:6d:c8:37:0c:a5:b9:03:93:36:fe:cd:3a:16:ec: 61:4e:72:89:31:d7:7a:d7:37:77:2a:65:2e:17:11:a9:11:c8: 1c:d1:26:84:78:a5:dc:57:f2:06:b3:39:fb:66:fb:a3:89:9e: 61:76:f8:bc:ea:b8:45:8a:7d:8b:7e:86:e1:9a:08:2e:b1:60: ce:bc:7c:a8:0e:a5:70:f6:b8:2f:81:ff:3f:0c:46:52:b9:18: f6:92:9f:34:0e:bf:ad:15:8b:9f:33:43:91:f4:58:0c:99:a7: 45:54:7b:8b:e7:36:ed:11:2b:5c:90:cf:e1:4c:8f:82:e7:49: c4:f1:0b:c4:e3:7e:58:44:d0:1e:9b:17:74:58:4e:00:45:49: f3:49:33:c9:67:3f:10:f8:1b:6b:ff:22:88:c9:dc:34:48:ab: 9d:85:2d:0d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUCtQZkn2SZto9jfo9KHRZn9OWyQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTJaFw0yNjA3MDMwNjUzMTJaMDMxMTAvBgNV BAMTKDYyRDNBRTkyNUVCOTUwOEZGNzkwNEFGRjY5NjQ4OTJBQTRFMjJERTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDn4n/tKoTJFthydrUYEZUaseqD mf+3NN0EAAQTQlh2xwrWCWmsGideoT8/Gct7al/MHhjdoumcriCIECI+MJtCnRgX ooXyr+ejjswN4npM/J78U+g9lSZdzjQeuKxk3amjcC4/VR+ys9ddtKExqFEu16yC fZezvjA7KZJ1KN7RHUQW2NB+s2I/ur5QfT8eK8ME1X1ZxZIDxFttY2SOq65X9S0m kTBdn1Fd5xWKLkIsuXeH/nQcjNzw44saNaXparwPEL3tZ3Ikt4BilkW5cg7lhh0N cASB9uCIUnezet8amL14lL3/ap++64ildZucWpvK/qRxrp2NyOieuN6UmSfFAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUYtOukl65UI/3kEr/aWSJKqTiLeMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MzQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEAwDQYJKoZIhvcNAQELBQADggEBAIQ/ tyItGYJpzQurJ3412qU5ln4EFGupRYWGAe0BvF07ViCOYJf8zRrSiDL9Qkqricmt T/Xicv3YUuRkuntP/C9Cn9nWye3j31xzxL1dHe4atRCqP/OxcpfN5QX7eBdtyDcM pbkDkzb+zToW7GFOcokx13rXN3cqZS4XEakRyBzRJoR4pdxX8gazOftm+6OJnmF2 +LzquEWKfYt+huGaCC6xYM68fKgOpXD2uC+B/z8MRlK5GPaSnzQOv60Vi58zQ5H0 WAyZp0VUe4vnNu0RK1yQz+FMj4LnScTxC8TjflhE0B6bF3RYTgBFSfNJM8lnPxD4 G2v/IojJ3DRIq52FLQ0= -----END CERTIFICATE-----Generated at Mon Aug 4 15:59:25 2025 by rpki-client