$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199347.roa File: AS199347.roa (raw, json) Hash identifier: hX980ootaD0rlfjVAjZOTA4RVzkOTKpK44A4UWqvZcc= Subject key identifier: F1:14:7E:92:5B:A5:B4:CC:A7:93:07:CC:C3:D0:BF:D4:56:D2:6A:AD Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 65CE819BB33F3EBC5F729FDAA84E21A0B79CD52D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199347.roa Signing time: Fri 05 Jun 2026 07:12:49 +0000 ROA not before: Fri 05 Jun 2026 07:07:49 +0000 ROA not after: Fri 04 Jun 2027 07:12:49 +0000 asID: 199347 IP address blocks: 2a0a:6040:4000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ce:81:9b:b3:3f:3e:bc:5f:72:9f:da:a8:4e:21:a0:b7:9c:d5:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:49 2026 GMT Not After : Jun 4 07:12:49 2027 GMT Subject: CN=F1147E925BA5B4CCA79307CCC3D0BFD456D26AAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d6:87:8e:af:f8:43:dc:b0:e1:34:2f:2e:25: 31:a8:df:c2:0b:6d:00:9d:29:70:29:66:d7:4b:18: 83:6b:b3:b9:ed:e4:f2:a6:4c:cf:17:89:f3:84:57: e1:f1:bd:b9:1a:07:ba:22:92:af:be:03:52:90:ce: ef:69:a8:d0:01:41:18:c5:ac:b7:e2:da:e4:ea:fd: bd:36:7f:be:4e:ba:3c:26:21:79:fd:dd:68:41:ed: c0:b6:29:2d:97:f6:1b:a3:7d:57:27:38:e7:91:96: 6f:c1:4c:8f:ae:4d:b5:96:f6:51:fc:02:54:8a:fa: 09:44:a8:50:1a:35:8a:1b:64:f5:93:fb:86:87:0b: 2e:19:ff:5c:53:aa:80:65:98:7a:9f:58:31:b4:e1: 53:53:04:b8:78:db:75:5d:0b:ba:12:d3:49:50:2c: 02:ec:cc:15:25:af:9e:16:a9:fe:8f:d0:23:06:b8: 7f:20:2b:ad:0c:42:f7:58:7e:b2:87:dc:c7:1d:0d: 44:80:e4:c8:a2:0b:7b:ef:33:48:9c:80:0d:ec:cc: d9:cc:70:05:2b:e8:86:ab:ca:99:b0:ec:73:ed:4f: 0b:0d:8c:0e:20:51:ba:88:29:4d:8a:64:e9:f4:f1: 28:2d:ea:2b:97:f0:88:e2:d9:57:ea:d9:c2:a2:db: 5b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:14:7E:92:5B:A5:B4:CC:A7:93:07:CC:C3:D0:BF:D4:56:D2:6A:AD X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199347.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:4000::/40 Signature Algorithm: sha256WithRSAEncryption 3b:5f:4a:cc:da:66:2c:6b:89:64:ce:00:fc:e4:ce:45:29:83: b1:8e:29:4f:4a:a8:20:13:02:49:5e:0f:16:b3:5e:ba:70:86: e9:7f:17:51:cf:22:3d:52:7a:99:ab:b0:5b:0e:08:de:e1:1a: 47:4d:f0:b2:ab:7c:99:e2:28:f9:f9:23:08:44:73:40:23:a6: c7:88:e4:8f:c1:0e:62:4e:ee:03:8f:cb:3c:a8:cd:50:ac:dd: 9f:16:5e:74:62:f2:f0:6b:65:53:95:fd:ad:bd:d7:2c:e8:ba: bb:8c:3a:ea:36:ed:55:a8:de:85:11:93:5d:0f:d4:11:4e:79: 4b:26:d0:93:00:29:40:2d:74:a2:f9:5c:4f:05:f4:78:88:fb: 47:46:f9:41:11:a4:46:20:4f:ef:a2:29:5d:63:6a:bc:b2:30: db:28:b5:d8:09:45:5f:ea:41:62:b3:ad:5d:9b:8a:99:ca:c4: c1:eb:1d:4b:ef:e0:bb:d3:8c:39:be:1a:9e:2a:17:f2:06:93: 28:d5:10:11:0a:18:e6:9a:e9:62:b7:cd:c0:e6:0b:17:87:a9: 10:2f:e0:67:dd:ca:da:e2:91:54:ea:b8:c2:3d:8e:b0:85:d4: 90:0a:e5:ca:26:78:23:b6:a9:1b:37:fe:cc:6e:55:52:f8:65: 94:3e:79:13 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZc6Bm7M/Prxfcp/aqE4hoLec1S0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3NDlaFw0yNzA2MDQwNzEyNDlaMDMxMTAvBgNV BAMTKEYxMTQ3RTkyNUJBNUI0Q0NBNzkzMDdDQ0MzRDBCRkQ0NTZEMjZBQUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDa1oeOr/hD3LDhNC8uJTGo38IL bQCdKXApZtdLGINrs7nt5PKmTM8XifOEV+HxvbkaB7oikq++A1KQzu9pqNABQRjF rLfi2uTq/b02f75OujwmIXn93WhB7cC2KS2X9hujfVcnOOeRlm/BTI+uTbWW9lH8 AlSK+glEqFAaNYobZPWT+4aHCy4Z/1xTqoBlmHqfWDG04VNTBLh423VdC7oS00lQ LALszBUlr54Wqf6P0CMGuH8gK60MQvdYfrKH3McdDUSA5MiiC3vvM0icgA3szNnM cAUr6Iarypmw7HPtTwsNjA4gUbqIKU2KZOn08Sgt6iuX8Iji2Vfq2cKi21tRAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU8RR+klultMynkwfMw9C/1FbSaq0wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5MzQ3LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQEAwDQYJKoZIhvcNAQELBQADggEBADtf SszaZixriWTOAPzkzkUpg7GOKU9KqCATAkleDxazXrpwhul/F1HPIj1SepmrsFsO CN7hGkdN8LKrfJniKPn5IwhEc0AjpseI5I/BDmJO7gOPyzyozVCs3Z8WXnRi8vBr ZVOV/a291yzouruMOuo27VWo3oURk10P1BFOeUsm0JMAKUAtdKL5XE8F9HiI+0dG +UERpEYgT++iKV1jaryyMNsotdgJRV/qQWKzrV2bipnKxMHrHUvv4LvTjDm+Gp4q F/IGkyjVEBEKGOaa6WK3zcDmCxeHqRAv4GfdytrikVTquMI9jrCF1JAK5comeCO2 qRs3/sxuVVL4ZZQ+eRM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:24 2026 by rpki-client