$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199376.roa File: AS199376.roa (raw, json) Hash identifier: zvnCrGHXMz01+vKm+ghsgvjcqBhRcUmJGbrrpKpmxak= Subject key identifier: B5:CE:CB:A0:C5:FB:57:AA:AF:9F:B5:15:5C:D9:E2:EC:98:E3:8F:51 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 0D1FBD531A6673C8CA0E85B0B2693F118F188273 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199376.roa Signing time: Fri 05 Jun 2026 07:12:27 +0000 ROA not before: Fri 05 Jun 2026 07:07:27 +0000 ROA not after: Fri 04 Jun 2027 07:12:27 +0000 asID: 199376 IP address blocks: 2a0a:6040:3000::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:1f:bd:53:1a:66:73:c8:ca:0e:85:b0:b2:69:3f:11:8f:18:82:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:27 2026 GMT Not After : Jun 4 07:12:27 2027 GMT Subject: CN=B5CECBA0C5FB57AAAF9FB5155CD9E2EC98E38F51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:94:bb:57:f5:73:66:f6:6f:40:d7:37:3b: 4e:04:62:05:98:07:33:2b:13:46:d3:fb:ea:77:99: d4:19:3d:9d:40:2f:60:ee:3a:63:3f:64:69:8d:2a: fd:e9:9c:d6:2e:da:2a:48:14:ec:e4:07:b4:54:95: e8:98:d7:b5:2f:b0:6c:e7:71:48:3b:8c:a5:c5:11: 4a:ea:c9:6c:44:75:ea:e8:5b:f0:a0:cf:fd:c7:65: 37:7c:b6:62:cf:77:45:9a:d0:0d:81:66:37:7e:e7: f5:95:25:fe:07:b9:20:c2:5a:86:8e:85:05:82:9d: 76:74:31:de:13:a3:5f:0a:d1:d4:23:44:74:bf:83: 68:13:52:34:10:77:b8:ab:ee:53:fa:87:a2:da:18: 73:09:1b:38:f4:28:f3:21:ae:13:aa:18:f5:b2:ad: 93:fe:bc:0a:f8:31:65:2e:73:f9:2c:90:b8:96:91: 15:b4:a1:b7:ef:cd:1f:e1:29:dc:2a:4c:16:7e:87: ee:26:c0:18:1f:72:e2:3f:4c:2a:8b:ff:91:56:0b: 33:af:f7:05:f5:fd:f0:d6:af:23:01:d4:44:a2:8e: 15:25:9b:b6:e7:13:5e:89:cb:44:17:97:e5:16:d0: 56:c4:9d:71:df:2e:62:a1:21:43:7d:35:f6:d4:78: 5d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CE:CB:A0:C5:FB:57:AA:AF:9F:B5:15:5C:D9:E2:EC:98:E3:8F:51 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199376.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:3000::/40 Signature Algorithm: sha256WithRSAEncryption 7d:e7:39:31:74:aa:d1:dc:ff:ca:6c:a4:c3:2e:44:2e:fa:16: 9e:f3:f1:12:37:e5:c1:0c:ae:96:3e:23:d2:58:83:42:4b:e0: 32:a8:e7:bb:99:ab:8b:2c:f6:1d:6e:94:2e:bd:ff:f9:5f:b6: 60:03:e3:3f:b3:ed:05:68:47:16:0b:c5:4d:8a:ed:e6:0f:fc: 0c:8c:2c:6b:aa:c0:32:b6:97:f6:33:c7:c8:05:1a:7e:f2:9d: b5:c1:56:40:41:64:da:7e:ae:4d:dd:13:e3:0e:49:2b:97:c4: aa:46:fd:b7:3d:43:cf:49:f3:85:d3:1d:0a:14:73:b5:c0:59: 62:ef:92:a2:e8:4e:46:ab:ed:e1:0a:fb:48:0b:fc:5b:e6:07: 64:82:7b:81:3c:02:b5:04:80:9b:94:d1:c8:e8:6f:de:7e:18: f2:41:d9:a2:65:09:09:21:e5:42:c9:24:de:c3:4c:d8:ed:15: df:a1:90:0c:b3:77:75:b5:65:95:07:bf:12:7b:9d:9a:1f:4e: 70:7b:06:61:60:46:7e:4c:eb:47:82:ca:ea:b0:83:fc:40:6b: 74:03:41:fe:98:4c:e3:7b:e5:1e:28:bc:fb:56:13:b9:57:bb: d5:01:d5:09:1d:b2:b1:e3:53:83:e6:91:75:60:89:27:29:fa: aa:04:c2:98 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUDR+9Uxpmc8jKDoWwsmk/EY8YgnMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjdaFw0yNzA2MDQwNzEyMjdaMDMxMTAvBgNV BAMTKEI1Q0VDQkEwQzVGQjU3QUFBRjlGQjUxNTVDRDlFMkVDOThFMzhGNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC32pS7V/VzZvZvQNc3O04EYgWY BzMrE0bT++p3mdQZPZ1AL2DuOmM/ZGmNKv3pnNYu2ipIFOzkB7RUleiY17UvsGzn cUg7jKXFEUrqyWxEderoW/Cgz/3HZTd8tmLPd0Wa0A2BZjd+5/WVJf4HuSDCWoaO hQWCnXZ0Md4To18K0dQjRHS/g2gTUjQQd7ir7lP6h6LaGHMJGzj0KPMhrhOqGPWy rZP+vAr4MWUuc/kskLiWkRW0obfvzR/hKdwqTBZ+h+4mwBgfcuI/TCqL/5FWCzOv 9wX1/fDWryMB1ESijhUlm7bnE16Jy0QXl+UW0FbEnXHfLmKhIUN9NfbUeF37AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUtc7LoMX7V6qvn7UVXNni7Jjjj1EwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5Mzc2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQDAwDQYJKoZIhvcNAQELBQADggEBAH3n OTF0qtHc/8pspMMuRC76Fp7z8RI35cEMrpY+I9JYg0JL4DKo57uZq4ss9h1ulC69 //lftmAD4z+z7QVoRxYLxU2K7eYP/AyMLGuqwDK2l/Yzx8gFGn7ynbXBVkBBZNp+ rk3dE+MOSSuXxKpG/bc9Q89J84XTHQoUc7XAWWLvkqLoTkar7eEK+0gL/FvmB2SC e4E8ArUEgJuU0cjob95+GPJB2aJlCQkh5ULJJN7DTNjtFd+hkAyzd3W1ZZUHvxJ7 nZofTnB7BmFgRn5M60eCyuqwg/xAa3QDQf6YTON75R4ovPtWE7lXu9UB1QkdsrHj U4PmkXVgiScp+qoEwpg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:19 2026 by rpki-client