$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199504.roa File: AS199504.roa (raw, json) Hash identifier: TrYfEzXYerYLeLOPNXv+FW2l3Ffikl+To0khXxF2ywM= Subject key identifier: A0:68:4D:EF:AB:22:84:88:1C:35:E3:C2:97:A6:EF:67:CB:F3:B4:51 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 71866C8B3B00BF01E1651F5D40ABBA92D26897AC Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199504.roa Signing time: Fri 05 Jun 2026 07:12:17 +0000 ROA not before: Fri 05 Jun 2026 07:07:17 +0000 ROA not after: Fri 04 Jun 2027 07:12:17 +0000 asID: 199504 IP address blocks: 2a0a:6040:b500::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:86:6c:8b:3b:00:bf:01:e1:65:1f:5d:40:ab:ba:92:d2:68:97:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:17 2026 GMT Not After : Jun 4 07:12:17 2027 GMT Subject: CN=A0684DEFAB2284881C35E3C297A6EF67CBF3B451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:37:8c:3d:aa:5c:19:1f:fb:fd:ff:9d:9a:5e: c8:06:d3:75:4a:24:41:f2:be:eb:24:52:1e:2b:4e: 90:64:ed:61:f6:fa:b2:81:9b:2c:79:f2:6b:fd:82: 64:93:d0:89:43:19:74:cc:68:1b:ba:0f:f1:80:7b: 54:12:34:45:79:7e:c8:4d:9e:d4:ba:8e:c6:16:cf: bb:9f:f1:c3:e7:86:0d:37:9f:9a:ad:78:82:9e:0d: 7d:e2:e6:76:45:89:7f:fa:51:ca:38:65:b2:e2:8a: 2e:56:43:ae:c6:5d:3e:b1:da:20:53:03:a4:7e:d3: 20:1b:1f:fd:c6:34:6f:cc:23:e6:b5:57:f1:05:46: ba:89:0d:bb:a8:52:f3:81:b3:4b:59:21:18:35:4e: a0:f2:98:80:3f:57:a2:97:a8:7f:1d:24:11:1d:de: 90:cf:ea:eb:9b:81:b4:f6:a3:40:83:8f:e9:69:43: d5:d8:07:02:fd:9d:ad:79:d2:51:d2:75:bc:02:8e: de:3f:fc:dd:24:60:d9:49:60:67:11:85:55:1e:71: 62:c9:48:b1:bd:2c:12:dd:a5:1b:99:44:18:93:d8: ae:f6:71:a9:83:e5:c2:a1:fd:81:ed:4f:66:ca:d7: ab:ec:57:d8:45:a4:20:16:7a:18:fb:2c:b1:2f:55: 13:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:68:4D:EF:AB:22:84:88:1C:35:E3:C2:97:A6:EF:67:CB:F3:B4:51 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199504.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:b500::/40 Signature Algorithm: sha256WithRSAEncryption 1e:8d:85:f8:28:10:10:01:de:6d:b4:27:09:1d:a5:53:20:fa: c2:b9:4e:d0:c8:da:03:ce:8c:78:de:91:38:6b:d2:1f:d4:ac: c3:75:fc:91:08:68:f3:5b:4b:bd:45:9b:9a:0c:55:d9:af:f3: 09:71:8b:67:5f:3b:50:7a:81:28:be:18:6f:99:a2:e8:a1:06: de:59:1b:c9:79:8f:11:04:f3:5a:c5:97:65:5b:80:3b:bb:b6: a2:39:35:49:81:cc:29:08:45:91:25:7d:52:e0:ee:c7:0d:4a: 34:dc:16:4c:9b:01:90:d6:95:70:f2:75:d9:64:db:b0:a7:f8: 75:a6:e0:b0:f5:b7:ca:08:f5:a2:c6:a0:fb:95:ea:fc:dd:60: 62:da:b6:f8:b6:ba:96:1c:fc:51:6a:a6:fc:66:90:2e:5a:b1: 93:75:01:72:bb:c2:e6:34:0e:3e:85:b6:46:5a:9d:fd:0e:e0: 45:58:59:54:f7:cd:fa:e9:8d:8c:ff:f7:2f:21:cc:9f:61:9c: a0:14:03:ad:80:fa:3c:1a:58:54:50:63:c9:ef:a9:45:71:a0: cc:52:d2:d8:5b:7b:a4:5b:c5:ec:f9:37:27:4b:33:68:3b:6b: 14:51:97:ce:16:76:f2:2e:6b:14:47:20:cf:9d:0d:e1:33:39: d5:2e:ac:8f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUcYZsizsAvwHhZR9dQKu6ktJol6wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MTdaFw0yNzA2MDQwNzEyMTdaMDMxMTAvBgNV BAMTKEEwNjg0REVGQUIyMjg0ODgxQzM1RTNDMjk3QTZFRjY3Q0JGM0I0NTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCbN4w9qlwZH/v9/52aXsgG03VK JEHyvuskUh4rTpBk7WH2+rKBmyx58mv9gmST0IlDGXTMaBu6D/GAe1QSNEV5fshN ntS6jsYWz7uf8cPnhg03n5qteIKeDX3i5nZFiX/6Uco4ZbLiii5WQ67GXT6x2iBT A6R+0yAbH/3GNG/MI+a1V/EFRrqJDbuoUvOBs0tZIRg1TqDymIA/V6KXqH8dJBEd 3pDP6uubgbT2o0CDj+lpQ9XYBwL9na150lHSdbwCjt4//N0kYNlJYGcRhVUecWLJ SLG9LBLdpRuZRBiT2K72camD5cKh/YHtT2bK16vsV9hFpCAWehj7LLEvVRMDAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUoGhN76sihIgcNePCl6bvZ8vztFEwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NTA0LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQLUwDQYJKoZIhvcNAQELBQADggEBAB6N hfgoEBAB3m20JwkdpVMg+sK5TtDI2gPOjHjekThr0h/UrMN1/JEIaPNbS71Fm5oM Vdmv8wlxi2dfO1B6gSi+GG+ZouihBt5ZG8l5jxEE81rFl2VbgDu7tqI5NUmBzCkI RZElfVLg7scNSjTcFkybAZDWlXDyddlk27Cn+HWm4LD1t8oI9aLGoPuV6vzdYGLa tvi2upYc/FFqpvxmkC5asZN1AXK7wuY0Dj6FtkZanf0O4EVYWVT3zfrpjYz/9y8h zJ9hnKAUA62A+jwaWFRQY8nvqUVxoMxS0thbe6Rbxez5NydLM2g7axRRl84WdvIu axRHIM+dDeEzOdUurI8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:14 2026 by rpki-client