$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199650.roa File: AS199650.roa (raw, json) Hash identifier: Q5VkgIWv9C6RkK8cEKOI8Se19cjjKnvNerVjmR4F6vQ= Subject key identifier: 98:43:39:00:68:5D:2D:49:35:AD:88:24:98:E9:AC:31:39:6C:77:1F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 3CE30EF9FE9360DBCB50F2245FD4B1DC8E7FB7A0 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199650.roa Signing time: Fri 05 Jun 2026 07:12:08 +0000 ROA not before: Fri 05 Jun 2026 07:07:08 +0000 ROA not after: Fri 04 Jun 2027 07:12:08 +0000 asID: 199650 IP address blocks: 2a0a:6040:7b00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e3:0e:f9:fe:93:60:db:cb:50:f2:24:5f:d4:b1:dc:8e:7f:b7:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:08 2026 GMT Not After : Jun 4 07:12:08 2027 GMT Subject: CN=98433900685D2D4935AD882498E9AC31396C771F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:49:1f:95:e8:4b:71:07:d4:99:2c:04:9c:ff: 19:b8:15:b7:a0:73:af:a2:94:d0:61:32:75:d5:bc: 69:26:03:95:e2:fb:5b:d0:aa:12:6b:e1:7f:6e:a0: 49:a1:17:e0:ae:ab:a8:89:cd:aa:b3:6f:1d:58:11: 81:f8:29:56:90:52:2b:ae:6c:97:e4:2b:19:b5:24: cf:7b:c3:73:40:1c:e6:b7:dd:c8:4a:57:8e:e7:a9: e0:a8:36:28:d5:63:69:95:d8:e4:2b:18:b0:38:5e: e1:52:12:19:55:82:41:5c:0f:c6:6a:c9:35:dc:9f: ca:f6:66:70:56:f8:0a:73:1f:9c:d6:da:a4:96:41: 8a:e6:f8:dd:52:41:91:06:e5:cd:bd:16:1e:c9:73: 8a:8e:5b:5d:a4:6b:7b:ad:c2:80:fd:12:6a:e4:77: 6f:fe:e3:12:09:f3:56:ba:b8:ef:c3:ff:98:4d:67: a0:9d:fc:06:6e:7e:96:35:80:91:65:8e:2f:f1:81: 68:2f:5e:2c:8e:19:60:c4:e7:7e:e9:cf:bd:a8:74: 51:30:fd:62:4b:8f:6c:33:69:7d:0f:fd:5d:14:03: f2:5b:1c:4d:40:03:77:a9:db:56:ca:44:49:75:98: d2:e6:8f:c8:0c:2e:24:d0:37:9e:83:a4:1f:23:c1: 82:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:43:39:00:68:5D:2D:49:35:AD:88:24:98:E9:AC:31:39:6C:77:1F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199650.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7b00::/40 Signature Algorithm: sha256WithRSAEncryption 79:f4:fc:63:41:e8:4c:34:55:43:d1:c0:c5:0d:18:66:a9:6c: 59:cd:7a:62:fd:e8:c6:98:61:be:dd:0f:7e:4c:cc:af:e3:16: 9b:89:0d:b0:3e:b8:08:51:6b:66:83:45:00:b7:89:a3:2a:82: 4e:f4:1b:25:29:c6:6b:75:3b:5c:c5:66:50:46:05:26:6f:3c: 34:90:05:0b:85:e3:ce:c2:3b:a6:10:b1:2f:1d:e6:1b:4f:a7: 89:37:aa:a2:64:96:61:62:9e:b9:6b:7c:74:70:03:ca:d2:4d: 08:24:23:59:ae:c9:70:3f:57:06:97:2d:eb:86:77:48:b4:19: 2b:d4:7e:4f:76:0d:e4:25:64:08:c3:5c:7c:92:88:b0:b4:38: bc:8f:b0:92:1f:87:ed:8b:86:21:29:bd:83:8a:74:64:02:87: df:e7:86:de:d7:d0:dc:21:d3:0a:8a:c4:00:9e:6f:ab:e0:30: cd:60:81:9e:5a:87:3d:77:47:e4:7b:09:1d:50:24:9c:55:c3: f3:8d:df:0a:58:3d:e1:3b:e2:92:e2:54:97:c1:a1:da:24:3e: ed:82:1b:6a:62:87:d5:50:4e:e3:12:73:ce:73:48:55:fd:95: 16:b1:c1:67:dc:8d:4f:8f:8b:7e:ff:ba:6a:46:7f:c6:4f:33: ce:09:7c:2a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPOMO+f6TYNvLUPIkX9Sx3I5/t6AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MDhaFw0yNzA2MDQwNzEyMDhaMDMxMTAvBgNV BAMTKDk4NDMzOTAwNjg1RDJENDkzNUFEODgyNDk4RTlBQzMxMzk2Qzc3MUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYSR+V6EtxB9SZLASc/xm4Fbeg c6+ilNBhMnXVvGkmA5Xi+1vQqhJr4X9uoEmhF+Cuq6iJzaqzbx1YEYH4KVaQUiuu bJfkKxm1JM97w3NAHOa33chKV47nqeCoNijVY2mV2OQrGLA4XuFSEhlVgkFcD8Zq yTXcn8r2ZnBW+ApzH5zW2qSWQYrm+N1SQZEG5c29Fh7Jc4qOW12ka3utwoD9Emrk d2/+4xIJ81a6uO/D/5hNZ6Cd/AZufpY1gJFlji/xgWgvXiyOGWDE537pz72odFEw /WJLj2wzaX0P/V0UA/JbHE1AA3ep21bKREl1mNLmj8gMLiTQN56DpB8jwYKJAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUmEM5AGhdLUk1rYgkmOmsMTlsdx8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjUwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHswDQYJKoZIhvcNAQELBQADggEBAHn0 /GNB6Ew0VUPRwMUNGGapbFnNemL96MaYYb7dD35MzK/jFpuJDbA+uAhRa2aDRQC3 iaMqgk70GyUpxmt1O1zFZlBGBSZvPDSQBQuF487CO6YQsS8d5htPp4k3qqJklmFi nrlrfHRwA8rSTQgkI1muyXA/VwaXLeuGd0i0GSvUfk92DeQlZAjDXHySiLC0OLyP sJIfh+2LhiEpvYOKdGQCh9/nht7X0Nwh0wqKxACeb6vgMM1ggZ5ahz13R+R7CR1Q JJxVw/ON3wpYPeE74pLiVJfBodokPu2CG2pih9VQTuMSc85zSFX9lRaxwWfcjU+P i37/umpGf8ZPM84JfCo= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:04 2026 by rpki-client