$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199651.roa File: AS199651.roa (raw, json) Hash identifier: vTzryoOY0DpljsvXzRtM+WywQ8E8QKwC0r0qY+3TIJE= Subject key identifier: 4F:B9:CC:6B:45:31:BC:11:ED:A0:05:C4:29:03:66:2C:B3:1F:54:66 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 074574D9D5F33A563D384BA51912962BFC9F2D0D Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199651.roa Signing time: Fri 04 Jul 2025 06:53:25 +0000 ROA not before: Fri 04 Jul 2025 06:48:25 +0000 ROA not after: Fri 03 Jul 2026 06:53:25 +0000 asID: 199651 IP address blocks: 2a0a:6040:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 06 Nov 2025 12:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:45:74:d9:d5:f3:3a:56:3d:38:4b:a5:19:12:96:2b:fc:9f:2d:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:25 2025 GMT Not After : Jul 3 06:53:25 2026 GMT Subject: CN=4FB9CC6B4531BC11EDA005C42903662CB31F5466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:bc:cb:30:cf:1e:31:28:df:67:80:98:6f:39: 88:4d:fe:ad:97:3b:a5:dd:a6:22:0b:c7:bb:16:24: 5c:ab:f8:ef:43:f2:17:94:79:66:20:a3:72:97:9a: 48:ae:33:2f:95:6a:b9:70:f9:6f:97:0a:8b:9a:96: 7e:bb:0f:35:d4:45:32:cd:e7:10:b6:06:5e:0d:ff: 97:aa:7b:49:ca:3a:c6:a1:18:b0:75:79:8f:de:5e: 85:ee:a7:4a:04:3a:7a:cc:08:bd:27:2e:d4:71:cf: f3:a9:ea:ea:af:fd:7d:2d:09:4e:f1:7a:82:4d:f1: e2:8b:f9:63:17:6f:71:d1:96:48:52:a2:95:74:50: 33:0f:eb:0c:f5:48:dc:34:12:5e:a7:da:16:42:9d: 36:55:69:23:5a:83:8f:21:f6:c2:a0:09:8d:f5:e6: 99:4e:23:96:ca:c4:08:75:66:e1:8e:19:6e:08:76: 5b:ce:bd:b5:dd:4d:ec:52:a1:b0:f5:22:dc:ca:81: d6:24:3f:82:5b:9b:d4:8a:3b:61:99:36:1f:32:4c: 7b:0d:f3:ad:0f:21:5e:a2:53:0d:50:43:1c:81:f8: 6c:9a:22:82:04:a9:ae:d0:46:d9:51:86:da:bf:af: 60:b3:d1:7d:73:a4:be:67:c6:ad:ac:fe:4c:5c:b7: 1e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:B9:CC:6B:45:31:BC:11:ED:A0:05:C4:29:03:66:2C:B3:1F:54:66 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199651.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1800::/40 Signature Algorithm: sha256WithRSAEncryption b4:98:98:94:1e:c8:01:7d:11:a5:52:71:ed:84:41:17:b2:02: d9:08:46:91:6f:fd:28:59:49:a1:8f:02:0c:5c:39:3e:63:eb: ba:28:64:7e:9d:e4:b4:04:17:16:8d:a1:61:aa:fe:9f:c7:17: a6:3f:cf:aa:c2:c1:e7:25:c5:9e:58:d9:e6:19:20:7c:34:6c: e5:cf:83:9b:4f:4b:80:f5:fa:a5:7c:0e:d9:db:e4:51:14:e9: f3:e2:54:7b:31:8a:08:ce:2d:68:4b:2d:6d:fd:8a:56:25:32: ea:a3:34:9f:5e:7d:74:b6:a8:f6:15:f2:5b:a9:30:7d:e9:94: b3:d8:3f:48:d4:99:8b:14:f2:ca:03:69:2b:24:63:6e:8f:e2: 85:6a:48:f6:db:9d:1b:5c:a6:35:15:bd:a2:87:f5:32:de:82: 76:52:2d:51:67:dd:e7:9f:ad:6f:1f:21:ef:93:4a:6c:bb:ec: 3b:00:22:bf:97:9f:fd:20:b8:f9:2b:e1:86:57:53:ae:69:58: d4:d9:bf:74:75:60:f7:09:94:ca:1e:c1:8b:eb:a3:e3:49:49: 6d:9d:cf:41:78:3f:99:43:67:db:d8:0d:f4:86:4b:67:43:3b: 17:05:5e:48:3f:45:be:0e:82:85:26:8b:db:98:a8:73:19:4a: 81:94:ab:5f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUB0V02dXzOlY9OEulGRKWK/yfLQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MjVaFw0yNjA3MDMwNjUzMjVaMDMxMTAvBgNV BAMTKDRGQjlDQzZCNDUzMUJDMTFFREEwMDVDNDI5MDM2NjJDQjMxRjU0NjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvvMswzx4xKN9ngJhvOYhN/q2X O6XdpiILx7sWJFyr+O9D8heUeWYgo3KXmkiuMy+Varlw+W+XCoualn67DzXURTLN 5xC2Bl4N/5eqe0nKOsahGLB1eY/eXoXup0oEOnrMCL0nLtRxz/Op6uqv/X0tCU7x eoJN8eKL+WMXb3HRlkhSopV0UDMP6wz1SNw0El6n2hZCnTZVaSNag48h9sKgCY31 5plOI5bKxAh1ZuGOGW4IdlvOvbXdTexSobD1ItzKgdYkP4Jbm9SKO2GZNh8yTHsN 860PIV6iUw1QQxyB+GyaIoIEqa7QRtlRhtq/r2Cz0X1zpL5nxq2s/kxctx5fAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUT7nMa0UxvBHtoAXEKQNmLLMfVGYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjUxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBgwDQYJKoZIhvcNAQELBQADggEBALSY mJQeyAF9EaVSce2EQReyAtkIRpFv/ShZSaGPAgxcOT5j67ooZH6d5LQEFxaNoWGq /p/HF6Y/z6rCweclxZ5Y2eYZIHw0bOXPg5tPS4D1+qV8Dtnb5FEU6fPiVHsxigjO LWhLLW39ilYlMuqjNJ9efXS2qPYV8lupMH3plLPYP0jUmYsU8soDaSskY26P4oVq SPbbnRtcpjUVvaKH9TLegnZSLVFn3eefrW8fIe+TSmy77DsAIr+Xn/0guPkr4YZX U65pWNTZv3R1YPcJlMoewYvro+NJSW2dz0F4P5lDZ9vYDfSGS2dDOxcFXkg/Rb4O goUmi9uYqHMZSoGUq18= -----END CERTIFICATE-----Generated at Wed Nov 5 19:11:02 2025 by rpki-client