$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199651.roa File: AS199651.roa (raw, json) Hash identifier: brcucxfXGaspz8odsthyN0yYmdz1tVt9ggZfIo0QcUg= Subject key identifier: 2F:CE:93:85:B0:14:4B:10:5E:99:2D:0E:6E:4D:4E:94:C4:78:E7:0F Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 75AD66628F98D0DD51694CCDBD28E087CE2B2837 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199651.roa Signing time: Fri 05 Jun 2026 07:12:28 +0000 ROA not before: Fri 05 Jun 2026 07:07:28 +0000 ROA not after: Fri 04 Jun 2027 07:12:28 +0000 asID: 199651 IP address blocks: 2a0a:6040:1800::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Jun 2026 01:00:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ad:66:62:8f:98:d0:dd:51:69:4c:cd:bd:28:e0:87:ce:2b:28:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jun 5 07:07:28 2026 GMT Not After : Jun 4 07:12:28 2027 GMT Subject: CN=2FCE9385B0144B105E992D0E6E4D4E94C478E70F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:13:a3:ba:99:e3:be:d5:34:e9:40:35:36:d1: ce:21:db:c2:91:af:ed:b6:2d:cd:3e:da:00:67:da: 11:82:6b:a5:12:34:6b:13:52:ba:da:68:79:b0:4d: 58:dd:14:18:48:fa:0e:eb:ca:06:14:ea:5e:13:ce: 8f:14:ac:90:9f:c6:9d:8a:ca:b7:97:13:42:50:ea: 65:ae:92:22:12:82:77:bc:3e:c3:80:84:06:54:d9: f7:87:b4:c5:4c:d3:8b:38:93:63:2a:5b:0a:bb:5c: c3:23:96:5e:3a:88:c9:b4:d9:85:4c:db:48:10:2a: bb:43:a8:46:54:84:06:69:a3:d3:18:14:63:ae:3d: 80:af:8c:cb:34:ac:ec:97:63:7e:69:97:e9:f4:b2: 1d:8f:39:62:9b:e7:1b:57:aa:97:f9:cb:f4:d1:13: 76:cc:fe:45:4b:9d:48:ce:f3:5e:53:3d:a6:9e:ca: f9:a4:84:9c:87:ca:a1:27:8e:2c:09:2c:19:93:24: b3:26:59:39:62:d6:aa:f7:f6:1e:57:a9:68:c0:e2: 4a:99:2c:5b:c0:d7:5b:7c:a3:3b:de:e8:eb:30:7f: 07:ef:8e:00:fd:4f:bd:c9:91:d9:da:76:0d:17:34: 52:7d:74:84:eb:f2:d1:c3:b4:51:82:32:2f:d6:e1: c8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:CE:93:85:B0:14:4B:10:5E:99:2D:0E:6E:4D:4E:94:C4:78:E7:0F X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199651.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:1800::/40 Signature Algorithm: sha256WithRSAEncryption 99:62:e5:f7:ad:09:40:b9:8e:34:8d:d6:20:98:7f:69:64:77: af:49:c8:19:85:0d:3f:54:72:7f:b4:2b:fc:d3:18:d6:25:7e: 8f:cb:88:ae:9a:3b:44:73:88:62:f9:78:3f:df:7c:84:46:65: 4f:bb:7f:89:eb:c6:6d:dd:e8:37:31:fa:9c:7f:3d:7a:94:e2: 38:70:07:18:3d:fa:f5:73:77:98:6b:97:ad:ea:02:7f:3f:35: de:56:2c:d0:99:8d:ff:59:6c:7a:21:59:a8:48:ac:a9:36:b8: c4:3b:f3:89:ff:ac:da:50:c7:b9:dc:de:9f:77:27:d6:45:d6: a2:9c:ea:e1:3d:97:ce:f3:79:2b:9a:62:08:5e:a2:5a:34:5f: 2a:36:41:10:0d:52:17:b4:9a:2a:27:7d:0a:21:38:99:b3:14: b2:e1:26:69:3b:d6:94:f0:91:2e:c6:90:2a:9f:21:75:3b:8c: 48:65:6b:c9:82:54:f8:64:df:09:8f:62:3e:d7:58:2b:20:49: b9:ac:b3:94:1e:7f:23:3a:89:6c:2a:f0:b8:38:86:18:4c:c6: 29:b6:21:6b:bd:f7:8b:3e:13:3f:da:ed:51:e7:31:0c:bb:c9: 4b:e1:83:cd:e9:58:a7:11:3c:5a:1f:3c:42:16:42:e3:49:29: 80:d8:37:2d -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUda1mYo+Y0N1RaUzNvSjgh84rKDcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNjA2MDUwNzA3MjhaFw0yNzA2MDQwNzEyMjhaMDMxMTAvBgNV BAMTKDJGQ0U5Mzg1QjAxNDRCMTA1RTk5MkQwRTZFNEQ0RTk0QzQ3OEU3MEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTE6O6meO+1TTpQDU20c4h28KR r+22Lc0+2gBn2hGCa6USNGsTUrraaHmwTVjdFBhI+g7rygYU6l4Tzo8UrJCfxp2K yreXE0JQ6mWukiISgne8PsOAhAZU2feHtMVM04s4k2MqWwq7XMMjll46iMm02YVM 20gQKrtDqEZUhAZpo9MYFGOuPYCvjMs0rOyXY35pl+n0sh2POWKb5xtXqpf5y/TR E3bM/kVLnUjO815TPaaeyvmkhJyHyqEnjiwJLBmTJLMmWTli1qr39h5XqWjA4kqZ LFvA11t8ozve6OswfwfvjgD9T73Jkdnadg0XNFJ9dITr8tHDtFGCMi/W4ch5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUL86ThbAUSxBemS0Obk1OlMR45w8wHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjUxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQBgwDQYJKoZIhvcNAQELBQADggEBAJli 5fetCUC5jjSN1iCYf2lkd69JyBmFDT9Ucn+0K/zTGNYlfo/LiK6aO0RziGL5eD/f fIRGZU+7f4nrxm3d6Dcx+px/PXqU4jhwBxg9+vVzd5hrl63qAn8/Nd5WLNCZjf9Z bHohWahIrKk2uMQ784n/rNpQx7nc3p93J9ZF1qKc6uE9l87zeSuaYgheolo0Xyo2 QRANUhe0mionfQohOJmzFLLhJmk71pTwkS7GkCqfIXU7jEhla8mCVPhk3wmPYj7X WCsgSbmss5QefyM6iWwq8Lg4hhhMxim2IWu994s+Ez/a7VHnMQy7yUvhg83pWKcR PFofPEIWQuNJKYDYNy0= -----END CERTIFICATE-----Generated at Sat Jun 13 09:11:04 2026 by rpki-client