$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199668.roa File: AS199668.roa (raw, json) Hash identifier: Tqt+V5PnKOyVMgjRqsUb/ZscHyZed9Woq1jt8tvA7k0= Subject key identifier: E3:65:A3:89:EC:D1:15:DD:3B:C8:BD:A3:03:48:B4:C5:AF:69:73:33 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 2DBF8B257B84C78F7DDA881C374C713772141958 Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199668.roa Signing time: Fri 04 Jul 2025 06:53:14 +0000 ROA not before: Fri 04 Jul 2025 06:48:14 +0000 ROA not after: Fri 03 Jul 2026 06:53:14 +0000 asID: 199668 IP address blocks: 2a0a:6040:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 05 Nov 2025 22:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bf:8b:25:7b:84:c7:8f:7d:da:88:1c:37:4c:71:37:72:14:19:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:14 2025 GMT Not After : Jul 3 06:53:14 2026 GMT Subject: CN=E365A389ECD115DD3BC8BDA30348B4C5AF697333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b9:e7:c6:b5:88:5a:66:c2:f9:bb:53:e7:22: cd:28:29:5d:27:dc:04:34:60:51:ed:27:08:1e:ca: e1:0b:c7:6e:c6:11:8f:9e:60:83:b4:c9:b5:14:c7: 11:88:9d:1b:15:d7:dc:78:57:7b:b8:3f:f7:01:f7: eb:01:0d:aa:10:70:de:28:50:d0:f6:48:41:5a:ea: 0e:a8:b7:8e:98:4b:a6:a4:51:da:db:32:2b:e0:44: ad:b1:79:c6:ec:18:f0:b2:9c:39:21:ae:33:c9:36: 06:fe:97:26:13:85:26:0a:7a:32:df:81:7a:e2:0b: 5b:f3:9d:2a:13:3a:8b:41:e6:a1:c2:c2:65:27:b7: fc:88:37:5c:30:3c:49:43:db:f3:db:c3:93:6c:3f: 2f:c4:04:aa:98:0d:09:40:50:1f:e9:65:c2:da:d3: 31:50:f9:e4:58:72:23:d1:18:c7:0e:11:e0:23:4f: 86:8b:4c:cc:9c:9d:c3:d7:0e:16:4c:48:65:87:24: 07:7d:01:d2:e1:e2:59:0a:e7:80:2f:ca:d2:5b:cc: b3:1c:af:03:63:2a:6f:2c:a4:01:59:43:fb:cf:58: 1d:b5:ac:84:8b:d0:c0:90:5a:1b:ba:a6:bc:47:e5: a1:51:c1:64:7d:75:1b:41:8a:fa:09:0a:94:05:95: e0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:65:A3:89:EC:D1:15:DD:3B:C8:BD:A3:03:48:B4:C5:AF:69:73:33 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS199668.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0a:6040:7400::/40 Signature Algorithm: sha256WithRSAEncryption 48:73:bc:6a:8e:d2:d1:24:32:33:b4:f7:6c:82:76:26:a7:de: db:61:cf:cb:2f:1a:71:36:05:90:5d:97:e8:da:62:c4:3a:ba: 3e:6f:f0:7a:ea:3b:9e:e3:68:94:35:53:a3:1d:4b:c0:5b:31: 3b:01:8b:52:e6:28:c4:e0:73:e0:d6:c8:0e:da:93:e3:9a:a9: ae:0e:08:ef:b7:d8:76:47:68:88:d2:d6:e6:fe:bb:2f:83:62: bd:52:d7:aa:72:73:28:91:9d:b3:4f:e1:6e:9c:99:e7:dd:a1: 8f:1b:cf:f6:26:bc:4a:a7:49:30:d5:4b:77:5d:6d:b7:88:dd: 0c:e7:72:4f:fa:f8:d3:22:e4:ca:da:04:17:cd:48:bb:fb:2a: eb:39:53:3d:61:86:32:d3:7c:37:0b:37:c5:5e:d5:c9:28:a9: c5:8a:0c:90:94:bd:a8:60:eb:29:c7:18:00:88:41:40:3a:04: 6d:ed:9a:d5:b5:ea:93:38:4b:f1:8d:1f:38:ab:3f:80:33:7b: a4:5d:ea:4a:3a:9d:c8:55:5a:f9:ae:6d:a5:93:c7:ad:7a:0b: c3:cf:15:6e:45:5a:ca:27:8c:21:a0:bc:3b:b1:6f:74:33:24: e4:50:08:c5:b8:67:50:c0:5f:fb:95:f9:16:0e:b3:8f:39:88: f0:9a:63:2b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIULb+LJXuEx4992ogcN0xxN3IUGVgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MTRaFw0yNjA3MDMwNjUzMTRaMDMxMTAvBgNV BAMTKEUzNjVBMzg5RUNEMTE1REQzQkM4QkRBMzAzNDhCNEM1QUY2OTczMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPuefGtYhaZsL5u1PnIs0oKV0n 3AQ0YFHtJwgeyuELx27GEY+eYIO0ybUUxxGInRsV19x4V3u4P/cB9+sBDaoQcN4o UND2SEFa6g6ot46YS6akUdrbMivgRK2xecbsGPCynDkhrjPJNgb+lyYThSYKejLf gXriC1vznSoTOotB5qHCwmUnt/yIN1wwPElD2/Pbw5NsPy/EBKqYDQlAUB/pZcLa 0zFQ+eRYciPRGMcOEeAjT4aLTMycncPXDhZMSGWHJAd9AdLh4lkK54AvytJbzLMc rwNjKm8spAFZQ/vPWB21rISL0MCQWhu6prxH5aFRwWR9dRtBivoJCpQFleAbAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU42WjiezRFd07yL2jA0i0xa9pczMwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMTk5NjY4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgpgQHQwDQYJKoZIhvcNAQELBQADggEBAEhz vGqO0tEkMjO092yCdian3tthz8svGnE2BZBdl+jaYsQ6uj5v8HrqO57jaJQ1U6Md S8BbMTsBi1LmKMTgc+DWyA7ak+Oaqa4OCO+32HZHaIjS1ub+uy+DYr1S16pycyiR nbNP4W6cmefdoY8bz/YmvEqnSTDVS3ddbbeI3Qznck/6+NMi5MraBBfNSLv7Kus5 Uz1hhjLTfDcLN8Ve1ckoqcWKDJCUvahg6ynHGACIQUA6BG3tmtW16pM4S/GNHzir P4Aze6Rd6ko6nchVWvmubaWTx616C8PPFW5FWsonjCGgvDuxb3QzJORQCMW4Z1DA X/uV+RYOs485iPCaYys= -----END CERTIFICATE-----Generated at Wed Nov 5 08:43:53 2025 by rpki-client