$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198125.roa File: AS198125.roa (raw, json) Hash identifier: PMcYU2RM1ysLRGAJlndFP5oUD4m6dMvnE1O4x+RFtxg= Subject key identifier: 8C:34:5D:A3:EC:7D:23:16:DE:86:E7:58:8A:CB:90:E0:D9:90:9F:1E Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 1437F32F94537A285BE3834FF44893176F5817A9 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198125.roa Signing time: Wed 16 Apr 2025 09:46:09 +0000 ROA not before: Wed 16 Apr 2025 09:41:09 +0000 ROA not after: Wed 15 Apr 2026 09:46:09 +0000 asID: 198125 IP address blocks: 2a05:dfc1:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 07 May 2025 04:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:37:f3:2f:94:53:7a:28:5b:e3:83:4f:f4:48:93:17:6f:58:17:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Apr 16 09:41:09 2025 GMT Not After : Apr 15 09:46:09 2026 GMT Subject: CN=8C345DA3EC7D2316DE86E7588ACB90E0D9909F1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:31:03:ed:8f:39:81:a2:b5:43:34:9c:2e:5f: 8c:40:df:1f:fc:57:1b:83:69:d5:39:e3:d9:ec:1f: ec:8f:4d:ff:d8:76:c2:5a:8b:d3:0a:52:67:9d:1f: f7:6e:7d:28:12:f5:b3:2c:be:47:d4:8e:f9:db:ce: b2:3b:ee:68:01:a6:78:f3:45:fa:d2:15:11:f4:79: 53:59:6e:ab:8b:05:c3:ca:b0:2a:5a:d0:33:87:9e: ac:d7:01:bf:df:cd:3d:28:e0:2d:7b:f7:3d:b2:5d: fc:d7:ab:61:b3:fa:e2:63:21:09:c0:45:b2:80:e4: 34:16:cb:6a:1d:0a:33:20:dd:b3:e2:fd:a5:3e:27: 84:32:dd:9a:d4:ca:f4:ee:80:d2:36:43:28:94:e4: 90:6d:f0:35:a4:c7:52:e2:38:d3:08:51:7b:c9:27: fd:e2:dd:c4:51:7f:14:8d:57:79:ca:be:ef:f7:62: f8:1a:c1:da:44:0d:52:ff:86:83:45:21:da:13:64: 25:8f:64:58:f3:7d:6e:ad:de:ab:71:6f:b1:48:6f: 6e:b9:19:38:86:a5:45:3f:48:b0:31:f1:a0:dd:11: 9f:40:c2:15:0b:ef:a7:a7:c9:e6:07:86:98:06:c3: 8a:e3:b4:94:cb:54:cf:ec:fe:e0:f6:9b:ba:71:b0: 50:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:34:5D:A3:EC:7D:23:16:DE:86:E7:58:8A:CB:90:E0:D9:90:9F:1E X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198125.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:5400::/40 Signature Algorithm: sha256WithRSAEncryption 8e:25:17:3d:42:f2:99:83:00:ef:a4:23:fd:1a:25:7a:e8:e4: 72:e0:ad:e2:6d:7e:5c:04:16:c5:96:8c:89:11:9a:55:bb:b5: ae:ca:34:f3:ff:27:22:8b:6a:4e:cd:11:7e:a3:0a:8e:c6:47: ce:3f:35:99:8e:4d:d9:a1:7d:72:e7:ca:12:86:b3:58:f0:04: dc:44:85:2f:59:e3:87:f6:3b:89:f0:36:f3:30:2c:af:f5:e2: 9f:ef:0d:c8:d2:01:f4:b0:ed:62:1a:d7:e2:30:5f:79:aa:1f: 43:cc:ad:77:4d:a4:7e:de:f7:f0:51:41:8e:c4:5c:66:0d:b6: ac:32:9a:89:41:ed:b8:6e:b6:6d:aa:75:14:48:ee:da:cd:05: 8d:63:05:39:08:f7:7f:dc:0a:59:40:c7:c7:76:b4:d8:35:97: 99:07:f9:c8:f9:ce:17:91:61:80:3a:20:b7:d8:23:bf:5d:f5: f4:bf:85:48:f9:14:2c:93:f6:2e:75:34:fd:1a:33:92:ff:bc: 27:f8:7f:09:33:31:ba:02:38:89:14:64:e5:07:0d:62:ea:0b: 10:e5:17:ba:d2:b7:56:81:9e:a8:e0:ff:73:5a:b8:53:bc:29: 70:17:93:07:55:9d:4c:83:a2:81:f2:91:68:29:e9:3a:34:e8: 21:26:e0:dd -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUFDfzL5RTeihb44NP9EiTF29YF6kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yNTA0MTYwOTQxMDlaFw0yNjA0MTUwOTQ2MDlaMDMxMTAvBgNV BAMTKDhDMzQ1REEzRUM3RDIzMTZERTg2RTc1ODhBQ0I5MEUwRDk5MDlGMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvMQPtjzmBorVDNJwuX4xA3x/8 VxuDadU549nsH+yPTf/YdsJai9MKUmedH/dufSgS9bMsvkfUjvnbzrI77mgBpnjz RfrSFRH0eVNZbquLBcPKsCpa0DOHnqzXAb/fzT0o4C179z2yXfzXq2Gz+uJjIQnA RbKA5DQWy2odCjMg3bPi/aU+J4Qy3ZrUyvTugNI2QyiU5JBt8DWkx1LiONMIUXvJ J/3i3cRRfxSNV3nKvu/3YvgawdpEDVL/hoNFIdoTZCWPZFjzfW6t3qtxb7FIb265 GTiGpUU/SLAx8aDdEZ9AwhUL76enyeYHhpgGw4rjtJTLVM/s/uD2m7pxsFB5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjDRdo+x9IxbehudYisuQ4NmQnx4wHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk4MTI1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwVQwDQYJKoZIhvcNAQELBQADggEBAI4l Fz1C8pmDAO+kI/0aJXro5HLgreJtflwEFsWWjIkRmlW7ta7KNPP/JyKLak7NEX6j Co7GR84/NZmOTdmhfXLnyhKGs1jwBNxEhS9Z44f2O4nwNvMwLK/14p/vDcjSAfSw 7WIa1+IwX3mqH0PMrXdNpH7e9/BRQY7EXGYNtqwymolB7bhutm2qdRRI7trNBY1j BTkI93/cCllAx8d2tNg1l5kH+cj5zheRYYA6ILfYI79d9fS/hUj5FCyT9i51NP0a M5L/vCf4fwkzMboCOIkUZOUHDWLqCxDlF7rSt1aBnqjg/3NauFO8KXAXkwdVnUyD ooHykWgp6To06CEm4N0= -----END CERTIFICATE-----Generated at Tue May 6 11:13:28 2025 by rpki-client