Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS0.roa
File: AS0.roa (raw, json)
Hash identifier: XFFFF9JBCHY8jQziOZP+1Va2Qv/SV2GuMTXBAPhgLT0=
Subject key identifier: B2:53:7F:4D:2C:10:BB:0E:60:9B:5E:D3:A0:AF:85:DE:5C:BE:17:2A
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 36A56C1F1AAAE9CA227F08EF1FEE4C7A43AEC203
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS0.roa
Signing time: Mon 25 Mar 2024 01:59:57 +0000
ROA not before: Mon 25 Mar 2024 01:54:57 +0000
ROA not after: Mon 24 Mar 2025 01:59:57 +0000
asID: 0
IP address blocks: 2a0a:6040:3400::/40 maxlen: 48
Validation: Failed, certificate revoked on Wed 03 Apr 2024 10:06:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:a5:6c:1f:1a:aa:e9:ca:22:7f:08:ef:1f:ee:4c:7a:43:ae:c2:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Mar 25 01:54:57 2024 GMT
Not After : Mar 24 01:59:57 2025 GMT
Subject: CN=B2537F4D2C10BB0E609B5ED3A0AF85DE5CBE172A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:55:8d:41:63:cc:13:c7:b4:f4:bb:c7:b0:31:
f6:30:37:2e:2e:14:eb:0b:eb:8a:fd:8b:fd:d2:4c:
f5:9c:f6:fa:6d:7b:9c:47:7a:76:64:88:96:54:23:
eb:65:f2:55:6c:95:10:ef:96:9e:cf:5c:69:50:a9:
ab:1c:b2:54:bf:13:e6:70:a9:06:43:c7:29:11:1a:
0c:84:65:1e:48:85:bf:fa:51:8b:15:05:b3:7b:42:
83:1e:72:b0:a4:63:2d:52:45:ca:fa:84:18:b4:79:
95:a1:4c:8b:55:46:4b:08:fe:2d:57:e7:f2:26:1c:
3d:a9:1c:00:93:d7:2c:59:e2:8e:89:57:9e:07:d9:
ae:58:bf:37:be:0b:ea:ac:ef:dd:ff:ac:78:2a:3d:
da:d6:9b:78:0d:a9:e2:34:43:73:05:11:0c:b7:40:
b3:1a:76:42:e5:8a:ac:c3:2f:cc:ff:5a:51:88:8b:
fc:a1:38:79:26:0d:fe:bf:f3:c0:4d:00:86:c4:fb:
a1:4e:89:04:e8:7c:4e:b9:a6:3f:16:0b:7e:6a:a3:
a1:05:23:09:07:16:d3:10:6d:ee:cf:02:02:24:f6:
bc:67:b8:8f:9e:a2:fc:22:e2:4b:bf:b6:9c:fe:be:
2c:b5:d8:e0:6e:5f:f5:0f:27:15:95:c5:74:a8:ec:
2c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:53:7F:4D:2C:10:BB:0E:60:9B:5E:D3:A0:AF:85:DE:5C:BE:17:2A
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS0.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:3400::/40
Signature Algorithm: sha256WithRSAEncryption
be:9f:e2:0f:de:a4:70:26:37:f2:82:7d:13:a9:1d:62:b2:38:
87:8c:3a:f6:a7:2f:e4:a2:36:0c:d6:bc:6c:50:09:2e:af:d4:
97:f1:15:40:08:62:0f:13:61:73:4b:e5:a5:a4:2b:65:71:07:
e0:4f:60:db:1a:af:7a:b2:5f:51:58:f4:b8:44:1c:e0:71:d5:
42:fe:e5:72:7f:26:ad:2d:de:df:d2:a2:bf:73:0f:ed:18:cb:
26:2c:a6:2a:69:c3:82:4e:79:3a:c7:24:68:b4:ea:51:a2:65:
42:bf:73:42:f7:75:dc:45:bc:30:11:8d:da:ff:ef:5b:d9:d7:
0c:6f:27:99:82:07:b6:71:77:9c:b7:d3:6c:a6:0d:43:6e:5c:
19:f6:56:ff:23:e1:df:b3:d9:3d:12:4f:a0:fa:89:5a:ca:0f:
3e:a5:32:46:f2:a1:dd:f2:83:62:4d:dc:b4:5c:dd:7e:17:89:
b2:2c:93:a9:9e:08:2a:56:f9:3c:d0:9a:66:ab:47:c4:11:7a:
aa:4d:57:1f:76:fe:41:69:fc:95:bd:ed:f0:91:30:c1:94:45:
31:58:9c:09:23:23:5e:0a:57:fe:59:c6:be:4b:3e:f4:af:16:
e3:8e:77:18:ea:51:71:cc:8c:f2:a4:75:b3:e3:2c:7c:d8:61:
5d:b0:de:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 3 13:57:57 2024 by rpki-client on console-ams.rpki-client.org