Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa
File: AS1004.roa (raw, json)
Hash identifier: Zt27qijy4nzH7+f3V3Yrx393jYym7DSlSW5TUk6ipuI=
Subject key identifier: 31:4F:8C:F1:15:C2:7A:A3:0F:6E:C2:A0:7C:7C:4A:8F:FB:C8:85:20
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 27F58F55337A95F6F30D0322AED4494ED35D1A9C
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa
Signing time: Sun 06 Oct 2024 04:45:11 +0000
ROA not before: Sun 06 Oct 2024 04:40:11 +0000
ROA not after: Sun 05 Oct 2025 04:45:11 +0000
asID: 1004
IP address blocks: 2a0a:6040:4d00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 19 Dec 2024 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:f5:8f:55:33:7a:95:f6:f3:0d:03:22:ae:d4:49:4e:d3:5d:1a:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Oct 6 04:40:11 2024 GMT
Not After : Oct 5 04:45:11 2025 GMT
Subject: CN=314F8CF115C27AA30F6EC2A07C7C4A8FFBC88520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:83:2c:70:a8:ba:ce:7c:7d:51:b9:fd:1a:41:
0a:69:4e:47:cc:84:44:6f:0a:4a:98:54:a4:b1:e7:
b1:37:e0:ee:04:78:71:97:77:79:bd:6c:c9:4b:a7:
a7:fc:b0:b6:d4:0c:d0:8f:1a:0d:d1:25:ed:ad:21:
e0:ab:46:d1:83:15:34:6e:19:99:4f:24:04:af:0e:
b5:61:2b:2b:cb:ce:67:dd:53:13:2a:39:57:9f:0f:
c9:28:e7:74:17:89:bf:17:7e:07:81:d3:5f:a1:0b:
ef:85:3b:a2:59:70:a1:ed:98:5a:c1:ae:d5:83:86:
b9:eb:20:f2:26:0a:90:67:de:2a:eb:8d:d4:71:25:
70:f4:64:0a:b3:51:7b:20:19:3b:68:ec:37:a9:9f:
9b:fd:6e:a7:af:e9:0a:64:a7:fe:83:ad:42:00:41:
8f:8e:29:82:da:2d:dc:1c:7e:6c:22:08:e9:b4:bb:
8d:6e:44:42:2b:db:2d:fe:c6:15:7b:07:b5:2d:fa:
16:7a:40:12:c8:ce:54:3e:d0:72:ba:43:39:a7:26:
31:78:71:7f:ab:b5:63:28:f8:f6:97:9e:60:d4:f6:
b0:17:76:43:75:10:65:02:b3:5b:0c:0d:f7:18:82:
77:fb:10:99:87:96:9c:4c:46:44:89:40:2b:36:ec:
30:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:4F:8C:F1:15:C2:7A:A3:0F:6E:C2:A0:7C:7C:4A:8F:FB:C8:85:20
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS1004.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:4d00::/40
Signature Algorithm: sha256WithRSAEncryption
63:d2:93:00:c2:55:af:88:2b:b8:30:0e:5f:40:64:b6:9b:30:
92:ed:51:98:a5:da:ed:8b:1b:39:b1:98:0c:b8:be:3d:ea:8d:
b6:f0:e4:4a:59:0c:39:44:4a:0a:63:dd:03:58:a9:cd:5f:08:
b3:c0:52:d7:69:7c:9f:6e:2c:ca:52:e8:4e:37:58:ef:58:d4:
e0:7a:cd:73:99:41:91:ef:5f:b6:72:1c:91:26:66:c6:52:32:
ef:21:2a:6f:27:05:63:51:a0:11:65:21:0a:f4:39:99:dc:85:
60:3a:94:3b:8e:45:df:72:d8:b0:93:92:9e:1c:bd:23:52:1f:
10:46:fe:4e:63:3b:e5:78:79:78:65:fb:43:99:84:dd:9e:9f:
74:d1:4d:6e:9c:ce:88:10:68:2c:d8:c1:c9:91:a8:fe:be:43:
27:d4:9c:1d:55:6e:68:b8:8a:40:b2:8e:a9:96:9c:31:36:42:
31:b1:ec:0b:cd:a4:a2:c9:9f:7d:8b:d4:4f:83:d2:37:8d:c8:
ca:82:2f:da:f1:99:07:8b:17:c7:99:f3:c3:28:22:20:56:da:
9d:51:63:a0:7e:9a:47:19:03:72:0a:71:e0:5f:d0:d4:7e:e1:
d7:c4:41:da:6d:cc:41:a6:f2:f6:d7:21:68:65:8a:b4:fe:4f:
fd:b8:79:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 04:59:35 2025 by rpki-client