Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa
File: AS137409.roa (raw, json)
Hash identifier: Sb9lwoWMX8fv+G1z5QttlYfU5XxRA3a4tB6iTBYh9+M=
Subject key identifier: 01:99:9B:F7:7F:F0:3D:3C:1C:F3:FF:7E:CB:20:9F:37:2C:EA:1C:6C
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 3ED00649B2BF2B18FE8514932910966B10B0996D
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa
Signing time: Mon 26 Aug 2024 00:49:52 +0000
ROA not before: Mon 26 Aug 2024 00:44:52 +0000
ROA not after: Mon 25 Aug 2025 00:49:52 +0000
asID: 137409
IP address blocks: 2a05:dfc1:9a00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:d0:06:49:b2:bf:2b:18:fe:85:14:93:29:10:96:6b:10:b0:99:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Aug 26 00:44:52 2024 GMT
Not After : Aug 25 00:49:52 2025 GMT
Subject: CN=01999BF77FF03D3C1CF3FF7ECB209F372CEA1C6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fe:d4:6b:eb:cc:2d:6c:1d:b0:21:63:c0:d8:
25:0f:89:88:5c:73:65:a4:42:a5:be:cf:60:6d:62:
a5:4b:0b:49:b3:23:7b:de:e9:76:5f:73:cf:af:50:
f4:fd:d2:0a:ba:0e:9f:1a:44:2a:b6:22:df:ee:9a:
cb:90:4d:cb:02:ac:bc:e1:13:23:04:64:19:66:a5:
31:62:c0:1d:7b:ce:ab:ca:cd:12:d6:6d:6a:c5:5b:
dd:10:bb:7c:a4:e8:07:fa:af:6c:c7:c8:ef:e3:60:
fc:07:36:5b:65:56:6f:74:19:51:fa:41:45:b2:81:
ed:93:aa:7e:a5:72:04:a5:c0:f1:34:7d:62:48:d1:
30:ef:89:73:2a:1d:9a:a4:cf:a1:8d:20:93:56:a9:
73:a1:a6:c7:06:13:13:62:18:43:6b:43:cf:18:c3:
fe:3a:1d:b7:a1:22:8a:b2:7c:1a:61:e2:2c:cc:70:
34:e9:8f:4d:9e:aa:c4:90:cb:3c:dd:4b:49:3b:9b:
43:b8:1b:9e:fd:01:12:f2:cd:91:03:37:1f:2d:c5:
bb:76:67:4f:27:eb:f2:fd:2e:c6:28:16:96:30:9d:
1d:88:cd:d6:f1:7e:78:e0:c4:be:de:9e:3e:ab:3d:
51:ec:89:b8:97:02:48:34:41:07:96:f0:34:cd:c6:
32:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:99:9B:F7:7F:F0:3D:3C:1C:F3:FF:7E:CB:20:9F:37:2C:EA:1C:6C
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS137409.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:9a00::/40
Signature Algorithm: sha256WithRSAEncryption
18:83:63:06:66:d4:6c:04:d4:3b:5b:b3:4f:b8:e7:52:da:67:
b0:4a:0e:90:22:fe:86:c9:c6:e0:de:c2:fb:3a:8f:c8:f5:42:
52:99:7f:df:5b:e4:65:a0:90:c9:69:f1:a9:d4:07:97:8b:6a:
20:49:f3:6d:7a:cb:d7:8a:b9:59:72:18:3a:66:3a:32:56:f7:
b4:6e:da:62:0a:2a:57:b8:48:9b:4b:59:d1:91:54:fb:8d:23:
11:16:76:8e:af:e3:99:8e:d5:2d:7a:1e:01:06:a1:a9:0e:79:
80:55:71:6c:e9:03:d8:f0:44:b4:5b:db:bf:bd:3c:47:63:4c:
d7:d9:eb:b3:41:be:68:f5:ae:8d:01:fb:45:8d:86:20:22:eb:
15:5b:fa:d2:00:51:5b:19:3f:cd:e0:60:ca:03:26:d4:f1:15:
cc:ac:94:64:bc:e0:44:67:7d:50:74:40:f5:e0:e2:31:b6:a1:
04:96:20:e5:ee:56:5e:5d:83:1d:95:74:be:2b:02:bf:10:df:
51:f1:1b:54:6a:28:ea:ca:ed:32:61:8a:03:34:e8:11:f6:4a:
db:d6:80:bc:67:ae:14:18:c0:96:9d:cf:80:dd:68:d5:bb:90:
b4:ce:81:67:6b:1b:aa:77:d0:9c:bb:6c:74:ff:72:7d:de:82:
40:fa:5a:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:01:05 2025 by rpki-client