Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197532.roa
File: AS197532.roa (raw, json)
Hash identifier: Zv9sYPyUJmQfEZ3ZAcP+j9eV0GnrgN8U2PpFxSa6kqw=
Subject key identifier: A7:51:81:6E:F2:4A:73:A1:EC:3D:C2:07:32:6D:D8:82:52:D7:97:65
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 039D5CA7E261B5E8AA76EDDE954E01FDCFDA8DFA
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197532.roa
Signing time: Sat 17 Aug 2024 13:49:46 +0000
ROA not before: Sat 17 Aug 2024 13:44:46 +0000
ROA not after: Sat 16 Aug 2025 13:49:46 +0000
asID: 197532
IP address blocks: 2a05:dfc1:7200::/40 maxlen: 48
2a05:dfc1:9400::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:9d:5c:a7:e2:61:b5:e8:aa:76:ed:de:95:4e:01:fd:cf:da:8d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Aug 17 13:44:46 2024 GMT
Not After : Aug 16 13:49:46 2025 GMT
Subject: CN=A751816EF24A73A1EC3DC207326DD88252D79765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:d3:33:14:cb:78:1a:6d:c1:12:bc:b9:c9:38:
51:68:df:22:d9:83:4f:6b:19:4d:7f:23:f4:d9:43:
e2:c5:2d:2d:b0:e0:88:e8:cd:81:e5:2e:7b:a6:fa:
b3:fc:43:36:b1:f2:1d:4f:5f:db:93:41:35:61:28:
83:4b:78:b4:07:f5:e7:e0:b5:62:4d:0f:8b:f3:1e:
d9:33:df:f4:d2:88:c0:79:2c:ce:af:14:1f:8c:bd:
65:fe:1d:dd:b4:1e:12:6f:87:b8:16:c5:1c:90:69:
f6:d0:e9:8f:a0:04:de:b6:e4:5c:45:55:91:31:2e:
3f:62:cd:dc:5e:3c:87:22:65:aa:05:0b:77:74:5c:
67:cf:36:e1:c9:83:65:e7:d6:a9:d4:f8:29:0a:c8:
53:ee:e1:c2:46:a8:27:50:e7:44:80:d9:10:89:88:
1e:af:43:03:47:5a:74:74:23:29:c2:a8:1b:e5:35:
75:b6:42:39:72:70:95:50:7a:40:5a:be:8b:ad:c2:
1f:e9:b7:68:6c:1e:5d:e6:8d:f5:e0:f9:46:ae:d7:
48:24:dd:3b:0c:04:ef:6e:53:28:77:cc:eb:d8:db:
5e:cb:68:68:b4:01:3d:3a:65:40:8f:b1:51:1b:c4:
4f:9b:97:0d:64:da:6f:a3:67:9d:37:b2:12:be:e7:
00:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:51:81:6E:F2:4A:73:A1:EC:3D:C2:07:32:6D:D8:82:52:D7:97:65
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:7200::/40
2a05:dfc1:9400::/40
Signature Algorithm: sha256WithRSAEncryption
b7:e2:30:63:e9:82:64:9c:0c:95:fa:ac:dc:94:f3:5d:87:f4:
da:dd:d3:8d:e0:b7:e7:3f:d3:7f:1f:6b:d7:7c:04:29:a1:3b:
6e:59:83:e7:98:0e:69:7f:b0:c4:05:c4:64:fc:40:e6:eb:8b:
af:87:84:7e:30:98:0f:a4:f3:1a:91:23:29:63:bc:47:0c:0f:
9c:18:33:d4:0f:7f:e5:4f:d4:b2:fb:cd:a6:23:69:ce:da:b8:
5c:fd:27:da:9e:f2:60:ce:7b:b5:40:be:b7:f4:e9:f5:26:bb:
a3:12:f4:33:4c:eb:5e:40:40:98:91:b2:c0:49:93:58:7b:6d:
eb:3b:28:c8:47:75:4b:2b:2c:08:b8:a3:d7:a8:3c:a7:bf:2c:
62:a9:0a:51:f2:4d:a6:8a:53:54:c8:07:c0:6b:ce:86:36:f8:
8a:12:66:bc:ef:0d:bc:d0:fe:11:7d:76:39:63:ab:d3:a0:6e:
51:8e:e5:f0:df:ab:ac:5c:db:31:90:11:aa:80:12:1d:1d:f1:
63:ce:fd:f9:2a:7a:93:f0:5a:b4:64:6a:b6:dd:3c:5d:5d:a4:
00:69:83:04:e1:fd:ea:ff:79:1c:19:15:11:11:04:85:16:01:
54:08:22:34:31:4f:2d:6c:d8:39:92:4a:08:e5:cd:89:95:73:
b0:a0:83:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:03:25 2025 by rpki-client