Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198889.roa
File: AS198889.roa (raw, json)
Hash identifier: G3osENcubRiEgz2MkANKXtdSerS9frRnDETLYHIdlTk=
Subject key identifier: DF:65:38:2D:07:FE:12:FC:0B:19:7E:94:41:E1:5E:D7:CC:1B:A6:DE
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 58466AC9F2A170E3DAB065300E3AC65B2544923C
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198889.roa
Signing time: Wed 26 Feb 2025 06:45:54 +0000
ROA not before: Wed 26 Feb 2025 06:40:54 +0000
ROA not after: Wed 25 Feb 2026 06:45:54 +0000
asID: 198889
IP address blocks: 2a05:dfc1:3c00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:46:6a:c9:f2:a1:70:e3:da:b0:65:30:0e:3a:c6:5b:25:44:92:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Feb 26 06:40:54 2025 GMT
Not After : Feb 25 06:45:54 2026 GMT
Subject: CN=DF65382D07FE12FC0B197E9441E15ED7CC1BA6DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:84:60:5a:69:59:f1:25:4d:c1:c7:cd:6e:b6:
ac:5b:2c:89:dd:27:22:5f:a8:ed:b3:12:2b:c0:9e:
a7:60:4d:e9:da:ed:48:eb:ce:c8:d4:5e:ac:68:7d:
aa:6d:6f:5e:7a:60:20:17:40:d1:b2:04:d3:ea:3b:
7d:84:95:5b:40:05:a3:02:de:96:2c:4e:aa:a5:6d:
eb:51:13:ab:d8:14:7e:9e:2a:80:5e:ed:e6:f1:40:
45:28:c5:b2:1f:da:b1:e5:87:4c:81:7b:5a:cf:73:
7f:6c:62:87:b6:64:31:fb:77:1e:26:41:66:3d:1e:
ff:fc:cb:c7:80:3b:75:5a:4f:f4:f7:67:de:07:00:
36:a6:1f:5b:b9:76:9d:50:b0:66:eb:4d:94:79:a5:
ef:a6:9f:41:fc:b1:09:6e:70:86:66:a3:f5:22:93:
57:63:8e:67:97:25:6e:1d:59:8f:61:38:be:2f:30:
2f:43:b2:c3:5e:d7:69:e7:91:1d:36:af:04:8f:ec:
ac:01:60:f9:02:21:c2:d6:ab:6b:ed:82:0f:be:fb:
9c:1c:f1:fd:81:6f:5c:d4:4b:88:8b:2a:61:32:92:
ec:4b:cd:aa:b7:59:b2:53:dd:a6:82:a6:58:91:6b:
8b:13:87:c4:d9:57:ac:fe:4d:6d:1d:9a:31:94:b1:
5b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:65:38:2D:07:FE:12:FC:0B:19:7E:94:41:E1:5E:D7:CC:1B:A6:DE
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198889.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:3c00::/40
Signature Algorithm: sha256WithRSAEncryption
5e:19:3d:91:a5:58:b2:6f:2c:e6:e9:c9:d6:5e:69:63:5a:40:
81:dc:38:14:8d:6d:a1:7f:a4:53:ce:07:1e:3f:d2:5a:4a:ef:
47:50:bb:8e:a5:6e:9f:12:23:02:6e:dd:46:14:53:4f:dd:3a:
48:61:bf:b5:00:ee:6f:1a:80:85:6a:e2:29:67:02:09:4a:fd:
a9:42:10:34:72:2d:9d:0b:d3:5b:fd:de:70:6b:fa:c1:19:5a:
ad:ae:44:65:32:c0:fa:31:45:ae:04:d9:ac:08:7a:56:4b:4c:
ef:82:57:3b:8d:5f:25:45:0d:7b:f1:59:31:b4:0e:dd:1a:f0:
63:e3:4f:81:36:cc:f4:1c:50:77:a9:d0:67:58:b7:ad:9b:79:
23:4b:c5:8c:63:69:68:37:ca:18:1d:41:5b:0a:55:ae:e2:58:
08:84:46:05:f0:c8:92:67:db:57:14:98:da:a7:f5:6f:b2:0e:
a3:6b:23:78:47:44:37:0a:7f:f0:93:71:09:16:fc:ae:1f:23:
83:24:02:c4:31:ed:e3:f1:72:ea:5c:58:60:8e:f3:56:70:3c:
4b:65:60:71:72:7b:15:0d:bf:f5:2f:44:29:b8:a3:d1:e8:e5:
30:6a:e4:1d:da:31:6b:e2:79:3b:75:45:c0:0e:5e:95:73:af:
9f:d2:ee:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:03:21 2025 by rpki-client