Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198946.roa
File: AS198946.roa (raw, json)
Hash identifier: i4F2s+I3w4w80suJ+mCgYncoWsdHtzzw/JzfDPg0aCk=
Subject key identifier: 71:B1:8F:9B:78:9E:2D:D8:41:36:08:69:11:91:C8:55:57:06:EF:A0
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 63934A6A0243D68E8D90A829F757150250322339
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198946.roa
Signing time: Thu 13 Feb 2025 10:45:51 +0000
ROA not before: Thu 13 Feb 2025 10:40:51 +0000
ROA not after: Thu 12 Feb 2026 10:45:51 +0000
asID: 198946
IP address blocks: 2a05:dfc1:3300::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:93:4a:6a:02:43:d6:8e:8d:90:a8:29:f7:57:15:02:50:32:23:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Feb 13 10:40:51 2025 GMT
Not After : Feb 12 10:45:51 2026 GMT
Subject: CN=71B18F9B789E2DD8413608691191C8555706EFA0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6b:22:fa:ba:40:0b:2c:00:ba:d4:31:60:b5:
a3:0d:7c:2b:46:dc:33:65:16:23:25:03:cd:67:d6:
17:2f:2c:c0:ab:5e:af:96:07:b8:46:c4:0b:4c:93:
83:28:52:39:b8:23:9b:07:2f:34:55:cf:81:0b:87:
18:c7:1f:1a:0c:b3:b2:00:da:54:b2:b5:5d:33:f1:
30:45:2a:fa:c3:e3:55:30:a5:ca:2c:83:be:12:e8:
04:08:55:75:d1:b1:31:23:55:eb:f7:a4:40:5b:11:
a1:25:56:ce:00:f7:12:51:d7:9b:d9:1e:01:cf:b0:
66:49:20:13:cf:4d:38:4c:3d:35:fd:aa:cd:74:ad:
68:4a:b6:6d:20:1c:71:23:85:d7:22:93:d6:90:b4:
9c:43:c0:dd:7e:dc:9e:33:3c:44:de:c9:91:e1:76:
22:07:52:4b:62:76:fe:20:aa:ae:f8:d8:09:23:e2:
b1:33:4a:dd:63:00:2e:09:fe:1b:82:83:e0:59:be:
c9:1c:43:e1:f3:2e:08:1e:c3:eb:23:2c:55:58:78:
f5:d2:96:ed:08:e4:ad:4e:49:d9:10:18:b9:af:e7:
17:1d:e2:83:97:70:ac:ce:ea:dc:d5:c4:9b:e7:af:
33:d5:90:87:64:07:8e:22:90:a1:c2:2c:8f:fa:e0:
76:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B1:8F:9B:78:9E:2D:D8:41:36:08:69:11:91:C8:55:57:06:EF:A0
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS198946.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:3300::/40
Signature Algorithm: sha256WithRSAEncryption
26:2c:bd:05:8f:77:a7:9c:76:ec:16:1e:3a:7e:b0:a7:f0:8b:
7d:93:29:40:57:f7:8c:40:89:1d:ce:a1:2c:65:97:63:2d:39:
0f:5e:bb:20:ee:f7:ff:3e:15:b0:fb:11:07:05:31:b5:62:72:
ca:9b:ea:5d:e8:01:16:b3:9d:8f:cd:90:0e:e8:68:09:91:d7:
79:18:16:b5:7d:a4:ad:17:9e:50:04:46:9e:03:c7:9d:e7:79:
a3:9c:c1:29:b8:fb:88:08:b8:79:80:6d:1a:b1:f4:98:b5:71:
e7:1d:7c:4c:64:4e:ef:71:10:e6:20:39:e3:86:e3:18:06:1f:
46:85:e6:82:c4:74:ac:ed:99:a4:ad:37:59:e1:92:0c:00:65:
50:7e:f0:86:a3:6b:0a:ef:ad:3e:ea:f6:34:9d:89:cc:3d:28:
57:a3:11:7d:b7:73:4d:48:2d:f3:8e:a6:81:2e:a9:24:1c:e3:
7a:15:b0:f2:cf:dc:28:38:cb:4a:43:70:04:a1:98:c3:b3:33:
fd:94:83:74:15:a0:cb:a9:91:c3:74:47:b2:82:b8:a0:45:0e:
5d:ba:c7:02:ad:bd:86:f4:2c:c8:08:c2:b4:a6:ed:79:aa:d6:
0c:df:ba:fc:07:f4:60:12:52:80:10:b5:be:7d:f4:35:a6:45:
24:24:48:4a
-----BEGIN CERTIFICATE-----
MIIE6jCCA9KgAwIBAgIUY5NKagJD1o6NkKgp91cVAlAyIzkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3
NkQ4NUFGOTAeFw0yNTAyMTMxMDQwNTFaFw0yNjAyMTIxMDQ1NTFaMDMxMTAvBgNV
BAMTKDcxQjE4RjlCNzg5RTJERDg0MTM2MDg2OTExOTFDODU1NTcwNkVGQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ayL6ukALLAC61DFgtaMNfCtG
3DNlFiMlA81n1hcvLMCrXq+WB7hGxAtMk4MoUjm4I5sHLzRVz4ELhxjHHxoMs7IA
2lSytV0z8TBFKvrD41Uwpcosg74S6AQIVXXRsTEjVev3pEBbEaElVs4A9xJR15vZ
HgHPsGZJIBPPTThMPTX9qs10rWhKtm0gHHEjhdcik9aQtJxDwN1+3J4zPETeyZHh
diIHUktidv4gqq742Akj4rEzSt1jAC4J/huCg+BZvskcQ+HzLggew+sjLFVYePXS
lu0I5K1OSdkQGLmv5xcd4oOXcKzO6tzVxJvnrzPVkIdkB44ikKHCLI/64HYRAgMB
AAGjggH0MIIB8DAdBgNVHQ4EFgQUcbGPm3ieLdhBNghpEZHIVVcG76AwHwYDVR0j
BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud
HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v
Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3
NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5
bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2
M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD
MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y
c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w
L0FTMTk4OTQ2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF
BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwTMwDQYJKoZIhvcNAQELBQADggEBACYs
vQWPd6ecduwWHjp+sKfwi32TKUBX94xAiR3OoSxll2MtOQ9euyDu9/8+FbD7EQcF
MbVicsqb6l3oARaznY/NkA7oaAmR13kYFrV9pK0XnlAERp4Dx53neaOcwSm4+4gI
uHmAbRqx9Ji1cecdfExkTu9xEOYgOeOG4xgGH0aF5oLEdKztmaStN1nhkgwAZVB+
8IajawrvrT7q9jSdicw9KFejEX23c01ILfOOpoEuqSQc43oVsPLP3Cg4y0pDcASh
mMOzM/2Ug3QVoMupkcN0R7KCuKBFDl26xwKtvYb0LMgIwrSm7Xmq1gzfuvwH9GAS
UoAQtb599DWmRSQkSEo=
-----END CERTIFICATE-----
Generated at Tue Apr 8 14:16:43 2025 by rpki-client