Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa
File: AS199094.roa (raw, json)
Hash identifier: FYmNxAVXo2YDHNVSuVv9FtYnHue2E3gvhcDTg1otN9Y=
Subject key identifier: B1:50:B7:46:A0:D8:BC:09:6D:B4:AF:F3:CE:8E:54:23:DC:14:89:20
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 7A3A23EBEE45571E672EC708AFC5216630BF6C14
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa
Signing time: Wed 29 Jan 2025 15:45:44 +0000
ROA not before: Wed 29 Jan 2025 15:40:44 +0000
ROA not after: Wed 28 Jan 2026 15:45:44 +0000
asID: 199094
IP address blocks: 2a05:dfc1:1800::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:3a:23:eb:ee:45:57:1e:67:2e:c7:08:af:c5:21:66:30:bf:6c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Jan 29 15:40:44 2025 GMT
Not After : Jan 28 15:45:44 2026 GMT
Subject: CN=B150B746A0D8BC096DB4AFF3CE8E5423DC148920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:29:8a:17:8b:62:ab:94:d9:11:b5:61:01:47:
eb:75:01:54:bb:09:a8:ec:d4:a6:7b:be:66:ab:7a:
ae:3f:4e:1d:80:bd:2c:d2:cd:84:8a:18:ab:9a:18:
34:5d:85:60:cb:44:f4:32:59:7f:ef:19:14:8e:f1:
85:a4:00:5e:95:f3:0c:74:70:ca:66:23:40:e5:e1:
46:97:ec:f8:e3:df:c3:d6:41:6a:53:84:fd:a7:7b:
0a:d9:7b:e7:d3:0d:9d:28:e8:fb:d0:dd:61:93:83:
2b:2f:23:68:b9:88:a0:78:a3:a6:06:27:61:a0:df:
65:fb:fb:74:c0:15:19:e9:5b:e1:51:ac:a0:89:c0:
2d:7d:6c:59:41:8b:79:62:b0:92:dc:be:e0:af:74:
df:98:9c:32:ea:8c:d8:33:da:b1:6c:8e:81:63:01:
79:7a:20:7e:ac:25:e5:65:af:44:cc:9d:b8:0d:35:
5e:23:c6:a6:51:44:3f:ee:1d:ca:00:2a:19:0b:8d:
80:13:2e:9e:d2:ea:e3:02:90:74:d4:66:3c:ae:5d:
f8:38:25:65:f1:ff:10:1c:02:cb:d5:9b:45:ae:58:
14:a3:da:8c:b5:46:39:14:3c:5d:76:d7:78:9b:33:
9f:c8:61:3c:f3:37:57:4b:d1:d3:fb:83:23:4e:b8:
02:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:50:B7:46:A0:D8:BC:09:6D:B4:AF:F3:CE:8E:54:23:DC:14:89:20
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199094.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:1800::/40
Signature Algorithm: sha256WithRSAEncryption
1a:12:43:f2:50:69:e3:85:6c:9a:34:96:a5:e7:8e:75:04:83:
f5:52:61:0f:46:e4:8c:00:75:94:d6:cc:49:ba:17:83:de:e6:
e8:d9:4e:58:64:1f:f4:10:c2:94:36:a8:07:6d:3a:bc:b8:a6:
66:9f:21:c4:fb:32:f3:99:9c:15:f4:7b:6b:2f:27:34:e3:9d:
96:6d:cd:51:f2:c3:71:7c:a8:2f:e7:cc:3b:62:ac:85:c1:b0:
14:f7:54:3e:3a:e4:a2:3b:31:ac:bd:31:e7:d3:dd:20:16:ef:
15:12:b0:08:7f:f5:25:cb:20:04:b2:2a:f6:76:75:d5:2a:de:
16:ad:71:67:d8:51:ce:ae:6d:74:8d:85:23:79:fc:30:72:1e:
36:af:0a:97:ba:fa:89:22:86:71:3e:c5:28:84:7a:d9:d8:ea:
63:73:74:ad:dd:3f:9a:79:1b:06:fb:8e:90:8b:57:51:0d:a3:
6f:e3:ac:b7:e0:74:03:a0:50:49:fb:c9:49:2d:42:ff:be:d1:
41:92:2f:00:67:7c:99:6d:f2:51:f0:06:58:51:41:e8:5c:dc:
dc:51:76:0f:ee:36:f3:04:88:f7:56:fa:ca:cd:07:40:67:d7:
84:36:51:8f:25:8a:9b:f2:16:50:91:b8:7a:28:72:f5:fc:37:
b6:a7:76:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:03:25 2025 by rpki-client