Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa
File: AS199825.roa (raw, json)
Hash identifier: lMpNhvyWiEt7o/TSNy6HbW3yWv+zaVe/fZAg69Y5ccY=
Subject key identifier: 21:2F:E5:99:5E:60:DC:12:4F:67:30:1A:3C:77:FE:30:E8:3B:D7:EF
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 3EBD026FCD87B5017532D244A0F723F925C120E4
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa
Signing time: Sun 06 Oct 2024 04:45:02 +0000
ROA not before: Sun 06 Oct 2024 04:40:02 +0000
ROA not after: Sun 05 Oct 2025 04:45:02 +0000
asID: 199825
IP address blocks: 2a0a:6040:6700::/40 maxlen: 48
Validation: OK
Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 20:36:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:bd:02:6f:cd:87:b5:01:75:32:d2:44:a0:f7:23:f9:25:c1:20:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Oct 6 04:40:02 2024 GMT
Not After : Oct 5 04:45:02 2025 GMT
Subject: CN=212FE5995E60DC124F67301A3C77FE30E83BD7EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:df:4e:34:56:9f:91:89:14:04:5e:6f:b7:d8:
ff:50:a4:01:fb:41:67:45:9f:3c:16:44:97:c3:5d:
a8:c7:14:bc:ad:55:2b:3e:65:21:1b:79:f4:5c:e7:
5c:86:06:40:79:61:51:9b:ca:0e:74:2c:e9:f5:51:
9d:73:1a:58:43:ff:47:12:9a:94:f8:ba:5f:d8:5d:
7c:4f:e9:89:cc:bd:29:f8:ab:4c:68:85:25:57:8d:
c4:cf:a9:5b:b8:b8:1e:0e:5a:15:81:ac:e0:c8:df:
8b:57:aa:f8:fa:38:60:6c:5e:53:24:89:81:50:ba:
6d:97:10:5f:a2:ba:94:d1:b4:31:31:6d:12:1e:9c:
3d:ff:1a:a2:6d:44:e7:7b:96:3c:54:97:24:a7:8c:
b5:7b:47:41:6c:9c:c0:27:35:e3:4e:15:7d:1d:8b:
1d:de:14:22:2c:63:b7:7a:be:10:2d:d9:05:c5:7f:
3d:e0:ff:8b:87:c8:ed:fd:da:a8:c8:fa:e6:ce:da:
fe:4a:64:0e:1a:b6:69:e5:7a:76:f5:02:a1:8b:23:
7d:d8:cc:16:b7:4b:e3:56:ab:53:87:d9:f8:0d:c2:
39:e1:f5:32:29:dc:15:1d:d7:49:2e:1b:59:8b:2c:
af:b3:3a:32:72:25:cd:9a:c4:c4:5f:cb:4f:de:c5:
5e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:2F:E5:99:5E:60:DC:12:4F:67:30:1A:3C:77:FE:30:E8:3B:D7:EF
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199825.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:6700::/40
Signature Algorithm: sha256WithRSAEncryption
2c:f6:e2:b9:b3:d1:c9:7c:a1:84:70:55:6c:22:45:4a:c5:6d:
54:ab:cf:bf:91:3e:df:34:63:83:b6:bd:49:b2:80:7d:82:c5:
f1:fe:09:52:db:61:28:bb:d8:d8:06:b8:e3:d1:77:f0:f0:d5:
11:a4:5e:30:9f:b4:74:38:e0:b0:e8:64:44:44:5c:75:a2:c5:
73:c1:3d:21:e7:28:5c:84:75:24:da:fe:f7:3f:9f:90:2d:71:
9f:21:a2:f8:22:a3:97:f2:7e:ca:20:b8:95:e7:52:5e:64:bd:
2e:7a:fa:e2:18:c0:bc:b9:d6:8a:4c:8f:58:11:c0:c3:13:44:
c2:db:1c:bd:31:48:c2:16:a7:d4:fd:f2:a2:ac:51:03:72:11:
03:f5:f2:6d:78:8d:13:28:3e:07:fc:15:3d:44:70:b1:b2:e2:
ed:f9:09:80:5a:ad:b6:5f:d0:7e:2f:25:b8:e6:df:01:18:ef:
99:13:57:49:32:65:c6:4d:d2:ef:03:2a:c3:85:a9:e0:03:68:
d5:39:f9:12:23:de:85:a5:9d:8c:bc:d1:3c:7c:53:d2:aa:95:
4f:65:1e:4a:32:ae:3f:80:2f:df:e7:c5:8e:40:de:05:36:61:
0a:6f:8f:19:ae:f8:09:04:e2:79:59:0f:95:81:1c:32:3e:84:
53:01:44:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 08:24:30 2025 by rpki-client