Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa
File: AS199840.roa (raw, json)
Hash identifier: hgKzT442zdmWMo2Ajh5YyJtVkvwVwa+ds5CTpWvbeaI=
Subject key identifier: F9:75:6C:9A:05:B9:27:C4:D0:89:52:51:89:FC:2A:73:9F:11:2C:A7
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 4A7236D0D3B4F011BB48DD0F7A2E11724DC7EEE8
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa
Signing time: Sun 06 Oct 2024 04:45:20 +0000
ROA not before: Sun 06 Oct 2024 04:40:20 +0000
ROA not after: Sun 05 Oct 2025 04:45:20 +0000
asID: 199840
IP address blocks: 2a0a:6040:6800::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:72:36:d0:d3:b4:f0:11:bb:48:dd:0f:7a:2e:11:72:4d:c7:ee:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Oct 6 04:40:20 2024 GMT
Not After : Oct 5 04:45:20 2025 GMT
Subject: CN=F9756C9A05B927C4D089525189FC2A739F112CA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f0:7d:92:1b:ad:50:dc:58:4d:de:11:51:bd:
0a:e6:38:bf:62:18:a1:9e:2a:78:1b:d9:ff:bc:a3:
f1:64:e7:61:ae:f8:5c:e9:5f:85:f6:f2:eb:07:e0:
fc:36:59:55:50:de:2d:33:ce:66:8b:8b:b5:c9:9b:
16:c3:f1:7c:e6:b6:4f:48:50:6b:36:82:fd:30:3a:
0f:bd:5b:24:01:46:fd:24:ec:11:b5:d2:3f:fa:76:
fb:83:6c:6e:6a:93:bc:4a:cf:12:55:9d:5f:ed:7e:
11:55:b2:74:cd:8d:b4:b0:4c:f3:d4:be:c8:32:08:
b1:6f:4f:2b:3f:de:6e:c0:a5:9c:ea:00:4f:05:a5:
a8:1f:7f:9e:2c:04:06:57:f6:f9:e8:b1:ff:6f:d9:
4e:3e:88:96:ce:39:bf:ab:56:61:45:ba:9a:a3:66:
23:45:23:74:9f:1d:2c:b8:ff:26:5a:63:f3:d5:71:
22:6e:2f:61:ec:e2:1d:e1:7d:4b:13:5b:3c:66:b4:
22:f0:8e:da:d6:39:95:38:6d:ef:b3:94:08:58:ee:
53:cb:ec:f1:7c:98:f0:ab:4b:15:47:71:97:cf:a7:
20:09:18:3e:a9:13:b8:bb:a5:88:52:99:e3:f6:e4:
2e:1c:3d:c2:58:c6:bb:dc:43:fc:f2:4d:22:ab:d7:
9e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:75:6C:9A:05:B9:27:C4:D0:89:52:51:89:FC:2A:73:9F:11:2C:A7
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS199840.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:6800::/40
Signature Algorithm: sha256WithRSAEncryption
7b:98:75:79:f4:29:e0:a9:3b:1c:48:25:67:dc:fc:33:7d:9a:
26:cd:88:35:b0:12:1c:6a:d6:6d:2e:06:f3:99:6a:bb:7c:d6:
e8:a6:a6:b7:50:dd:6e:51:4c:3b:28:c0:0c:91:1b:4d:44:ac:
8b:79:07:96:90:07:21:2a:42:f1:86:2b:8f:f8:55:36:9f:fb:
3d:9a:b5:40:85:d6:ee:a6:b4:eb:41:7a:50:80:f9:9a:c8:4d:
ed:ad:d6:94:db:f6:21:d9:ed:a4:5f:76:d8:12:8d:71:0d:f5:
c1:6f:1c:c5:22:35:13:39:7d:5a:96:c3:0c:d6:be:39:82:50:
a3:b7:48:20:32:e0:47:85:fd:2a:05:09:c3:91:ab:b5:5d:1f:
e4:4a:cb:c8:a6:6b:94:f3:05:37:dd:5a:6e:5d:e4:03:f0:37:
31:a2:81:cd:c6:ce:b8:10:6d:3b:64:8a:03:b8:fd:f0:73:8f:
eb:d0:d7:e5:ee:00:43:cb:18:d9:c0:c5:9c:b1:74:62:96:69:
dd:fb:1e:d1:ce:8e:15:35:cf:46:93:68:39:ca:4f:cc:cc:b7:
85:96:3f:7f:c9:6a:82:18:b3:94:b1:49:08:2a:36:af:cc:74:
52:16:17:14:98:3a:e8:84:f5:c1:3b:20:04:97:28:33:d4:7c:
1e:cf:ff:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:59:59 2025 by rpki-client