Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa
File: AS203470.roa (raw, json)
Hash identifier: gS5CefbfWV5PxbGsNil4ul9HHXqoZgSTPa82RA0Uzc8=
Subject key identifier: FD:11:03:62:E1:FA:40:C5:48:BD:FB:60:04:94:CD:50:4A:B0:B4:B9
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 18755F83CFA03413619E3130C30157DA9DFA0089
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa
Signing time: Thu 11 Jul 2024 23:00:51 +0000
ROA not before: Thu 11 Jul 2024 22:55:51 +0000
ROA not after: Thu 10 Jul 2025 23:00:51 +0000
asID: 203470
IP address blocks: 2a05:dfc1:8400::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:75:5f:83:cf:a0:34:13:61:9e:31:30:c3:01:57:da:9d:fa:00:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Jul 11 22:55:51 2024 GMT
Not After : Jul 10 23:00:51 2025 GMT
Subject: CN=FD110362E1FA40C548BDFB600494CD504AB0B4B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:dc:08:c2:cb:5e:6f:a7:45:87:3b:2b:82:86:
65:23:01:c5:69:0d:c0:c1:a9:89:45:13:ad:e5:27:
de:96:6b:20:4c:0f:67:12:23:d1:54:14:23:99:67:
ef:b7:8d:cc:ac:42:c0:24:6c:1d:2c:1d:d8:d5:54:
ed:4f:9c:30:b3:b9:f3:98:00:2d:66:a5:ec:6e:aa:
74:3e:1e:3f:2a:27:b9:d1:40:dd:02:9d:a7:ab:88:
10:ec:84:05:2c:36:1b:c8:15:d4:64:89:9b:47:8e:
1f:28:18:14:d3:a1:03:8c:35:db:bd:12:0f:4f:1c:
1b:11:5f:b7:cb:44:2c:b0:c2:53:8c:cd:06:ae:92:
0c:9a:28:bb:20:a7:de:5c:e7:2c:85:44:51:3c:05:
6e:9f:f3:5c:5c:5a:d4:d3:b4:94:2a:2b:b4:27:0c:
97:20:6d:e7:3e:f8:f7:5e:b4:d1:a8:a4:8d:78:7a:
96:fd:45:86:47:90:95:9a:0f:8b:db:c1:c3:d2:7e:
94:5d:d2:cf:a7:40:8b:1b:27:11:7f:1c:04:53:60:
6b:25:6b:32:f7:89:25:20:11:e2:d7:e6:1f:f6:e9:
4c:3b:c3:35:10:a8:61:14:b9:53:ca:91:99:d5:4f:
15:97:85:0f:d0:7e:25:58:c2:38:7f:a2:66:44:2f:
64:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:11:03:62:E1:FA:40:C5:48:BD:FB:60:04:94:CD:50:4A:B0:B4:B9
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS203470.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:8400::/40
Signature Algorithm: sha256WithRSAEncryption
55:9b:a9:ff:42:8f:fd:86:76:5d:5f:69:8d:ef:fa:4a:44:8f:
6b:1d:e1:64:41:9e:97:61:bb:bb:11:8c:d4:72:23:1b:b2:06:
fe:15:45:76:d4:ea:d9:a8:4c:f7:09:f0:5f:5d:83:db:39:a8:
d9:d2:be:01:e8:e3:09:11:82:f5:60:d4:19:f9:46:b8:5c:8f:
51:2e:92:e9:92:11:c5:05:55:c4:31:45:58:40:1f:06:cb:21:
3f:8c:ba:09:8b:ac:6e:88:34:b1:49:ae:19:2b:67:d7:07:34:
c0:00:54:fa:47:0a:91:f0:bb:49:f0:ce:72:3d:0f:9e:bf:bc:
cf:ee:9a:f1:60:28:e6:63:8f:bc:cf:2f:14:11:24:50:3f:d4:
6b:68:0c:98:07:20:c7:18:e3:fd:5e:29:6d:bf:81:bb:06:da:
0b:11:fe:36:96:4b:eb:90:ca:73:66:3a:4f:0f:3a:90:22:7d:
26:64:03:67:5f:de:90:44:d7:a3:74:bb:1f:f8:fd:5d:ec:73:
1a:aa:25:8a:ff:21:8a:4a:aa:36:86:6f:cc:b7:3c:c9:4f:7f:
0f:86:c0:d9:f7:18:c7:33:7f:3a:3a:ff:d9:5a:ab:3b:97:5e:
ab:b1:1e:45:fc:26:2e:52:87:7d:15:be:f0:81:4a:4b:4d:af:
07:13:62:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:00:00 2025 by rpki-client