Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS20473.roa
File: AS20473.roa (raw, json)
Hash identifier: Zr4jWaWHyXOYCLvO7S/xj2Rp8B6xgHGPJ00Kf0xJlR4=
Subject key identifier: 74:F1:E5:4C:27:E7:90:83:75:B6:85:E5:F9:FF:E6:84:FE:D2:A2:58
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 39F4BA25F9FC24411B5977FFEF17343172AB2E5B
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS20473.roa
Signing time: Sat 27 Jul 2024 08:11:20 +0000
ROA not before: Sat 27 Jul 2024 08:06:20 +0000
ROA not after: Sat 26 Jul 2025 08:11:20 +0000
asID: 20473
IP address blocks: 2a05:dfc1:3900::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Aug 2024 11:13:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:f4:ba:25:f9:fc:24:41:1b:59:77:ff:ef:17:34:31:72:ab:2e:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Jul 27 08:06:20 2024 GMT
Not After : Jul 26 08:11:20 2025 GMT
Subject: CN=74F1E54C27E7908375B685E5F9FFE684FED2A258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:41:a8:3a:c6:c8:50:1d:43:13:8b:89:d9:73:
6b:56:7f:64:c7:ac:99:c9:83:3c:c5:23:68:c8:03:
c2:23:54:e5:a4:d1:b0:7a:51:15:ae:61:05:01:b0:
9d:25:7c:8c:37:b0:41:0c:49:67:29:fe:db:0c:b9:
7d:11:d5:e8:a8:a3:4b:d4:3a:19:59:58:a4:67:53:
ba:73:93:38:45:76:1b:b2:9d:8f:13:b7:2b:cd:65:
cf:3c:05:19:ab:72:3f:d5:00:d4:eb:aa:30:71:ec:
40:01:48:48:b5:f5:92:35:be:5d:f6:fd:f0:f5:55:
ec:e0:69:6e:76:49:10:43:06:23:4b:3f:93:8b:6d:
cb:5d:cf:bc:10:6d:0e:a7:1e:33:c7:53:6b:6a:44:
c5:b8:5b:bc:06:ff:42:a5:ce:58:d7:bc:dd:15:63:
2a:bb:d7:65:b0:9c:d8:e0:44:92:bf:d5:e7:0f:5e:
be:10:a7:c4:dd:c8:11:58:e7:ca:f0:11:f4:c9:8e:
87:73:b6:e6:b4:91:d4:7d:6a:be:53:76:23:69:8d:
31:1b:fc:cf:2d:02:38:7a:e3:5e:f4:ac:70:24:a5:
a9:45:b4:20:21:14:bc:d0:c6:73:26:6f:82:87:50:
b0:01:06:8d:85:c5:02:7e:03:0d:66:a2:cc:2a:8b:
8c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:F1:E5:4C:27:E7:90:83:75:B6:85:E5:F9:FF:E6:84:FE:D2:A2:58
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS20473.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:3900::/40
Signature Algorithm: sha256WithRSAEncryption
3c:c8:3e:c3:34:03:38:0a:09:e0:32:cc:53:4b:b6:54:d4:2d:
af:e0:77:20:40:f9:87:b8:66:8e:58:27:9e:d6:e5:c7:f6:da:
e0:47:a9:4d:cd:96:8c:87:c5:a6:8d:24:68:bf:3b:99:9d:d2:
15:e8:b1:27:c2:10:7d:29:9c:93:67:26:6e:9c:19:2e:21:0a:
7e:4c:1a:41:7d:3d:ad:19:5c:88:af:74:3a:bd:71:d1:fd:c7:
f1:80:f1:d3:66:44:fc:a5:a1:5c:d4:ee:31:b5:56:1f:eb:bc:
af:5c:9b:b8:78:73:e6:39:8c:4d:76:bf:e0:2f:08:dc:28:0f:
e2:b3:dc:36:fb:07:6b:e2:11:fb:c5:88:94:3c:b8:56:36:7c:
5b:18:90:87:12:fa:90:48:3f:30:81:93:36:98:1a:83:0e:1c:
97:44:07:a4:f0:8e:84:be:10:93:c0:65:13:22:ae:ff:2f:a3:
d9:54:1a:ae:13:93:fa:67:6c:c4:fa:f0:1f:2d:ea:ce:c8:25:
6b:2f:39:30:1a:97:cf:f7:a7:c2:20:a0:7b:67:72:96:79:47:
09:f1:18:69:56:05:5d:98:46:cd:5a:51:2e:c5:49:0a:e0:45:
e8:f1:fd:bc:6b:80:fa:7b:d3:16:aa:3c:50:79:72:41:ca:04:
fd:14:b7:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 13:20:17 2024 by rpki-client on console-ams.rpki-client.org