Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207941.roa
File: AS207941.roa (raw, json)
Hash identifier: bFIdFci1pBjTfEeFRwyDt0I0n/5tdW2B0v0gQgab+28=
Subject key identifier: B4:3F:20:14:FE:49:8C:85:B9:24:44:4C:B5:AB:4A:38:AD:51:B4:3D
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 74CF72217B41A3CFE5FFA559EFE07482C4E55E7E
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207941.roa
Signing time: Tue 18 Mar 2025 11:45:56 +0000
ROA not before: Tue 18 Mar 2025 11:40:56 +0000
ROA not after: Tue 17 Mar 2026 11:45:56 +0000
asID: 207941
IP address blocks: 2a05:dfc1:4800::/40 maxlen: 48
2a05:dfc1:4900::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:cf:72:21:7b:41:a3:cf:e5:ff:a5:59:ef:e0:74:82:c4:e5:5e:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Mar 18 11:40:56 2025 GMT
Not After : Mar 17 11:45:56 2026 GMT
Subject: CN=B43F2014FE498C85B924444CB5AB4A38AD51B43D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:14:ac:ee:22:bb:0f:1a:41:1e:38:f9:53:ad:
fe:a3:f2:70:76:41:65:98:fc:2e:63:0f:52:de:54:
7c:c3:69:95:88:cc:47:2b:c9:80:3c:f0:5e:23:fd:
cb:4f:48:02:4d:00:70:21:62:20:10:4e:1d:39:32:
3d:d0:fc:36:4d:b9:27:84:76:a7:92:0d:a3:12:be:
5c:28:87:c1:10:88:43:d6:c1:12:f5:56:bc:52:87:
c3:06:80:06:94:27:be:7c:1c:03:3c:e6:e7:8a:88:
d0:cb:e8:b4:54:52:2b:21:d7:73:49:91:ec:97:c5:
c4:cb:68:1a:6a:bc:70:d5:82:60:a9:e4:69:48:e9:
3b:ea:dc:fc:3a:7c:0e:dc:03:07:c9:34:78:a3:93:
aa:cf:68:cd:ef:e2:5d:f1:ab:7d:93:2a:87:1a:ed:
75:fc:ad:97:15:b7:35:bd:84:38:b9:10:22:df:d0:
44:fb:75:e0:aa:02:2b:c3:7e:e7:e6:de:09:38:10:
7d:8d:b3:fa:ae:38:24:40:9e:74:f3:bc:85:30:81:
1f:f4:7b:30:2d:a8:34:29:a6:08:48:05:c3:5e:12:
28:c8:e3:cb:00:76:92:c6:95:ad:36:eb:9d:b5:8b:
e5:6f:be:59:84:5f:2f:0e:b1:f8:22:ef:10:f5:76:
7d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3F:20:14:FE:49:8C:85:B9:24:44:4C:B5:AB:4A:38:AD:51:B4:3D
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS207941.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:4800::/39
Signature Algorithm: sha256WithRSAEncryption
1d:7d:45:3e:1e:1c:30:82:b5:fb:ff:79:c1:a2:7a:9a:f5:bb:
45:d3:2f:4d:56:e2:28:22:94:20:39:69:a4:52:a1:c0:0b:9d:
a9:dc:6c:0f:b4:51:fd:ba:da:fa:da:9e:bf:23:60:9d:4b:35:
d9:44:33:4f:49:8f:d8:c7:0b:8a:87:f7:47:c9:be:27:fa:98:
f5:9b:01:c4:ef:fe:27:9e:68:a9:21:ad:6d:71:2d:1a:a1:b4:
a8:38:b6:f1:e9:70:98:aa:7b:9e:c8:9b:0a:b0:51:72:3a:1b:
9c:72:ad:73:5f:3e:b6:5f:62:a1:f1:47:7a:bc:34:b5:81:85:
97:bc:96:f2:46:e5:a7:f8:75:75:b3:14:1f:81:05:6e:10:da:
f8:19:76:5c:21:d6:eb:9b:c5:1c:22:61:72:76:ab:95:36:27:
08:9f:42:fc:3e:87:57:f9:db:64:43:f8:ec:02:88:23:a4:38:
9a:59:5d:40:42:39:4a:64:9c:ce:0b:58:5a:4c:0a:ef:5d:ed:
b9:62:f9:2e:1e:67:1d:84:8a:bf:e8:62:ba:c7:16:26:2c:6a:
36:48:6f:ae:db:18:84:6e:bd:99:8d:3a:26:cb:1c:61:d7:f3:
b6:41:ac:37:c0:16:fc:ea:c1:11:76:e9:f8:17:b2:2a:b3:4c:
85:93:1d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:59:09 2025 by rpki-client