Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209806.roa
File: AS209806.roa (raw, json)
Hash identifier: kXMt0LwbG0ziMPyCFaY/jGPwJfnsJuLTEV9YcHHd+9o=
Subject key identifier: AB:A7:E1:A2:31:04:01:F5:7B:AC:9F:C4:08:CD:76:D2:00:6A:A7:5B
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 58F9676C399D43101EF67998AFB42EF76A99A4EF
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209806.roa
Signing time: Tue 02 May 2023 10:08:54 +0000
ROA not before: Tue 02 May 2023 10:03:54 +0000
ROA not after: Tue 30 Apr 2024 10:08:54 +0000
asID: 209806
IP address blocks: 2a05:dfc1:1400::/40 maxlen: 48
2a05:dfc1:3f00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:f9:67:6c:39:9d:43:10:1e:f6:79:98:af:b4:2e:f7:6a:99:a4:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: May 2 10:03:54 2023 GMT
Not After : Apr 30 10:08:54 2024 GMT
Subject: CN=ABA7E1A2310401F57BAC9FC408CD76D2006AA75B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:83:b3:d2:65:f8:70:9b:ac:3a:f3:80:01:83:
ed:77:b0:1b:27:40:83:aa:91:76:63:95:9e:6c:41:
62:92:de:84:de:af:0b:27:ea:c9:db:4f:65:37:02:
7b:b2:c9:7d:6b:85:02:27:02:6e:4c:54:fe:c1:b6:
16:76:d7:7c:c4:f7:12:64:d9:66:5a:12:58:ac:2c:
9e:86:4f:6e:5a:9b:60:5b:9e:30:a9:c5:f1:27:7a:
48:f8:c6:77:2e:a1:f8:4d:55:d6:88:88:8a:b4:a6:
f9:6c:3c:60:96:01:3a:b2:3b:3f:dd:a3:a8:a4:8b:
63:18:9a:03:60:02:84:e7:c1:03:12:d5:6c:8c:14:
ed:7a:4b:0e:32:5b:58:c8:c4:5d:02:9a:3b:76:bd:
97:cc:25:5e:07:78:52:86:82:b6:9c:29:51:59:c0:
78:a3:50:6b:d9:97:95:ff:fc:f2:f6:db:d2:a8:39:
48:5e:67:20:d7:27:e9:c8:47:11:48:49:a8:44:4b:
26:30:4f:71:88:3b:7c:71:cd:aa:5a:31:4f:1b:58:
5e:61:34:0c:ef:d1:b0:40:d8:7e:e5:ce:28:3c:ea:
da:54:de:91:da:65:03:66:a3:9b:7e:dd:2d:38:15:
45:c9:fc:f3:d6:de:6e:35:e3:be:ca:61:c0:67:c9:
d5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A7:E1:A2:31:04:01:F5:7B:AC:9F:C4:08:CD:76:D2:00:6A:A7:5B
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS209806.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:1400::/40
2a05:dfc1:3f00::/40
Signature Algorithm: sha256WithRSAEncryption
77:2c:37:7e:2d:40:ab:cf:d2:6b:6d:19:9b:d1:48:be:19:c5:
77:fa:f2:45:4a:52:af:dc:8e:8e:ef:e0:cf:cd:47:2e:7b:4b:
fe:24:71:e1:bd:80:aa:57:e6:e0:19:48:b6:39:85:d1:e3:23:
41:73:25:3e:a6:28:aa:c9:c5:b5:3a:0b:99:6e:8b:e3:cd:32:
e6:84:81:67:66:5b:3f:ff:85:43:74:44:a5:d7:ba:7c:ac:a1:
b9:bb:14:14:7f:73:ce:ae:4e:67:28:80:12:0e:72:68:41:ea:
67:59:15:c0:d9:c2:00:c6:88:fd:0a:7e:6f:46:3f:34:bc:b7:
55:ad:24:4a:4a:f5:2f:a5:ea:b5:df:ca:54:5b:d9:5f:82:f1:
14:37:34:70:66:8a:af:f4:78:00:80:5e:9c:71:fe:9e:ca:c3:
d5:6b:f0:20:d5:c3:1f:b7:e4:ea:43:f4:c4:0b:31:67:5b:ad:
fb:be:27:46:22:e4:16:5a:7c:63:16:55:95:f4:3a:87:a2:2f:
f2:7e:d2:5e:01:b6:30:56:bb:c0:6e:05:1f:c9:0e:36:f7:1f:
47:35:27:40:16:00:e9:b5:01:7b:4e:d7:16:ef:e9:bb:d1:a0:
25:97:7e:7f:0a:bf:48:7b:9b:b1:a2:95:3c:08:ca:af:ee:b8:
37:40:8d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:56 2024 by rpki-client on console-fra.rpki-client.org