Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa
File: AS211233.roa (raw, json)
Hash identifier: g/mdzfoKd3fMqcOLdSBdlqjninWRsF+bncRKpoVxHSc=
Subject key identifier: 97:68:B5:81:11:76:81:AC:DD:EC:E3:5F:FF:70:4D:E8:E0:46:F6:05
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 01C81A639147F185FB768703D7A1194FE60F1DED
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa
Signing time: Sun 06 Oct 2024 04:45:15 +0000
ROA not before: Sun 06 Oct 2024 04:40:15 +0000
ROA not after: Sun 05 Oct 2025 04:45:15 +0000
asID: 211233
IP address blocks: 2a0a:6040:8e00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:c8:1a:63:91:47:f1:85:fb:76:87:03:d7:a1:19:4f:e6:0f:1d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Oct 6 04:40:15 2024 GMT
Not After : Oct 5 04:45:15 2025 GMT
Subject: CN=9768B581117681ACDDECE35FFF704DE8E046F605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:42:df:c6:90:6d:4e:a7:26:c1:89:10:6e:f5:
f8:86:fb:cc:83:bf:ca:0d:49:ba:34:f7:2c:c1:b0:
db:d6:71:4e:0e:63:83:2e:04:a2:3e:f0:92:7b:cd:
bf:59:ca:c4:88:cb:b3:f7:f2:33:fd:11:bf:4b:97:
3b:7e:5a:ca:f8:5f:56:59:ea:c0:a5:9b:c8:31:ef:
eb:43:45:2e:1f:98:6f:76:8f:5d:3a:a6:5a:78:c4:
90:2c:63:b7:d9:6e:55:4b:4c:21:97:77:67:ba:38:
cf:59:1c:92:6e:8e:0d:14:1e:e2:d3:2d:ea:31:00:
c6:63:b0:f4:ea:41:ba:b6:16:37:89:fb:4c:ff:27:
b8:29:a8:a5:00:ef:10:26:72:fa:57:1e:28:08:0e:
6c:32:04:02:b5:2c:1d:d1:e0:28:36:b3:6a:52:44:
36:11:15:51:cb:b0:48:ed:8c:af:f9:9e:62:54:05:
66:1f:e6:35:82:f9:be:c8:3a:3a:65:62:11:54:56:
d5:1e:1a:06:6f:8b:d9:08:e9:5a:fc:71:81:81:dc:
7b:eb:74:6d:83:d0:79:49:10:5c:40:ce:8a:be:e3:
56:6e:1b:8e:0b:c3:0a:ba:e6:1e:65:9b:18:ef:b6:
a9:44:a0:51:12:fc:7a:02:b3:c0:75:45:97:26:3c:
ce:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:68:B5:81:11:76:81:AC:DD:EC:E3:5F:FF:70:4D:E8:E0:46:F6:05
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS211233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:8e00::/40
Signature Algorithm: sha256WithRSAEncryption
63:12:f5:56:9f:fd:0a:48:40:c0:47:e1:99:b3:ef:fa:c1:91:
87:ad:de:4b:6f:70:9f:6e:d4:7a:e1:5e:eb:aa:be:2e:32:23:
06:b0:16:a6:ce:d9:85:fd:6f:ef:63:eb:2a:aa:0b:59:7d:8b:
08:94:18:b6:ee:43:54:17:df:a8:f9:8d:cc:d9:25:80:91:2a:
f9:db:5c:f4:5b:6a:9f:b7:f7:54:23:52:68:96:db:39:f4:c3:
d7:4c:3a:54:64:00:c1:f8:33:47:d2:3a:44:dc:f0:e4:66:1a:
7d:84:e3:6f:d4:e3:f5:a9:85:42:26:54:a5:2b:35:f3:47:92:
29:d9:8c:a9:af:10:54:ed:bb:c1:0f:22:15:71:e7:fe:4a:69:
a5:ca:0a:a2:db:fc:27:d4:85:fa:06:19:56:a8:25:c7:6b:5f:
ba:e1:d5:f1:94:bc:d3:18:df:39:06:ff:bf:87:b2:cd:4b:e6:
9b:36:3b:ea:27:cf:c9:35:04:a7:81:f9:47:ae:ca:08:7b:73:
fe:36:6a:85:05:20:73:fa:41:dd:cb:cd:9f:41:2f:cd:a5:55:
94:52:81:fd:72:32:50:02:d2:f0:ce:bd:20:26:8b:7f:43:05:
36:34:52:17:9b:18:13:c3:e2:09:42:41:77:44:e9:ee:a7:20:
d9:0f:19:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:04:48 2025 by rpki-client