Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23470.roa
File: AS23470.roa (raw, json)
Hash identifier: m5iX91eMFHZDXs+vYIicdN26p5BhBwYu96JsPIprDJw=
Subject key identifier: D9:8A:3A:2B:B3:BB:B0:73:1D:DC:F4:E2:A2:E6:1E:84:DC:A7:A9:F5
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 37D7A874062C3955E6FF848D368A41F9DBBE0985
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23470.roa
Signing time: Fri 15 Nov 2024 01:45:31 +0000
ROA not before: Fri 15 Nov 2024 01:40:31 +0000
ROA not after: Fri 14 Nov 2025 01:45:31 +0000
asID: 23470
IP address blocks: 2a05:dfc1:5800::/40 maxlen: 48
2a0a:6040:3900::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:d7:a8:74:06:2c:39:55:e6:ff:84:8d:36:8a:41:f9:db:be:09:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Nov 15 01:40:31 2024 GMT
Not After : Nov 14 01:45:31 2025 GMT
Subject: CN=D98A3A2BB3BBB0731DDCF4E2A2E61E84DCA7A9F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:5e:8c:90:4b:a5:7e:70:10:c3:a0:b7:fb:96:
b2:51:28:98:0a:c5:71:38:85:fe:29:56:a6:20:9f:
a8:41:01:2f:b2:d2:be:f1:aa:f3:a1:8c:9d:1d:8a:
aa:c2:4d:00:3c:53:4f:07:67:ab:55:e5:b1:94:e3:
a5:97:43:ae:b7:0c:67:f0:f7:55:f2:59:7a:8b:0f:
2b:53:f7:71:13:7c:6b:e5:a9:b0:73:2d:5f:31:43:
ce:3e:86:e4:c0:5a:17:70:56:8f:f6:d1:28:e4:c5:
3c:db:0c:fb:34:43:d2:dd:a3:e1:bb:8f:5a:2a:66:
b9:31:b6:08:9e:34:89:02:e1:c0:bf:b7:ad:38:08:
3b:5f:03:b5:e9:00:5f:16:41:b6:85:ef:0d:8e:3d:
97:38:7e:62:c1:4f:b7:35:91:c9:2c:83:e3:c4:ef:
ad:8d:25:34:32:3b:46:3b:de:60:5f:2c:89:db:f1:
22:c8:a4:0b:a3:b4:85:79:3c:34:4b:62:9c:68:ad:
a3:42:fb:fc:d1:b8:09:61:cb:35:5c:7d:bf:f0:db:
c2:f4:dd:b5:96:99:ad:dd:c0:17:2b:e5:3f:5b:f2:
de:20:59:60:79:b3:ce:26:02:85:b4:d9:ad:8e:c3:
a7:f5:95:44:b3:4f:62:e4:54:f0:90:ce:8f:8f:f7:
28:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:8A:3A:2B:B3:BB:B0:73:1D:DC:F4:E2:A2:E6:1E:84:DC:A7:A9:F5
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS23470.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:5800::/40
2a0a:6040:3900::/40
Signature Algorithm: sha256WithRSAEncryption
53:9b:bb:85:c7:b6:5e:59:81:0c:4d:d3:27:dc:f3:88:60:ba:
dc:8f:a7:b0:76:e0:a8:c3:f8:12:00:22:24:7a:1e:46:c1:b9:
af:06:92:0b:92:57:9a:91:65:c8:60:1b:9d:3e:2b:e7:58:16:
e2:72:ae:78:d6:4c:74:e8:9f:63:eb:97:06:ed:07:e3:8a:99:
08:51:07:b8:42:d4:f7:47:cc:d1:5a:05:e9:d0:ae:6b:39:28:
3c:2b:01:1c:71:8d:c7:7e:08:31:4c:02:1d:09:c2:14:c8:2d:
17:37:11:04:77:a7:09:5d:dd:2c:0c:e4:0e:81:9d:b0:8f:f3:
47:75:c2:37:fa:c0:3a:80:30:7e:32:fd:c4:01:d3:5d:17:43:
eb:ba:8c:72:4c:e9:dd:00:91:d0:0d:83:e0:e2:b6:93:60:c8:
cd:a0:e8:b8:14:9a:cb:12:54:61:f7:66:a2:ec:82:76:3f:4f:
4d:ba:77:b3:e1:d0:89:94:36:18:6d:ae:53:06:f8:c9:c3:f1:
84:ba:07:51:8b:c3:f0:d6:33:d1:99:a6:e0:9a:18:58:06:ef:
14:49:46:e5:23:03:e2:bb:db:20:ce:08:15:48:c5:59:e1:c7:
07:1b:d8:d0:0f:c9:8b:c9:f1:8a:83:02:37:2e:77:b5:39:c6:
d0:d2:41:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:03:24 2025 by rpki-client