Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS36791.roa
File: AS36791.roa (raw, json)
Hash identifier: XoPPMw7cxq67rzJEGWPdI/ua8ed4eg91fF35EJsYAuM=
Subject key identifier: 66:A5:FF:50:DA:16:AF:82:81:DD:21:C4:D8:56:7B:2D:F8:F2:E9:2E
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 1A99F0F54587BDCED2E39E479D7BFC2AE299A36F
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS36791.roa
Signing time: Tue 28 Jan 2025 13:45:42 +0000
ROA not before: Tue 28 Jan 2025 13:40:42 +0000
ROA not after: Tue 27 Jan 2026 13:45:42 +0000
asID: 36791
IP address blocks: 2a05:dfc1:1e00::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:99:f0:f5:45:87:bd:ce:d2:e3:9e:47:9d:7b:fc:2a:e2:99:a3:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Jan 28 13:40:42 2025 GMT
Not After : Jan 27 13:45:42 2026 GMT
Subject: CN=66A5FF50DA16AF8281DD21C4D8567B2DF8F2E92E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1e:41:32:9c:ee:5e:e5:95:4d:ec:0b:8b:49:
2a:a2:df:49:f8:15:56:32:9f:b3:ba:ed:34:67:9e:
ac:1d:c9:3d:a4:50:46:b1:1c:0f:2b:e3:81:96:6e:
2e:76:eb:27:25:de:65:8a:59:ef:51:ad:80:6d:e2:
cc:9b:fc:06:6a:03:cc:4a:e6:19:c3:7b:8a:69:fc:
da:54:fb:4f:d1:8a:7a:3d:10:44:50:8e:0d:ed:8f:
24:7d:68:36:0f:74:63:c8:a1:32:49:48:a1:6a:ac:
84:e2:50:4c:6d:76:86:c3:cd:56:80:fa:98:6c:f9:
5e:c1:5b:44:8f:99:19:5b:88:8c:94:47:fd:b0:51:
7f:92:3e:c3:b8:cf:16:bf:86:e0:27:63:ed:db:0e:
95:af:0b:a5:a2:e6:65:c2:82:e9:a3:60:6f:28:b2:
b9:cf:d1:67:fa:18:e1:1f:03:0b:4a:aa:c8:86:36:
2b:0f:fd:60:3a:04:46:d3:7b:54:8d:d6:f2:0b:e0:
23:3a:f1:7e:5a:7f:49:a7:d4:2f:2b:f5:9d:92:cd:
53:1d:3d:36:95:ed:0e:b9:de:41:83:43:51:41:1d:
4f:9b:a6:79:bc:1e:f1:58:b3:85:17:38:b1:f6:43:
99:16:65:d7:1f:84:77:e7:9f:d6:b1:5a:da:2f:04:
cd:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:A5:FF:50:DA:16:AF:82:81:DD:21:C4:D8:56:7B:2D:F8:F2:E9:2E
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS36791.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:1e00::/40
Signature Algorithm: sha256WithRSAEncryption
5b:7e:db:88:23:73:9a:8f:d0:e7:7b:6f:92:e1:f8:02:32:f9:
33:02:92:3a:c4:17:fa:0c:cf:01:7d:a8:7d:34:02:1a:13:ef:
c5:98:eb:52:67:33:a8:4e:cc:58:27:c2:51:2a:b3:71:a8:5f:
98:36:a3:5d:ed:64:16:36:38:31:c2:e7:bd:88:54:cc:38:df:
ce:16:92:0e:c4:92:ce:10:ea:1b:6c:2d:b3:bf:43:a1:f4:20:
b1:92:49:cd:da:77:f1:92:e9:8a:79:22:7a:37:c3:48:76:b5:
ad:63:ff:60:77:33:a3:e9:9a:a9:5d:8b:70:38:9d:b7:e7:93:
45:7e:e9:d9:5c:a1:d2:c5:51:66:f3:57:48:08:31:87:32:e1:
8a:cf:9a:59:75:00:d9:d1:05:06:60:fd:44:85:0c:5a:68:48:
3c:0d:b8:69:34:29:24:b0:bd:07:5c:8f:cb:cf:07:c7:f1:69:
18:00:00:92:4d:fc:b1:49:a9:14:ed:27:2d:78:a5:84:3d:ae:
26:d8:2e:39:5d:2b:a0:a9:a5:de:21:81:d6:d2:d4:e6:a4:c9:
4d:4e:e8:21:44:dd:87:5a:24:71:ab:c3:7e:1d:42:c1:94:4f:
b5:5b:ee:1c:ba:b9:46:67:05:7f:ff:89:25:b1:82:cf:84:98:
e9:ca:c7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 17:01:06 2025 by rpki-client