Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS395649.roa
File: AS395649.roa (raw, json)
Hash identifier: mYqTzTdGbvKVpR/xe+VRyc3ohJC/Wm/VjHexKWEXav8=
Subject key identifier: DE:C7:D2:56:64:E4:71:74:4D:7C:79:DB:F5:E4:C1:F2:56:24:8A:D4
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 78E13A6905A5D1365A7A31C8BD43AEEBC5E9D24D
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS395649.roa
Signing time: Thu 08 Feb 2024 08:03:59 +0000
ROA not before: Thu 08 Feb 2024 07:58:59 +0000
ROA not after: Thu 06 Feb 2025 08:03:59 +0000
asID: 395649
IP address blocks: 2a05:dfc1:8600::/40 maxlen: 48
Validation: Failed, certificate revoked on Sat 27 Jul 2024 08:10:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:e1:3a:69:05:a5:d1:36:5a:7a:31:c8:bd:43:ae:eb:c5:e9:d2:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Feb 8 07:58:59 2024 GMT
Not After : Feb 6 08:03:59 2025 GMT
Subject: CN=DEC7D25664E471744D7C79DBF5E4C1F256248AD4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f3:75:61:e1:53:62:99:52:70:6b:63:59:50:
70:3b:29:a5:14:24:60:c7:76:76:eb:0d:c3:32:19:
30:bf:33:2e:0c:7a:1d:1c:a0:81:db:bc:d9:ac:9b:
01:de:92:eb:b5:fa:e8:a3:4a:5e:28:a0:02:a5:99:
bf:03:df:0b:bd:f4:59:df:cb:d6:d3:9d:2d:ea:57:
6f:fa:05:84:d3:06:98:eb:28:0b:68:d5:1a:5e:8a:
8f:3e:9a:36:4e:1e:ee:d1:ba:91:53:3f:7c:39:5d:
ce:0d:88:8f:ec:96:1b:55:ba:e8:ab:ef:32:fc:a6:
ca:97:e9:a6:63:e3:77:63:43:71:6d:3b:0d:79:e6:
04:c8:1a:49:0e:68:fe:b8:e0:7c:9a:88:54:fc:fb:
20:b3:3a:a7:7e:53:22:ca:29:0c:24:33:5f:61:a6:
4a:67:ea:f5:eb:8a:bd:b6:be:77:7c:84:30:b0:24:
a4:1b:28:c8:e2:3c:36:a5:9a:bc:2e:86:2f:1e:98:
fa:6d:59:80:4c:47:39:7c:ee:21:3d:cf:d3:fb:11:
4d:66:c5:e0:b4:05:5c:1c:51:78:58:5e:e4:7a:8a:
bc:10:3a:49:ad:85:c4:6d:af:4b:8f:1e:31:e4:5b:
11:46:60:8f:bb:ca:9c:bf:d6:ff:21:01:ac:b6:21:
05:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:C7:D2:56:64:E4:71:74:4D:7C:79:DB:F5:E4:C1:F2:56:24:8A:D4
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS395649.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:8600::/40
Signature Algorithm: sha256WithRSAEncryption
bf:13:61:c6:78:32:bd:c5:6b:fa:43:5b:54:d8:4e:0b:d1:0e:
53:92:df:db:6a:f0:20:11:a3:e2:8d:03:9b:39:05:31:cb:ef:
f4:df:6f:ca:6d:51:70:6c:92:06:62:5a:09:0e:18:6d:42:53:
43:07:39:a3:4a:7b:d7:2e:4f:b4:e8:47:2e:4c:8a:e3:08:2a:
c0:78:a4:68:cc:4d:85:73:9c:c2:39:08:9b:0a:de:8b:8f:0f:
ce:d9:27:d5:e7:14:b4:3a:ad:d3:ce:70:57:e1:98:35:ab:f3:
bd:bf:54:7d:e2:36:c8:f3:56:4c:92:42:e3:9f:a6:22:87:bf:
07:34:fe:04:bc:b9:5b:12:f7:60:39:ae:c0:a9:8a:2d:fb:e8:
a2:d4:29:f4:5b:ec:01:ce:ba:c2:bb:ca:8e:9c:75:f5:f6:0a:
b7:a8:c7:96:ff:77:a4:63:39:48:0e:8d:d6:55:9f:6c:b3:97:
2c:49:b5:3b:d7:15:18:9d:63:13:f3:f5:db:36:60:34:08:0d:
9c:a0:95:7b:72:35:3c:06:95:9b:d1:5b:94:f8:d6:64:10:c5:
11:8f:e1:0d:27:84:60:be:6a:47:6e:0b:05:ff:cc:fe:c0:d2:
99:5d:fb:1e:ed:b6:f1:53:36:96:b7:d6:7d:c7:b0:d4:7a:c2:
15:d9:82:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 27 09:48:36 2024 by rpki-client on console-fra.rpki-client.org