Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS53667.roa
File: AS53667.roa (raw, json)
Hash identifier: 6zDFYFpi57qPmzbqgErWq4TvPlZWevUz+j4WCNySvWY=
Subject key identifier: 9E:CC:B5:28:AF:BC:EA:35:64:B6:0A:84:D5:B7:3A:F3:AC:EA:2D:A8
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 216F1631A8780ADEB5D6C22E2B964DC0C6B5CF6C
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS53667.roa
Signing time: Fri 08 Mar 2024 14:58:19 +0000
ROA not before: Fri 08 Mar 2024 14:53:19 +0000
ROA not after: Fri 07 Mar 2025 14:58:19 +0000
asID: 53667
IP address blocks: 2a05:dfc1:2500::/40 maxlen: 48
2a05:dfc1:2a00::/40 maxlen: 48
2a05:dfc1:3000::/40 maxlen: 48
2a05:dfc1:3100::/40 maxlen: 48
2a05:dfc1:3a00::/40 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Aug 2024 11:12:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:6f:16:31:a8:78:0a:de:b5:d6:c2:2e:2b:96:4d:c0:c6:b5:cf:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Mar 8 14:53:19 2024 GMT
Not After : Mar 7 14:58:19 2025 GMT
Subject: CN=9ECCB528AFBCEA3564B60A84D5B73AF3ACEA2DA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ba:d4:c4:41:03:0d:54:3b:59:ab:33:0d:95:
8e:c3:67:70:e6:d6:55:9b:df:64:55:37:5c:71:98:
26:be:2a:38:88:b8:a8:c6:57:ca:1b:ef:8a:94:d2:
33:98:d7:33:62:06:44:fa:e8:35:6c:da:09:f6:17:
af:63:f9:3e:2b:85:ba:63:ab:d5:41:70:7c:96:6d:
30:97:53:ca:d6:e3:28:52:99:9d:1c:60:95:c9:e2:
f4:54:1b:39:40:03:cd:15:8b:a3:82:da:10:b5:03:
29:bc:ac:30:5e:80:55:d1:41:0f:a0:34:43:d5:71:
23:66:69:b5:91:ae:a1:5f:6e:dc:89:c8:4a:21:6c:
88:84:3d:d6:88:0a:8a:e6:68:a1:c0:6e:d7:96:b5:
11:72:03:04:2a:c2:47:57:be:69:ab:13:28:f0:8a:
6d:f8:f3:29:bd:00:55:51:62:e0:57:70:03:21:6b:
a1:d3:59:70:07:70:2e:25:2a:1a:5f:9e:3e:25:2c:
bf:4a:1b:4b:cd:d1:ba:f8:73:e2:92:52:f2:a5:17:
70:ed:30:f8:cf:b0:63:45:f6:6a:56:9a:c8:ca:97:
b8:c3:ac:ed:c9:b1:41:0b:ff:a3:70:46:09:d8:7a:
56:c7:0b:5a:56:eb:d0:10:f4:9c:9c:4a:cd:69:e0:
02:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:CC:B5:28:AF:BC:EA:35:64:B6:0A:84:D5:B7:3A:F3:AC:EA:2D:A8
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS53667.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc1:2500::/40
2a05:dfc1:2a00::/40
2a05:dfc1:3000::/39
2a05:dfc1:3a00::/40
Signature Algorithm: sha256WithRSAEncryption
87:64:7d:10:2e:7e:97:11:e8:03:60:91:74:77:51:f6:19:a0:
3f:8d:76:92:66:c1:09:d9:5d:99:d3:52:85:44:cc:aa:6d:7a:
21:56:d6:30:77:67:31:4f:7c:60:4a:ed:be:9a:ec:dd:a2:5c:
2d:ca:5a:76:f0:66:f8:26:1a:f8:16:26:dd:af:61:37:f5:8f:
c9:ae:38:0d:bc:54:53:39:4c:4a:c1:ed:b6:63:f1:40:bd:8b:
fc:bb:34:9a:9f:fc:d9:fd:96:8d:34:f2:ef:a0:08:09:c6:eb:
73:7f:96:59:c6:4b:82:67:b2:32:91:44:ee:af:32:01:77:26:
7d:bc:59:f3:9f:63:bd:36:b7:36:1a:e1:6b:e7:55:65:27:bf:
97:09:89:3b:70:79:6a:a9:0a:a5:95:a5:28:8e:f3:32:95:c1:
3c:f5:55:ea:df:b6:d0:ca:ba:3a:00:e7:e9:33:c1:bd:06:5e:
96:80:a9:c5:b2:0b:38:a0:4b:7d:f0:74:8f:ad:f2:72:c0:78:
e7:89:ac:e4:98:5c:6c:cf:67:bd:81:2d:e2:72:53:43:f2:84:
cd:c4:f7:2b:0b:2e:7c:eb:d8:61:18:dd:a5:e5:30:e7:a1:c0:
16:0e:36:44:b8:06:11:dd:b7:e5:d7:99:c9:9f:02:77:2f:f0:
32:66:3b:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 1 13:20:17 2024 by rpki-client on console-ams.rpki-client.org