Route Origin Authorization
$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS63023.roa
File: AS63023.roa (raw, json)
Hash identifier: khLnpRT7oR6PuHrzZAnBa0wCHYD3bvpPN6YKx+Ry+bw=
Subject key identifier: 38:CF:86:DC:9D:C0:9F:71:B3:4D:C7:2B:CE:51:83:34:B8:8E:CB:95
Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Certificate serial: 4F4B652593C433C249DD96FF3C9B0EE4CBB4402F
Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS63023.roa
Signing time: Fri 24 Mar 2023 05:53:20 +0000
ROA not before: Fri 24 Mar 2023 05:48:20 +0000
ROA not after: Fri 22 Mar 2024 05:53:20 +0000
asID: 63023
IP address blocks: 2a0a:6040:8c00::/40 maxlen: 48
2a0a:6040:9b00::/40 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:4b:65:25:93:c4:33:c2:49:dd:96:ff:3c:9b:0e:e4:cb:b4:40:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9
Validity
Not Before: Mar 24 05:48:20 2023 GMT
Not After : Mar 22 05:53:20 2024 GMT
Subject: CN=38CF86DC9DC09F71B34DC72BCE518334B88ECB95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9d:d0:c7:fa:26:11:ce:91:07:43:74:e9:9e:
9f:36:e5:4c:02:e6:b0:de:16:4a:fc:83:01:63:8a:
4c:47:9f:57:e2:c0:90:a8:a6:02:c9:6a:8d:c6:8f:
c2:fe:7a:0e:85:c8:2f:f9:d0:61:08:b0:6a:78:29:
cb:81:d7:94:7e:ff:00:07:a9:f8:65:d6:4a:2f:89:
56:3c:27:72:8a:c8:26:19:e7:9f:14:f4:dc:12:63:
93:37:8a:a1:79:b2:9d:c1:7e:14:a4:0a:0b:c9:0d:
0d:4f:dd:77:16:4d:79:cc:57:75:8d:e1:ea:2e:bf:
f7:5d:ed:d4:46:f1:71:fa:54:c2:de:b8:79:ea:e0:
b3:6a:4f:b6:f2:c1:87:6b:fe:d2:40:c3:c5:73:3e:
c8:8d:7e:06:49:b1:d1:71:33:77:bb:06:47:8a:91:
2f:c6:9d:6c:32:be:99:4d:ed:29:92:4e:23:df:bf:
36:41:50:34:55:25:be:f0:b1:40:ed:38:a1:d6:ff:
48:fa:08:d1:9b:f0:6f:50:35:33:3b:2b:88:aa:64:
dc:45:0c:27:11:ff:c9:8f:ab:b9:f6:5a:bc:d1:00:
33:ee:b9:2f:f8:ef:b0:5c:04:ea:62:1c:e3:e3:c9:
16:0b:ef:83:29:6a:99:6a:64:34:bb:29:ad:b5:d1:
c1:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CF:86:DC:9D:C0:9F:71:B3:4D:C7:2B:CE:51:83:34:B8:8E:CB:95
X509v3 Authority Key Identifier:
keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer
Subject Information Access:
Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS63023.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:6040:8c00::/40
2a0a:6040:9b00::/40
Signature Algorithm: sha256WithRSAEncryption
17:17:d8:68:f9:5a:65:5e:5d:a0:89:36:15:16:89:38:2f:89:
dc:f4:29:c8:3d:bf:62:df:81:05:60:f4:9c:13:37:ee:d1:6f:
83:db:27:70:10:2f:74:0f:11:0c:a2:9c:27:6c:9d:87:9a:67:
0b:2f:ea:d1:ae:76:8e:2e:d1:4f:50:66:8d:c6:92:10:26:84:
37:fa:d2:0f:11:15:a3:ac:9f:0a:20:e3:03:e3:16:f1:b4:6f:
81:1f:d4:18:51:32:a8:43:1b:8a:82:45:9a:81:f2:57:8b:e6:
a7:94:de:e5:69:4b:9c:e2:c4:4c:21:06:23:34:c8:f4:33:ed:
00:bf:d9:e4:21:05:5e:a3:47:bd:9b:bf:cb:8e:b3:46:da:f8:
23:0a:89:da:5f:0e:e4:73:33:20:55:ac:61:4a:fe:42:c4:88:
27:d4:3c:2d:fc:fe:e7:2d:a8:c3:c9:f3:01:b8:9c:b3:48:8a:
6e:06:6d:14:5a:06:c3:4f:c4:75:e5:e6:7c:ad:eb:95:1c:38:
c2:a9:31:f0:22:59:25:dc:da:e6:4c:da:c7:18:1c:eb:49:3e:
ab:df:e1:0a:e3:e4:e5:12:e6:d7:50:9c:8a:31:eb:f8:32:6d:
87:c7:a3:cb:ee:b1:77:be:21:27:89:15:6c:78:de:11:e1:d4:
6b:67:a0:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:56 2024 by rpki-client on console-fra.rpki-client.org