Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a356532303a3a2f34342d3434203d3e20313938393534.roa
File: 326131323a646434373a356532303a3a2f34342d3434203d3e20313938393534.roa (raw, json)
Hash identifier: I7k+/k2spKDWGInvExp6QGzUuQ1VuLj47UgjfKNMy5A=
Subject key identifier: DB:7F:40:DA:84:9E:07:7D:6F:44:26:96:AD:B4:FF:05:01:8A:AB:58
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 295831923EEF48B37E5E3F2CBA5C9B4609FB28F3
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a356532303a3a2f34342d3434203d3e20313938393534.roa
Signing time: Tue 17 Oct 2023 16:13:25 +0000
ROA not before: Tue 17 Oct 2023 16:08:25 +0000
ROA not after: Tue 15 Oct 2024 16:13:25 +0000
asID: 198954
IP address blocks: 2a12:dd47:5e20::/44 maxlen: 44
Validation: Failed, certificate revoked on Mon 29 Jan 2024 02:55:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:58:31:92:3e:ef:48:b3:7e:5e:3f:2c:ba:5c:9b:46:09:fb:28:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:25 2023 GMT
Not After : Oct 15 16:13:25 2024 GMT
Subject: CN=DB7F40DA849E077D6F442696ADB4FF05018AAB58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6c:54:b7:16:9e:2c:e0:46:97:13:cc:55:6b:
46:e3:c8:56:94:5f:20:c5:14:84:91:4b:e4:8f:f1:
9c:3c:14:5f:14:47:ba:ea:a2:8e:a2:1e:b7:20:d3:
d8:f2:e2:55:5e:8b:48:3c:8b:11:dc:8b:f1:81:c7:
cd:a7:09:44:70:c3:73:24:ed:c0:0f:7e:48:98:40:
75:40:03:f8:82:94:da:81:b7:98:a6:30:d6:1a:23:
c5:10:65:b0:9d:d4:ea:dc:e1:3f:55:a7:85:65:43:
a6:c0:2c:d6:78:6e:16:d4:be:52:c1:ec:6e:9e:68:
3f:28:e0:16:5f:39:3b:f1:d3:f3:6e:58:9f:81:42:
b0:e9:63:78:31:a0:2d:b5:6e:6f:5a:22:a0:6e:95:
dd:93:fd:3a:d0:97:37:73:94:2b:f1:c0:4f:25:3b:
43:b6:55:ff:40:5b:b0:73:10:6b:d7:cd:24:f3:b8:
ca:fa:2d:bf:7e:8c:24:91:57:86:cf:5d:3a:3d:c8:
69:6e:5f:15:60:a0:7c:06:a6:db:59:0f:ea:1c:91:
f0:90:3f:19:d8:cf:7c:46:f1:64:37:14:55:5f:f7:
d9:15:b0:ed:fb:0c:98:de:5f:f1:28:2c:d0:ae:f8:
5c:ce:a6:df:a1:5a:19:b5:f4:d3:06:2a:f8:4b:f3:
95:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7F:40:DA:84:9E:07:7D:6F:44:26:96:AD:B4:FF:05:01:8A:AB:58
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a356532303a3a2f34342d3434203d3e20313938393534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:5e20::/44
Signature Algorithm: sha256WithRSAEncryption
cf:fd:a8:c5:22:ef:eb:ae:4f:8e:d8:ad:21:15:cb:6d:da:e6:
ae:b1:9a:8b:ad:12:53:7f:52:66:64:37:b9:b5:72:bd:09:27:
b1:51:60:14:f7:9b:4f:73:36:a7:8d:1a:26:c9:97:de:28:21:
75:37:56:55:1f:ed:94:b1:25:59:d1:4e:fe:08:64:2c:6c:e7:
c6:57:8c:4e:13:84:5b:84:e8:89:93:39:1d:8f:4b:80:f5:51:
f3:5a:a2:41:da:04:d0:ab:7d:ae:5e:e7:af:bb:47:92:1c:09:
5d:09:aa:26:97:ac:20:bb:63:f5:b3:63:94:83:89:56:e4:bd:
2f:b6:8f:58:53:13:15:6f:e1:f6:ed:70:60:30:3e:40:0f:4e:
40:66:3d:4f:d8:b3:1f:c9:2e:10:09:d0:0a:d4:71:dd:8c:26:
fd:9f:18:95:8d:62:07:a2:93:95:14:f5:40:d7:53:c1:0e:f9:
9f:31:d2:a4:d6:2a:b0:6f:68:04:b6:b0:e8:3d:97:61:d2:35:
ad:0c:6d:15:cd:48:ce:a6:80:c1:5b:68:b0:2b:08:54:fd:1d:
50:c4:74:c6:89:fa:f6:24:c3:ef:46:9c:8e:e4:a1:bf:2c:dc:
75:09:32:a1:55:d3:30:a6:3f:ac:19:00:53:09:af:53:8d:25:
43:0e:ac:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 29 04:08:54 2024 by rpki-client on console-fra.rpki-client.org