Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/1/326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa
File: 326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa (raw, json)
Hash identifier: O5B35Rgush/3ee+TF2SlTaWBXiGyWIhxlxVtb0Na7+A=
Subject key identifier: 72:40:FE:21:B4:83:12:10:91:67:40:84:F6:6F:3B:DB:29:53:69:5E
Certificate issuer: /CN=12962028A181E758B8990A6CA4F04A998A69311E
Certificate serial: 47AB8A76A993168C5DC07974E691812F269EE750
Authority key identifier: 12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
Authority info access: rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject info access: rsync://dev.tw/rpki/AS945/1/326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa
Signing time: Fri 11 Oct 2024 10:04:24 +0000
ROA not before: Fri 11 Oct 2024 09:59:24 +0000
ROA not after: Fri 10 Oct 2025 10:04:24 +0000
asID: 41732
IP address blocks: 2a12:dd47:5000::/40 maxlen: 48
Validation: OK
Signature path: rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.mft
rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 03:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:ab:8a:76:a9:93:16:8c:5d:c0:79:74:e6:91:81:2f:26:9e:e7:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12962028A181E758B8990A6CA4F04A998A69311E
Validity
Not Before: Oct 11 09:59:24 2024 GMT
Not After : Oct 10 10:04:24 2025 GMT
Subject: CN=7240FE21B483121091674084F66F3BDB2953695E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:51:b9:30:76:d3:fa:59:87:87:e2:bd:aa:14:
97:3b:72:8f:41:f3:3e:94:44:ab:ec:ac:f5:89:ad:
99:6e:b1:49:a9:0e:30:15:80:1c:91:20:2c:da:79:
13:1d:a8:cb:0f:6b:fd:ca:52:66:dc:d7:33:18:26:
d5:df:8b:45:12:5c:6b:5c:ed:c2:89:10:b0:ec:89:
78:79:df:49:d0:58:dd:c4:4c:a5:cd:82:42:50:c9:
90:83:73:ca:f9:30:3a:84:f7:fd:94:4f:b0:40:f3:
36:91:5a:d0:5d:0f:76:99:c9:5f:40:86:34:67:c8:
1f:f7:66:f3:38:e7:d0:4c:66:0a:aa:25:ef:11:e2:
6f:62:43:79:69:f5:9e:19:85:42:61:04:77:af:15:
22:66:c8:a9:62:b2:e3:4d:8a:62:83:1e:87:76:87:
be:3d:b8:63:3d:3f:64:68:0b:4b:39:f7:e5:6e:55:
4b:94:aa:d7:ee:67:a6:4e:c5:bf:83:f5:53:0f:10:
ad:10:52:e6:00:11:66:62:c9:d4:9d:52:27:a2:41:
e0:2d:78:a5:83:4c:9f:5a:d8:b3:52:94:f0:c2:b9:
ec:d4:9f:db:0e:95:75:83:e1:3a:c7:db:d3:4e:2f:
69:7a:4b:5d:1e:b0:2e:37:cf:e5:bf:35:8d:ab:f6:
a4:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:40:FE:21:B4:83:12:10:91:67:40:84:F6:6F:3B:DB:29:53:69:5E
X509v3 Authority Key Identifier:
keyid:12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/1/326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:5000::/40
Signature Algorithm: sha256WithRSAEncryption
b7:58:58:1c:7d:d2:91:88:f0:0c:c7:5e:a2:28:ac:3f:f1:6a:
04:4d:b5:ef:90:2c:93:ad:f8:5a:a4:e3:a5:63:df:db:fe:12:
31:ea:c1:80:8d:a0:c3:8f:d9:a9:88:c4:cd:d7:b5:fb:be:6e:
d0:17:ee:90:67:e4:32:0a:c2:df:97:6f:d2:6d:89:2c:29:3f:
5b:a3:7a:9b:5a:8c:9f:bb:b0:af:36:84:20:55:f5:34:3c:f2:
fd:b7:e4:45:45:c2:23:bb:69:cb:ce:91:24:c4:05:23:de:3a:
09:c9:15:27:a2:33:25:76:3c:e0:1e:08:bc:b9:9c:25:3e:16:
d1:45:7a:bb:b3:a1:d2:11:71:57:47:2d:88:a1:e2:83:ab:f5:
21:c4:e5:4d:bd:00:0f:3c:5a:7a:1a:f2:61:e3:77:79:c0:ed:
f3:32:77:be:15:df:5a:ae:b9:ce:86:1d:61:50:6c:0d:21:00:
29:39:c0:69:3f:19:8f:25:c6:05:b1:c7:a4:5b:1d:da:bf:63:
48:09:26:eb:ab:b9:b2:16:86:ef:00:0d:98:d6:e9:c9:89:0f:
0b:ea:dc:8a:ce:18:eb:e7:0f:d4:67:d8:ce:a4:bc:ab:95:70:
ab:4e:64:0a:57:0a:0e:6a:bb:a9:46:9c:85:f8:b4:62:71:e6:
73:e7:6e:2b
-----BEGIN CERTIFICATE-----
MIIExTCCA62gAwIBAgIUR6uKdqmTFoxdwHl05pGBLyae51AwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTI5NjIwMjhBMTgxRTc1OEI4OTkwQTZDQTRGMDRBOTk4
QTY5MzExRTAeFw0yNDEwMTEwOTU5MjRaFw0yNTEwMTAxMDA0MjRaMDMxMTAvBgNV
BAMTKDcyNDBGRTIxQjQ4MzEyMTA5MTY3NDA4NEY2NkYzQkRCMjk1MzY5NUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEUbkwdtP6WYeH4r2qFJc7co9B
8z6URKvsrPWJrZlusUmpDjAVgByRICzaeRMdqMsPa/3KUmbc1zMYJtXfi0USXGtc
7cKJELDsiXh530nQWN3ETKXNgkJQyZCDc8r5MDqE9/2UT7BA8zaRWtBdD3aZyV9A
hjRnyB/3ZvM459BMZgqqJe8R4m9iQ3lp9Z4ZhUJhBHevFSJmyKlisuNNimKDHod2
h749uGM9P2RoC0s59+VuVUuUqtfuZ6ZOxb+D9VMPEK0QUuYAEWZiydSdUieiQeAt
eKWDTJ9a2LNSlPDCuezUn9sOlXWD4TrH29NOL2l6S10esC43z+W/NY2r9qT1AgMB
AAGjggHPMIIByzAdBgNVHQ4EFgQUckD+IbSDEhCRZ0CE9m872ylTaV4wHwYDVR0j
BBgwFoAUEpYgKKGB51i4mQpspPBKmYppMR4wDgYDVR0PAQH/BAQDAgeAMFkGA1Ud
HwRSMFAwTqBMoEqGSHJzeW5jOi8vZGV2LnR3L3Jwa2kvQVM5NDUvMS8xMjk2MjAy
OEExODFFNzU4Qjg5OTBBNkNBNEYwNEE5OThBNjkzMTFFLmNybDBlBggrBgEFBQcB
AQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vZGV2LnR3L3Jwa2kvQXVndXN0LzUv
MTI5NjIwMjhBMTgxRTc1OEI4OTkwQTZDQTRGMDRBOTk4QTY5MzExRS5jZXIwegYI
KwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL2Rldi50dy9ycGtpL0FT
OTQ1LzEvMzI2MTMxMzIzYTY0NjQzNDM3M2EzNTMwMzAzMDNhM2EyZjM0MzAyZDM0
MzgyMDNkM2UyMDM0MzEzNzMzMzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH
DgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqEt1HUDANBgkqhkiG9w0B
AQsFAAOCAQEAt1hYHH3SkYjwDMdeoiisP/FqBE2175Ask634WqTjpWPf2/4SMerB
gI2gw4/ZqYjEzde1+75u0BfukGfkMgrC35dv0m2JLCk/W6N6m1qMn7uwrzaEIFX1
NDzy/bfkRUXCI7tpy86RJMQFI946CckVJ6IzJXY84B4IvLmcJT4W0UV6u7Oh0hFx
V0ctiKHig6v1IcTlTb0ADzxaehryYeN3ecDt8zJ3vhXfWq65zoYdYVBsDSEAKTnA
aT8ZjyXGBbHHpFsd2r9jSAkm66u5shaG7wANmNbpyYkPC+rcis4Y6+cP1GfYzqS8
q5Vwq05kClcKDmq7qUachfi0YnHmc+duKw==
-----END CERTIFICATE-----
Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org