Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/1/326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa
File: 326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa (raw, json)
Hash identifier: Rscn3ony5q5gcadqZaimeOgTuw7S+dc/d7N+BzF3UBo=
Subject key identifier: EF:CC:B0:E5:CA:E8:37:91:FF:4C:1D:EF:F6:6F:24:55:92:9E:51:D7
Certificate issuer: /CN=12962028A181E758B8990A6CA4F04A998A69311E
Certificate serial: 4DED1388CBEA9168C63920481B887601EFBC9B59
Authority key identifier: 12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
Authority info access: rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject info access: rsync://dev.tw/rpki/AS945/1/326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa
Signing time: Fri 11 Oct 2024 10:04:26 +0000
ROA not before: Fri 11 Oct 2024 09:59:26 +0000
ROA not after: Fri 10 Oct 2025 10:04:26 +0000
asID: 210445
IP address blocks: 2a12:dd47:804d::/48 maxlen: 48
Validation: OK
Signature path: rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.mft
rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 03:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:ed:13:88:cb:ea:91:68:c6:39:20:48:1b:88:76:01:ef:bc:9b:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12962028A181E758B8990A6CA4F04A998A69311E
Validity
Not Before: Oct 11 09:59:26 2024 GMT
Not After : Oct 10 10:04:26 2025 GMT
Subject: CN=EFCCB0E5CAE83791FF4C1DEFF66F2455929E51D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:83:61:d7:47:ac:f3:5c:af:f9:8f:4d:09:ab:
e5:c4:4e:5f:a3:c5:7b:95:b2:92:31:f9:f9:bb:53:
a5:9c:95:50:69:9d:92:89:c0:7e:f1:d3:65:44:23:
70:88:f9:ab:e0:2a:09:b7:62:52:d7:57:86:50:b6:
03:41:c4:f3:dc:9a:63:b6:4d:0f:37:dc:bc:bb:77:
2e:9c:c3:07:80:69:7f:b0:19:a6:f4:f0:50:62:05:
04:9c:cb:fc:9c:f8:a7:ce:14:3a:ba:ad:57:d5:fd:
d3:47:cc:14:f4:a3:6e:97:ee:99:49:5f:1b:d7:d6:
4e:26:be:b2:fd:af:bb:13:41:f2:6d:8b:ac:16:56:
bb:f2:22:1e:59:6e:c0:b5:71:65:82:67:2b:6a:8c:
ac:3a:a9:d0:90:0f:d6:ee:bb:67:d4:43:42:4c:06:
ab:99:38:72:3e:15:bc:a3:1f:e0:1c:b1:7c:e1:70:
f1:7e:c3:f8:c3:7b:c9:d3:a7:aa:d4:4c:75:4a:af:
92:68:21:36:b8:6f:c5:40:0f:06:5c:6b:9a:5b:fa:
1c:4d:65:49:13:bf:24:99:39:03:7e:15:c4:94:8b:
b9:c8:95:b5:ef:d6:48:08:dc:80:cc:65:03:e6:37:
c3:f0:75:d2:1e:a9:5f:bf:a0:66:c3:80:99:25:9a:
da:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CC:B0:E5:CA:E8:37:91:FF:4C:1D:EF:F6:6F:24:55:92:9E:51:D7
X509v3 Authority Key Identifier:
keyid:12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/1/326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:804d::/48
Signature Algorithm: sha256WithRSAEncryption
07:d4:34:99:bc:4e:7d:a4:dc:84:fb:3c:b4:fc:8f:e5:10:79:
ec:12:e5:81:d2:26:bb:b4:8d:49:eb:df:ae:a2:f3:ce:1d:8f:
f6:77:61:d2:da:18:2d:f9:aa:a0:70:14:cf:14:6c:79:cb:56:
b8:87:e9:26:f0:5b:4e:c0:2e:12:5f:fe:f3:0e:b9:82:68:50:
54:d9:59:f9:14:f1:b5:48:b6:a4:7b:88:e9:f1:db:73:a9:25:
6e:3e:4a:ce:76:02:f1:b6:80:40:c5:8d:eb:ef:a4:be:5c:2d:
b2:75:ab:57:c0:55:42:6c:7e:d5:1f:df:1c:d9:ca:0f:14:6f:
f9:3c:56:d0:55:a7:50:85:ec:59:ad:21:2d:be:c8:bb:da:5a:
40:12:f9:d7:d4:39:2a:8f:49:e7:a8:b3:28:5c:1f:df:6d:41:
f6:39:a8:3d:7e:57:a6:58:eb:ce:eb:e7:10:19:e6:4a:32:ff:
29:a6:5d:cc:90:40:b2:df:33:08:d4:85:00:ca:a2:e6:d7:c3:
20:8d:d7:02:48:ed:1a:20:3f:ba:eb:83:01:8d:27:35:fa:13:
1b:3d:c1:de:22:31:a7:c2:e6:14:90:34:c7:83:77:97:06:c5:
8b:50:c0:d6:80:d2:00:af:d7:49:15:b6:cf:5f:94:f3:8a:c4:
84:f2:85:97
-----BEGIN CERTIFICATE-----
MIIEyDCCA7CgAwIBAgIUTe0TiMvqkWjGOSBIG4h2Ae+8m1kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTI5NjIwMjhBMTgxRTc1OEI4OTkwQTZDQTRGMDRBOTk4
QTY5MzExRTAeFw0yNDEwMTEwOTU5MjZaFw0yNTEwMTAxMDA0MjZaMDMxMTAvBgNV
BAMTKEVGQ0NCMEU1Q0FFODM3OTFGRjRDMURFRkY2NkYyNDU1OTI5RTUxRDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsg2HXR6zzXK/5j00Jq+XETl+j
xXuVspIx+fm7U6WclVBpnZKJwH7x02VEI3CI+avgKgm3YlLXV4ZQtgNBxPPcmmO2
TQ833Ly7dy6cwweAaX+wGab08FBiBQScy/yc+KfOFDq6rVfV/dNHzBT0o26X7plJ
XxvX1k4mvrL9r7sTQfJti6wWVrvyIh5ZbsC1cWWCZytqjKw6qdCQD9buu2fUQ0JM
BquZOHI+FbyjH+AcsXzhcPF+w/jDe8nTp6rUTHVKr5JoITa4b8VADwZca5pb+hxN
ZUkTvySZOQN+FcSUi7nIlbXv1kgI3IDMZQPmN8PwddIeqV+/oGbDgJklmtrDAgMB
AAGjggHSMIIBzjAdBgNVHQ4EFgQU78yw5croN5H/TB3v9m8kVZKeUdcwHwYDVR0j
BBgwFoAUEpYgKKGB51i4mQpspPBKmYppMR4wDgYDVR0PAQH/BAQDAgeAMFkGA1Ud
HwRSMFAwTqBMoEqGSHJzeW5jOi8vZGV2LnR3L3Jwa2kvQVM5NDUvMS8xMjk2MjAy
OEExODFFNzU4Qjg5OTBBNkNBNEYwNEE5OThBNjkzMTFFLmNybDBlBggrBgEFBQcB
AQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vZGV2LnR3L3Jwa2kvQXVndXN0LzUv
MTI5NjIwMjhBMTgxRTc1OEI4OTkwQTZDQTRGMDRBOTk4QTY5MzExRS5jZXIwfAYI
KwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL2Rldi50dy9ycGtpL0FT
OTQ1LzEvMzI2MTMxMzIzYTY0NjQzNDM3M2EzODMwMzQ2NDNhM2EyZjM0MzgyZDM0
MzgyMDNkM2UyMDMyMzEzMDM0MzQzNS5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACoS3UeATTANBgkqhkiG
9w0BAQsFAAOCAQEAB9Q0mbxOfaTchPs8tPyP5RB57BLlgdImu7SNSevfrqLzzh2P
9ndh0toYLfmqoHAUzxRsectWuIfpJvBbTsAuEl/+8w65gmhQVNlZ+RTxtUi2pHuI
6fHbc6klbj5KznYC8baAQMWN6++kvlwtsnWrV8BVQmx+1R/fHNnKDxRv+TxW0FWn
UIXsWa0hLb7Iu9paQBL519Q5Ko9J56izKFwf321B9jmoPX5XpljrzuvnEBnmSjL/
KaZdzJBAst8zCNSFAMqi5tfDII3XAkjtGiA/uuuDAY0nNfoTGz3B3iIxp8LmFJA0
x4N3lwbFi1DA1oDSAK/XSRW2z1+U84rEhPKFlw==
-----END CERTIFICATE-----
Generated at Thu Nov 21 13:37:44 2024 by rpki-client on console-ams.rpki-client.org