Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/1/326131323a646434373a646130303a3a2f34302d3438203d3e20313939363933.roa
File: 326131323a646434373a646130303a3a2f34302d3438203d3e20313939363933.roa (raw, json)
Hash identifier: f5hJJh8D1fdTnoO2OxEaKc7yUIn73GBjHhsm6VpwmFU=
Subject key identifier: 06:BD:30:2E:D6:FC:7A:DE:1A:7E:AD:60:C6:81:5F:76:CA:C4:51:68
Certificate issuer: /CN=12962028A181E758B8990A6CA4F04A998A69311E
Certificate serial: 1514C096EF9BDA88DA39AAF3E0ABDC1C8A70F709
Authority key identifier: 12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
Authority info access: rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject info access: rsync://dev.tw/rpki/AS945/1/326131323a646434373a646130303a3a2f34302d3438203d3e20313939363933.roa
Signing time: Fri 11 Oct 2024 10:04:20 +0000
ROA not before: Fri 11 Oct 2024 09:59:20 +0000
ROA not after: Fri 10 Oct 2025 10:04:20 +0000
asID: 199693
IP address blocks: 2a12:dd47:da00::/40 maxlen: 48
Validation: OK
Signature path: rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.mft
rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 03:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:14:c0:96:ef:9b:da:88:da:39:aa:f3:e0:ab:dc:1c:8a:70:f7:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12962028A181E758B8990A6CA4F04A998A69311E
Validity
Not Before: Oct 11 09:59:20 2024 GMT
Not After : Oct 10 10:04:20 2025 GMT
Subject: CN=06BD302ED6FC7ADE1A7EAD60C6815F76CAC45168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:13:0d:81:0c:d2:76:30:6b:ad:b8:ae:8e:8b:
09:8f:fb:08:dc:96:5b:4f:5b:2b:70:1e:fd:91:45:
64:3d:f7:9c:6a:33:53:a2:de:20:29:47:f2:7a:ed:
cc:bd:61:d5:dd:5b:6b:7e:77:3c:af:5c:27:23:21:
60:b9:01:5a:74:3e:74:29:c8:43:ba:68:11:96:da:
98:ae:6a:25:da:9a:1c:f2:2d:ea:bb:e5:bd:c8:00:
74:9f:3d:bd:d0:17:9f:59:22:85:ed:67:7f:fe:a6:
c8:88:79:4f:1c:80:41:4c:22:e1:f9:c9:04:e6:73:
ce:e6:92:1b:62:5a:26:51:a7:d2:a3:ad:e4:f7:8f:
96:9c:a1:34:c9:ad:5c:eb:2a:c5:9a:e7:95:59:13:
07:25:ce:69:bc:7d:16:c9:c2:79:f5:0f:7c:8b:69:
20:71:27:70:f5:e6:74:3c:81:38:8f:d1:d4:5b:82:
0f:c5:41:18:ca:76:5c:64:12:72:d9:f9:72:94:09:
04:a0:bd:87:88:ca:96:a7:0f:43:94:db:72:77:1c:
c3:91:84:41:03:e6:62:f0:87:da:15:46:d4:c6:6f:
25:9b:8a:46:d4:68:94:50:bd:6f:f4:95:27:5d:85:
a9:9d:18:93:56:c5:a8:08:6e:8a:31:25:d9:b1:c8:
b9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BD:30:2E:D6:FC:7A:DE:1A:7E:AD:60:C6:81:5F:76:CA:C4:51:68
X509v3 Authority Key Identifier:
keyid:12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/1/326131323a646434373a646130303a3a2f34302d3438203d3e20313939363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:da00::/40
Signature Algorithm: sha256WithRSAEncryption
a6:b5:86:88:fd:ad:f6:95:08:fd:44:0c:ae:f4:ef:b6:bc:c2:
c7:9a:fe:98:e1:3b:fa:8d:f9:75:46:73:20:8e:5c:4c:d7:2d:
06:7e:4c:8c:fd:30:c4:9f:11:4f:a8:b2:4e:25:76:5e:1a:74:
50:f9:5a:06:6b:54:3b:95:a4:bf:a5:1b:09:88:2d:3c:fa:6a:
3d:4e:7d:b8:31:1f:bf:58:e0:b1:cb:e1:1f:ca:ea:0f:02:45:
29:52:1f:a4:28:f4:cc:0f:82:a8:f7:ba:c2:79:93:3b:50:c2:
6f:a3:e9:54:6b:c6:a3:7c:32:07:8e:a1:fd:06:ad:5f:75:81:
fa:9e:68:93:f6:b9:49:43:a1:ac:e7:5f:19:53:77:f5:a9:42:
d9:b0:37:ab:4c:b9:f7:88:35:b4:c8:06:2c:8b:35:55:3e:c5:
76:06:5e:87:ce:5d:e4:62:4b:ec:ed:b6:35:a4:f8:21:85:70:
d8:d1:56:70:ba:c2:2b:89:66:d3:a9:82:8e:21:13:d5:b3:e2:
5b:84:11:87:ff:44:0a:da:2f:53:d0:99:dd:bb:0a:2e:14:a2:
db:bf:fd:78:80:75:25:d1:c9:16:ac:15:41:49:29:61:6c:d2:
c5:d6:2d:bc:8b:76:8a:7e:78:da:9c:43:7f:75:a9:12:4d:8b:
a5:0f:35:53
-----BEGIN CERTIFICATE-----
MIIExzCCA6+gAwIBAgIUFRTAlu+b2ojaOarz4KvcHIpw9wkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTI5NjIwMjhBMTgxRTc1OEI4OTkwQTZDQTRGMDRBOTk4
QTY5MzExRTAeFw0yNDEwMTEwOTU5MjBaFw0yNTEwMTAxMDA0MjBaMDMxMTAvBgNV
BAMTKDA2QkQzMDJFRDZGQzdBREUxQTdFQUQ2MEM2ODE1Rjc2Q0FDNDUxNjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD2Ew2BDNJ2MGutuK6OiwmP+wjc
lltPWytwHv2RRWQ995xqM1Oi3iApR/J67cy9YdXdW2t+dzyvXCcjIWC5AVp0PnQp
yEO6aBGW2piuaiXamhzyLeq75b3IAHSfPb3QF59ZIoXtZ3/+psiIeU8cgEFMIuH5
yQTmc87mkhtiWiZRp9KjreT3j5acoTTJrVzrKsWa55VZEwclzmm8fRbJwnn1D3yL
aSBxJ3D15nQ8gTiP0dRbgg/FQRjKdlxkEnLZ+XKUCQSgvYeIypanD0OU23J3HMOR
hEED5mLwh9oVRtTGbyWbikbUaJRQvW/0lSddhamdGJNWxagIbooxJdmxyLn1AgMB
AAGjggHRMIIBzTAdBgNVHQ4EFgQUBr0wLtb8et4afq1gxoFfdsrEUWgwHwYDVR0j
BBgwFoAUEpYgKKGB51i4mQpspPBKmYppMR4wDgYDVR0PAQH/BAQDAgeAMFkGA1Ud
HwRSMFAwTqBMoEqGSHJzeW5jOi8vZGV2LnR3L3Jwa2kvQVM5NDUvMS8xMjk2MjAy
OEExODFFNzU4Qjg5OTBBNkNBNEYwNEE5OThBNjkzMTFFLmNybDBlBggrBgEFBQcB
AQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vZGV2LnR3L3Jwa2kvQXVndXN0LzUv
MTI5NjIwMjhBMTgxRTc1OEI4OTkwQTZDQTRGMDRBOTk4QTY5MzExRS5jZXIwfAYI
KwYBBQUHAQsEcDBuMGwGCCsGAQUFBzALhmByc3luYzovL2Rldi50dy9ycGtpL0FT
OTQ1LzEvMzI2MTMxMzIzYTY0NjQzNDM3M2E2NDYxMzAzMDNhM2EyZjM0MzAyZDM0
MzgyMDNkM2UyMDMxMzkzOTM2MzkzMy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEF
BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACoS3UfaMA0GCSqGSIb3
DQEBCwUAA4IBAQCmtYaI/a32lQj9RAyu9O+2vMLHmv6Y4Tv6jfl1RnMgjlxM1y0G
fkyM/TDEnxFPqLJOJXZeGnRQ+VoGa1Q7laS/pRsJiC08+mo9Tn24MR+/WOCxy+Ef
yuoPAkUpUh+kKPTMD4Ko97rCeZM7UMJvo+lUa8ajfDIHjqH9Bq1fdYH6nmiT9rlJ
Q6Gs518ZU3f1qULZsDerTLn3iDW0yAYsizVVPsV2Bl6Hzl3kYkvs7bY1pPghhXDY
0VZwusIriWbTqYKOIRPVs+JbhBGH/0QK2i9T0JnduwouFKLbv/14gHUl0ckWrBVB
SSlhbNLF1i28i3aKfnjanEN/dakSTYulDzVT
-----END CERTIFICATE-----
Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org