Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/1/326131323a646434373a646230303a3a2f34302d3430203d3e203530353830.roa
File: 326131323a646434373a646230303a3a2f34302d3430203d3e203530353830.roa (raw, json)
Hash identifier: jsDTfA69TK52tglKhdrU5Tn3B2gze2iItfCd1xHxWNM=
Subject key identifier: 35:E0:7C:DD:D4:01:17:E5:5B:39:2E:CE:60:4B:AF:17:48:2F:7D:62
Certificate issuer: /CN=12962028A181E758B8990A6CA4F04A998A69311E
Certificate serial: 7DD35FA8D84A6352C0EAB0DEB463E1E02C2CBDA2
Authority key identifier: 12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
Authority info access: rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject info access: rsync://dev.tw/rpki/AS945/1/326131323a646434373a646230303a3a2f34302d3430203d3e203530353830.roa
Signing time: Fri 11 Oct 2024 10:04:24 +0000
ROA not before: Fri 11 Oct 2024 09:59:24 +0000
ROA not after: Fri 10 Oct 2025 10:04:24 +0000
asID: 50580
IP address blocks: 2a12:dd47:db00::/40 maxlen: 40
Validation: OK
Signature path: rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.mft
rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Oct 2024 12:47:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:d3:5f:a8:d8:4a:63:52:c0:ea:b0:de:b4:63:e1:e0:2c:2c:bd:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12962028A181E758B8990A6CA4F04A998A69311E
Validity
Not Before: Oct 11 09:59:24 2024 GMT
Not After : Oct 10 10:04:24 2025 GMT
Subject: CN=35E07CDDD40117E55B392ECE604BAF17482F7D62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8c:39:f6:cc:8f:6a:5c:21:36:ae:a1:91:f4:
a7:7a:f8:8c:d8:17:1c:2c:5e:42:f7:06:97:89:0e:
54:f2:5c:86:a9:40:fa:5a:cf:93:ea:a3:92:b7:e5:
0c:0b:1d:c1:96:07:bc:71:3f:0b:c3:5f:37:8d:f7:
22:94:70:57:77:76:17:4c:78:10:98:b6:4e:36:24:
d6:6a:c1:9d:2a:ab:ce:6d:eb:c3:74:29:6c:12:dc:
22:eb:35:35:4b:e1:0e:5b:16:1e:bb:ea:25:e8:6b:
30:ae:9a:bf:d1:06:56:16:14:73:aa:c1:0f:b2:9a:
0a:78:5c:15:08:56:fe:0b:92:c9:2b:f8:ac:e4:4c:
9c:a5:f9:98:02:08:06:aa:3c:d1:e0:61:8d:be:98:
5c:70:ec:99:0d:8e:c5:15:c9:ae:a0:f3:c5:22:08:
bc:b7:6c:67:9f:40:6b:8f:ba:5a:98:26:bd:77:9b:
1c:65:2f:fc:3c:9c:e3:1b:3f:dc:20:fc:8c:28:37:
fc:ef:d1:21:68:8a:b5:d0:0d:cc:c3:14:39:2e:87:
d6:09:88:43:13:84:a6:e6:9f:46:d9:9b:58:47:44:
f5:7c:6d:93:c1:57:77:79:05:af:e3:d2:64:4e:ac:
21:7b:75:a4:6e:bd:28:0a:84:10:f4:16:e8:5b:81:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E0:7C:DD:D4:01:17:E5:5B:39:2E:CE:60:4B:AF:17:48:2F:7D:62
X509v3 Authority Key Identifier:
keyid:12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/1/326131323a646434373a646230303a3a2f34302d3430203d3e203530353830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:db00::/40
Signature Algorithm: sha256WithRSAEncryption
d1:2d:bc:c5:40:e9:d2:c3:a7:21:29:35:50:3d:df:d5:bb:4f:
0f:d9:fe:c8:cd:1c:0d:b0:81:73:82:97:e8:ff:1b:0e:b5:bb:
74:5b:f5:b6:b7:8e:f6:67:61:2a:5a:25:cb:06:8e:ca:e7:b3:
96:2d:31:aa:f7:dc:88:4e:dd:95:cc:03:b8:dc:62:08:f6:72:
2f:ca:ef:c6:27:d9:18:55:b8:ee:85:7c:6c:f4:68:b2:e5:2e:
78:d9:3e:c3:10:a9:a2:eb:0a:ad:03:e9:ce:80:19:46:e3:27:
cd:78:34:25:a1:a1:bb:77:0f:72:76:1f:0f:23:9b:60:28:59:
66:f1:ab:32:43:41:08:69:cb:18:55:76:14:cb:44:b6:b0:bd:
b5:4a:17:c6:44:4a:d4:8e:56:12:6e:08:29:4c:15:d4:ac:f9:
f9:6a:1e:f6:8a:9b:24:d5:c1:26:f8:8c:43:e3:0a:97:e0:8e:
2b:45:22:16:43:89:dd:35:8b:ed:c8:e6:b3:2e:d5:b2:b8:7d:
59:06:a5:c8:98:bd:e2:0b:fc:1e:a1:23:bd:cb:56:08:96:6c:
83:f0:91:2c:09:44:33:9d:60:99:3c:9f:b0:c8:93:92:6d:05:
d3:5e:94:95:04:b6:ed:e9:2d:11:aa:a6:4d:33:d9:81:f3:98:
5b:6b:6a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 04:38:58 2024 by rpki-client on console-ams.rpki-client.org