Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/1/326131323a646434373a666330303a3a2f33382d3338203d3e20323030383237.roa
File: 326131323a646434373a666330303a3a2f33382d3338203d3e20323030383237.roa (raw, json)
Hash identifier: UPgb6Ma1dQS1nXjg+6AJF85a2nLsZj2XEqZLmxaWsNA=
Subject key identifier: F6:C5:7C:B2:8E:B1:5B:2D:E3:A7:43:32:3B:05:27:9E:A0:D9:0A:34
Certificate issuer: /CN=12962028A181E758B8990A6CA4F04A998A69311E
Certificate serial: 670A2140427E3A746E093D07AA62282188D62F71
Authority key identifier: 12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
Authority info access: rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject info access: rsync://dev.tw/rpki/AS945/1/326131323a646434373a666330303a3a2f33382d3338203d3e20323030383237.roa
Signing time: Fri 11 Oct 2024 10:04:13 +0000
ROA not before: Fri 11 Oct 2024 09:59:13 +0000
ROA not after: Fri 10 Oct 2025 10:04:13 +0000
asID: 200827
IP address blocks: 2a12:dd47:fc00::/38 maxlen: 38
Validation: OK
Signature path: rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.mft
rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Nov 2024 03:48:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:0a:21:40:42:7e:3a:74:6e:09:3d:07:aa:62:28:21:88:d6:2f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12962028A181E758B8990A6CA4F04A998A69311E
Validity
Not Before: Oct 11 09:59:13 2024 GMT
Not After : Oct 10 10:04:13 2025 GMT
Subject: CN=F6C57CB28EB15B2DE3A743323B05279EA0D90A34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:68:0c:b9:8b:04:30:d7:85:a7:77:b3:ca:77:
61:56:1a:23:79:e8:9b:b7:df:ca:49:79:70:c7:a2:
17:f2:04:cb:dd:11:36:56:02:77:f0:eb:2c:21:25:
69:fb:b4:0e:21:6b:1d:40:a2:d0:3a:d7:a5:91:c4:
18:74:e7:2c:6e:db:bb:93:6b:34:44:76:de:1a:a4:
2d:b8:c0:6c:3b:34:de:9a:38:da:ee:36:47:af:ea:
ac:49:03:cd:b5:d4:bd:df:2e:aa:10:5b:51:0d:30:
ca:c3:f1:9a:79:b1:fe:5f:15:6d:38:63:e5:5a:5e:
8f:a2:39:20:11:fd:5f:a7:7c:a4:1b:f2:8e:1b:78:
e5:9c:f5:55:83:25:7a:f5:89:6b:88:bf:9c:8d:a3:
8b:9d:e6:fe:fc:f3:e7:d6:9f:97:0f:2d:5c:56:4f:
1a:f6:54:12:15:21:b3:fb:3b:bc:20:aa:a5:5c:28:
9f:be:90:64:70:f9:a7:64:7e:93:73:50:ea:b2:73:
df:fa:ea:0f:c2:7f:51:f6:09:bb:8a:68:bd:8a:71:
f1:b6:f5:2c:72:f0:21:21:b1:b6:36:82:c2:3a:12:
99:9a:0c:2f:c7:87:1a:a4:73:d1:df:73:30:2a:c3:
8f:a0:4b:93:2d:c0:22:2d:c6:3d:6c:2d:af:c9:39:
ac:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C5:7C:B2:8E:B1:5B:2D:E3:A7:43:32:3B:05:27:9E:A0:D9:0A:34
X509v3 Authority Key Identifier:
keyid:12:96:20:28:A1:81:E7:58:B8:99:0A:6C:A4:F0:4A:99:8A:69:31:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/1/12962028A181E758B8990A6CA4F04A998A69311E.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/12962028A181E758B8990A6CA4F04A998A69311E.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/1/326131323a646434373a666330303a3a2f33382d3338203d3e20323030383237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:fc00::/38
Signature Algorithm: sha256WithRSAEncryption
79:62:5e:53:6b:0c:b6:85:43:00:8e:f3:74:4f:a8:e7:9a:b5:
d6:ee:28:df:7c:e1:bc:5e:de:68:4a:5a:6e:4f:5c:4a:0e:bb:
76:96:3f:81:11:35:82:21:50:ca:3a:15:26:8f:f2:bb:48:1e:
79:d4:b4:43:e9:75:f3:fd:32:64:34:c6:f9:c3:4b:54:f3:b0:
c6:20:8d:b4:54:7b:76:56:a5:ac:a9:02:a7:e2:2e:79:d3:8d:
4f:49:ef:06:0b:e9:1c:4e:6a:63:a5:6b:7a:ae:ab:fe:0e:19:
16:94:a1:4a:78:32:f6:66:8e:64:e6:88:52:25:45:c2:91:44:
5e:7e:ff:f9:84:55:e8:ec:72:83:e8:e3:11:be:ca:ac:36:74:
1a:4a:c3:31:f0:ca:ca:a7:33:ce:b6:a3:8d:77:54:8a:72:63:
49:17:3b:19:9e:f0:8a:6b:ec:89:8f:dd:8b:ba:c9:11:67:92:
fc:d1:f5:19:c0:f3:8b:e5:d1:43:9c:b5:87:45:3c:03:bc:cb:
58:cb:e1:d0:bf:e6:e8:7b:e5:c1:93:92:d0:7c:55:eb:f9:2c:
f6:25:86:f3:52:ac:e6:c0:61:a9:4e:12:8e:64:d2:c6:75:85:
35:e3:77:20:44:cb:3e:8e:85:f3:db:c4:0c:41:9e:6d:d3:fa:
62:69:27:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 15:01:34 2024 by rpki-client on console-fra.rpki-client.org