Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/14/326130353a646663363a393330303a3a2f34302d3438203d3e203436313338.roa
File: 326130353a646663363a393330303a3a2f34302d3438203d3e203436313338.roa (raw, json)
Hash identifier: 9Dh6cYcek23o5WvDAWhc+kFKUeCU3Wffgqo2AsS2Ggc=
Subject key identifier: D3:1A:12:2F:D4:A6:E8:86:A1:82:B9:F6:DB:77:16:3A:51:1C:B1:89
Certificate issuer: /CN=E08A23B82DF37E4701E573987559B077CD666175
Certificate serial: 4277F5BC02BBA08D3F1AF4D191A1D5A3BC4F51D5
Authority key identifier: E0:8A:23:B8:2D:F3:7E:47:01:E5:73:98:75:59:B0:77:CD:66:61:75
Authority info access: rsync://dev.tw/rpki/August/13/E08A23B82DF37E4701E573987559B077CD666175.cer
Subject info access: rsync://dev.tw/rpki/AS945/14/326130353a646663363a393330303a3a2f34302d3438203d3e203436313338.roa
Signing time: Fri 11 Oct 2024 10:04:06 +0000
ROA not before: Fri 11 Oct 2024 09:59:06 +0000
ROA not after: Fri 10 Oct 2025 10:04:06 +0000
asID: 46138
IP address blocks: 2a05:dfc6:9300::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:77:f5:bc:02:bb:a0:8d:3f:1a:f4:d1:91:a1:d5:a3:bc:4f:51:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E08A23B82DF37E4701E573987559B077CD666175
Validity
Not Before: Oct 11 09:59:06 2024 GMT
Not After : Oct 10 10:04:06 2025 GMT
Subject: CN=D31A122FD4A6E886A182B9F6DB77163A511CB189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:81:d0:b6:af:2f:eb:3f:65:1e:3b:d2:7f:af:
62:00:b3:26:84:9d:98:78:f3:8c:54:03:d7:67:62:
a2:7c:63:ce:cf:27:c7:e8:fb:d5:be:f5:65:1a:5a:
a5:a2:51:7d:ff:24:e5:f4:e9:46:79:b9:14:ae:27:
5a:10:81:ee:52:f9:31:05:9e:18:2e:ec:ec:52:7d:
39:98:51:ac:0a:5a:15:1a:f7:ab:7d:7d:3a:b6:d7:
06:23:e7:4d:dd:a0:80:ec:2e:b9:06:28:ae:c4:d2:
07:82:c4:09:d8:c7:ba:c2:54:81:d5:c1:34:dd:7c:
c4:c2:35:74:5e:ec:71:c4:9e:de:38:02:bf:a8:bb:
e3:ba:96:f3:16:42:bc:64:e1:81:c3:fe:8b:86:3c:
89:f7:d2:c6:8c:6a:3a:e6:dc:83:77:03:09:7a:c1:
06:5d:c1:50:d0:e2:06:60:93:4f:48:68:05:84:f6:
0e:5b:1f:b4:1b:74:62:3e:04:de:40:30:85:6f:9b:
97:33:45:71:77:14:39:3f:27:0c:bd:9c:f2:3c:38:
2b:6b:c2:ea:98:b0:e6:47:62:ae:e6:8a:92:44:72:
86:25:73:31:c8:68:08:7d:42:50:d2:31:05:91:2e:
66:6b:1e:30:b3:2b:35:6a:3c:0b:c6:95:06:c6:39:
82:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1A:12:2F:D4:A6:E8:86:A1:82:B9:F6:DB:77:16:3A:51:1C:B1:89
X509v3 Authority Key Identifier:
keyid:E0:8A:23:B8:2D:F3:7E:47:01:E5:73:98:75:59:B0:77:CD:66:61:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/14/E08A23B82DF37E4701E573987559B077CD666175.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/13/E08A23B82DF37E4701E573987559B077CD666175.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/14/326130353a646663363a393330303a3a2f34302d3438203d3e203436313338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc6:9300::/40
Signature Algorithm: sha256WithRSAEncryption
b8:fe:15:a2:02:11:83:20:52:a1:ab:57:4a:b4:33:91:5e:71:
62:66:e7:d9:3f:36:d6:ea:aa:2b:d7:d5:2a:a9:89:34:9e:4e:
8a:6b:e4:0a:1d:02:96:02:95:cf:bb:a5:40:5b:4e:e2:9e:11:
c4:f3:a5:f2:23:22:4b:4e:49:06:16:48:06:a0:5b:73:f6:bb:
96:3e:db:21:d2:92:31:de:46:0b:aa:1e:34:f2:a5:ab:2a:13:
25:7d:5b:0a:d6:e3:f5:76:b6:ef:af:64:1c:e2:c6:47:1a:26:
37:2b:d4:40:8b:9f:65:db:ad:81:d8:41:23:d2:d5:75:33:a9:
ea:bc:35:7e:13:28:46:59:5c:38:ad:77:eb:d9:2c:06:06:a0:
25:ec:70:bc:3f:28:a8:81:b7:e3:30:2f:8e:19:0e:bb:e3:fc:
d7:e9:34:0b:8b:f9:70:24:97:93:ad:96:c3:ec:67:f0:77:cd:
13:3f:e8:ea:fe:a9:4c:0d:52:4c:b5:f3:25:a1:db:b4:83:07:
f6:fc:ff:0b:15:26:71:78:f1:90:01:d7:a0:c4:05:de:4f:0a:
29:fe:20:7c:ec:46:6a:f7:ef:c8:91:76:d2:09:42:f9:b4:98:
44:44:6c:7c:fa:b9:b8:f8:30:d7:b1:28:e4:9f:fc:bf:e2:d2:
74:95:2b:93
-----BEGIN CERTIFICATE-----
MIIEyDCCA7CgAwIBAgIUQnf1vAK7oI0/GvTRkaHVo7xPUdUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTA4QTIzQjgyREYzN0U0NzAxRTU3Mzk4NzU1OUIwNzdD
RDY2NjE3NTAeFw0yNDEwMTEwOTU5MDZaFw0yNTEwMTAxMDA0MDZaMDMxMTAvBgNV
BAMTKEQzMUExMjJGRDRBNkU4ODZBMTgyQjlGNkRCNzcxNjNBNTExQ0IxODkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDogdC2ry/rP2UeO9J/r2IAsyaE
nZh484xUA9dnYqJ8Y87PJ8fo+9W+9WUaWqWiUX3/JOX06UZ5uRSuJ1oQge5S+TEF
nhgu7OxSfTmYUawKWhUa96t9fTq21wYj503doIDsLrkGKK7E0geCxAnYx7rCVIHV
wTTdfMTCNXRe7HHEnt44Ar+ou+O6lvMWQrxk4YHD/ouGPIn30saMajrm3IN3Awl6
wQZdwVDQ4gZgk09IaAWE9g5bH7QbdGI+BN5AMIVvm5czRXF3FDk/Jwy9nPI8OCtr
wuqYsOZHYq7mipJEcoYlczHIaAh9QlDSMQWRLmZrHjCzKzVqPAvGlQbGOYJTAgMB
AAGjggHSMIIBzjAdBgNVHQ4EFgQU0xoSL9Sm6Iahgrn223cWOlEcsYkwHwYDVR0j
BBgwFoAU4IojuC3zfkcB5XOYdVmwd81mYXUwDgYDVR0PAQH/BAQDAgeAMFoGA1Ud
HwRTMFEwT6BNoEuGSXJzeW5jOi8vZGV2LnR3L3Jwa2kvQVM5NDUvMTQvRTA4QTIz
QjgyREYzN0U0NzAxRTU3Mzk4NzU1OUIwNzdDRDY2NjE3NS5jcmwwZgYIKwYBBQUH
AQEEWjBYMFYGCCsGAQUFBzAChkpyc3luYzovL2Rldi50dy9ycGtpL0F1Z3VzdC8x
My9FMDhBMjNCODJERjM3RTQ3MDFFNTczOTg3NTU5QjA3N0NENjY2MTc1LmNlcjB7
BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5jOi8vZGV2LnR3L3Jwa2kv
QVM5NDUvMTQvMzI2MTMwMzUzYTY0NjY2MzM2M2EzOTMzMzAzMDNhM2EyZjM0MzAy
ZDM0MzgyMDNkM2UyMDM0MzYzMTMzMzgucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgAqBd/GkzANBgkqhkiG
9w0BAQsFAAOCAQEAuP4VogIRgyBSoatXSrQzkV5xYmbn2T821uqqK9fVKqmJNJ5O
imvkCh0ClgKVz7ulQFtO4p4RxPOl8iMiS05JBhZIBqBbc/a7lj7bIdKSMd5GC6oe
NPKlqyoTJX1bCtbj9Xa2769kHOLGRxomNyvUQIufZdutgdhBI9LVdTOp6rw1fhMo
RllcOK1369ksBgagJexwvD8oqIG34zAvjhkOu+P81+k0C4v5cCSXk62Ww+xn8HfN
Ez/o6v6pTA1STLXzJaHbtIMH9vz/CxUmcXjxkAHXoMQF3k8KKf4gfOxGavfvyJF2
0glC+bSYRERsfPq5uPgw17Eo5J/8v+LSdJUrkw==
-----END CERTIFICATE-----
Generated at Mon Nov 25 22:25:03 2024 by rpki-client on console-ams.rpki-client.org