Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/2/323630323a666332333a3135303a3a2f34342d3438203d3e203534363235.roa
File: 323630323a666332333a3135303a3a2f34342d3438203d3e203534363235.roa (raw, json)
Hash identifier: gqcPrhTcaJ6FVIDR0LswYmUfAJoqp5JhsdEM9hCJL/U=
Subject key identifier: 0D:34:B8:63:AF:75:56:D6:CD:95:79:50:B2:53:D9:33:CE:AE:85:8A
Certificate issuer: /CN=1A8C29884038907EDD0174FADC751F16456E1C56
Certificate serial: 6241328958C4C4326974AF8DD652D3178C9CECFB
Authority key identifier: 1A:8C:29:88:40:38:90:7E:DD:01:74:FA:DC:75:1F:16:45:6E:1C:56
Authority info access: rsync://dev.tw/rpki/August/7/1A8C29884038907EDD0174FADC751F16456E1C56.cer
Subject info access: rsync://dev.tw/rpki/AS945/2/323630323a666332333a3135303a3a2f34342d3438203d3e203534363235.roa
Signing time: Fri 11 Oct 2024 10:04:11 +0000
ROA not before: Fri 11 Oct 2024 09:59:11 +0000
ROA not after: Fri 10 Oct 2025 10:04:11 +0000
asID: 54625
IP address blocks: 2602:fc23:150::/44 maxlen: 48
Validation: Failed, certificate revoked on Wed 23 Oct 2024 02:42:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:41:32:89:58:c4:c4:32:69:74:af:8d:d6:52:d3:17:8c:9c:ec:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1A8C29884038907EDD0174FADC751F16456E1C56
Validity
Not Before: Oct 11 09:59:11 2024 GMT
Not After : Oct 10 10:04:11 2025 GMT
Subject: CN=0D34B863AF7556D6CD957950B253D933CEAE858A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0e:00:ef:c2:3f:54:b1:6d:08:0d:90:7f:2f:
03:23:24:09:39:fd:f5:51:b4:9d:7c:61:27:e7:04:
70:54:90:91:0c:bc:ac:1f:35:c7:a8:1d:be:a6:5b:
84:76:2c:20:bc:25:e1:af:f0:3f:da:2d:e5:16:e6:
56:11:24:e5:9c:ab:6c:dd:38:1c:e4:29:d7:90:ab:
12:ae:bf:f5:fa:e4:61:e8:20:4a:63:26:12:64:6d:
fb:d2:dc:8a:4e:be:93:26:5e:f7:96:73:31:9f:09:
b4:ef:2f:e0:f9:3a:91:b4:c4:7a:53:69:20:6e:7e:
e5:85:bc:0c:af:6d:73:5c:66:36:f2:73:01:33:34:
3c:23:50:f6:1e:24:79:9d:f0:81:c3:02:28:f8:23:
9e:ed:18:63:e7:92:bf:5a:16:86:2b:d2:39:46:e2:
bb:38:c8:6e:91:83:ce:ed:a6:d7:ee:fd:24:3c:5e:
67:2a:92:ff:33:e5:1d:31:3f:56:c3:e0:d1:d7:aa:
37:a3:f4:28:64:c1:76:db:28:7f:57:43:b4:19:6b:
68:74:29:ac:41:ad:b2:ea:30:bb:93:21:42:a3:ac:
dd:a0:54:6b:54:63:c4:f9:52:ec:a5:15:77:ab:34:
d4:ef:0f:8f:11:3f:a0:2b:f5:9f:29:86:aa:b6:7d:
9f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:34:B8:63:AF:75:56:D6:CD:95:79:50:B2:53:D9:33:CE:AE:85:8A
X509v3 Authority Key Identifier:
keyid:1A:8C:29:88:40:38:90:7E:DD:01:74:FA:DC:75:1F:16:45:6E:1C:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/2/1A8C29884038907EDD0174FADC751F16456E1C56.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/7/1A8C29884038907EDD0174FADC751F16456E1C56.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/2/323630323a666332333a3135303a3a2f34342d3438203d3e203534363235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2602:fc23:150::/44
Signature Algorithm: sha256WithRSAEncryption
6c:1b:64:8a:0b:ad:af:5d:d3:62:c0:52:3c:60:4e:3f:5c:21:
1f:04:42:03:ff:0f:8d:2e:9d:64:5b:83:30:8b:9a:bc:e1:37:
59:00:d2:23:74:a5:e4:76:39:b8:c1:08:8c:be:da:86:b0:a0:
0f:6d:45:19:20:57:49:d5:77:d3:c5:1f:14:21:57:ce:37:52:
aa:2e:7c:36:91:94:3e:a4:ad:92:57:cc:e4:a3:5d:0c:e3:38:
f3:f8:d6:05:a0:35:4e:3f:39:96:ba:7d:5c:60:cb:24:ea:51:
ec:44:6b:b4:bd:91:7a:a6:19:72:5c:09:3e:f2:53:a4:65:bc:
1b:1a:9f:6a:77:2d:a2:36:3c:42:6c:ca:92:29:67:68:1a:9d:
df:2b:0e:d0:59:10:f3:11:9a:b0:af:5d:42:7b:0e:be:fa:15:
98:e4:a9:73:0b:ae:24:6e:ce:d3:5e:12:8c:f3:00:c3:a6:20:
85:aa:9b:4e:cf:8c:95:a2:de:64:3d:e9:c8:07:c0:08:29:52:
99:d2:bb:13:67:95:74:b5:cb:c6:14:2c:66:57:5f:d2:9e:cd:
77:70:d0:f2:dd:ef:eb:63:ac:6f:dd:ea:4b:ac:0f:63:f8:6c:
8c:da:e2:64:0b:c2:73:72:91:2e:3c:4c:67:08:b8:d9:4e:c4:
85:cc:6e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 04:49:48 2024 by rpki-client on console-ams.rpki-client.org