Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/3/3231362e3134362e32382e302f32322d3234203d3e20343031313131.roa
File: 3231362e3134362e32382e302f32322d3234203d3e20343031313131.roa (raw, json)
Hash identifier: nLxV84FrSfzITKdmyxJyU4mGdESJKOsrmSjXil1BbqQ=
Subject key identifier: 43:ED:B0:C7:BF:D7:00:FF:5D:09:45:19:4C:4C:61:AB:7A:F8:76:28
Certificate issuer: /CN=D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B
Certificate serial: 550314EFF2F48A9A33B621AD5751F41C63BA8F14
Authority key identifier: D8:DF:BB:D7:92:51:71:AE:E9:52:24:A2:3F:F4:C3:9A:95:BB:CC:0B
Authority info access: rsync://dev.tw/rpki/August/0/D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B.cer
Subject info access: rsync://dev.tw/rpki/AS945/3/3231362e3134362e32382e302f32322d3234203d3e20343031313131.roa
Signing time: Fri 11 Oct 2024 10:04:08 +0000
ROA not before: Fri 11 Oct 2024 09:59:08 +0000
ROA not after: Fri 10 Oct 2025 10:04:08 +0000
asID: 401111
IP address blocks: 216.146.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:03:14:ef:f2:f4:8a:9a:33:b6:21:ad:57:51:f4:1c:63:ba:8f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B
Validity
Not Before: Oct 11 09:59:08 2024 GMT
Not After : Oct 10 10:04:08 2025 GMT
Subject: CN=43EDB0C7BFD700FF5D0945194C4C61AB7AF87628
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:39:91:e8:0c:8d:f9:ad:32:c3:26:cb:a0:65:
7f:f4:3b:41:09:7b:96:ff:c7:a9:b0:7c:86:f9:ad:
6d:36:08:88:5f:7b:2a:88:2b:e4:29:c0:3b:3c:6f:
5b:0c:c6:f5:f7:c8:01:38:26:b4:8d:f3:b9:7a:a7:
b5:29:50:15:53:db:e7:bd:9e:6d:80:e1:94:67:07:
18:27:e4:82:08:06:45:d9:5b:f1:67:dd:b3:89:4f:
91:b9:59:15:9d:ed:69:9c:86:18:e1:f2:5a:3c:0c:
59:79:1c:0c:1e:d8:6b:e7:f5:a4:95:ac:33:cd:ea:
47:b7:c8:fe:1f:ca:c1:bd:d8:0b:3b:5a:60:e3:b0:
f6:5a:8c:a9:c4:f8:0b:c9:fb:50:0a:87:c8:3f:58:
d4:d6:37:4d:4e:59:2a:c6:9c:a7:aa:0f:5b:e8:51:
2f:b2:4e:56:71:1e:a7:8d:20:47:89:2f:da:ec:04:
cf:75:6a:30:00:71:58:44:4c:db:1a:8a:bc:da:6b:
8a:b4:48:3e:13:8b:be:65:45:8e:f6:a4:da:66:30:
96:6c:fa:c8:3c:a9:90:01:cd:b0:5e:76:5f:53:0a:
97:44:5a:9e:8f:73:19:96:d5:2c:9f:ca:3a:28:2e:
9d:fc:f3:21:e0:3a:3c:44:d4:41:f2:ec:62:4a:94:
68:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:ED:B0:C7:BF:D7:00:FF:5D:09:45:19:4C:4C:61:AB:7A:F8:76:28
X509v3 Authority Key Identifier:
keyid:D8:DF:BB:D7:92:51:71:AE:E9:52:24:A2:3F:F4:C3:9A:95:BB:CC:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/3/D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/0/D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/3/3231362e3134362e32382e302f32322d3234203d3e20343031313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.146.28.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:90:67:b7:6f:0f:6a:57:49:64:36:17:2f:65:6d:73:a4:6c:
75:90:e1:be:cf:21:f1:4e:fc:8a:ba:1f:aa:00:56:62:62:87:
9d:32:f0:4a:bf:3e:28:12:ec:02:78:51:22:c8:75:25:1e:56:
68:a6:05:80:ca:84:18:ed:60:d4:3c:f8:06:fe:7c:81:9b:bf:
da:b7:26:67:e0:10:26:7b:9a:85:dc:0b:78:ad:cf:fd:7f:23:
07:e3:f7:20:fd:c5:e0:f7:a1:6c:95:6c:c7:bd:85:0d:e3:3c:
42:68:9c:3e:45:0e:06:2e:50:f6:09:4f:e0:97:aa:8b:e2:4c:
0a:3f:4a:44:00:38:66:b5:3a:11:16:69:bf:4c:f8:69:72:6f:
75:df:39:a7:f9:4b:76:e1:6f:f7:27:59:3f:48:f6:c8:ba:31:
d9:26:47:5e:09:a4:67:df:bf:30:2d:05:f2:1c:20:c9:d3:33:
75:00:0f:cc:30:37:84:3d:02:0c:9c:4f:30:a7:8b:89:40:d6:
58:bc:54:5f:c6:f9:27:29:a6:d0:2a:47:b4:0e:84:85:db:8f:
b2:b0:ba:b0:b7:50:ed:e3:78:de:7e:76:2f:13:a3:25:43:4b:
76:aa:ce:6e:ba:de:44:c8:01:86:78:63:e0:bf:de:bf:2a:a6:
0d:ea:4e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:38:55 2024 by rpki-client on console-ams.rpki-client.org