Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/AS945/3/3231362e3134362e32392e302f32342d3234203d3e203130313033.roa
File: 3231362e3134362e32392e302f32342d3234203d3e203130313033.roa (raw, json)
Hash identifier: Gnl7zooCLFucBbYEUzaTubtON1NZJG4n6GxHEz3U0ME=
Subject key identifier: 83:7A:8A:5A:65:E5:52:02:CD:A5:3D:50:E8:25:AB:04:52:40:78:00
Certificate issuer: /CN=D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B
Certificate serial: 3B2B61C92EDBF4FE5E7E0FF5AE839CD8B2D7025C
Authority key identifier: D8:DF:BB:D7:92:51:71:AE:E9:52:24:A2:3F:F4:C3:9A:95:BB:CC:0B
Authority info access: rsync://dev.tw/rpki/August/0/D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B.cer
Subject info access: rsync://dev.tw/rpki/AS945/3/3231362e3134362e32392e302f32342d3234203d3e203130313033.roa
Signing time: Fri 11 Oct 2024 10:04:07 +0000
ROA not before: Fri 11 Oct 2024 09:59:07 +0000
ROA not after: Fri 10 Oct 2025 10:04:07 +0000
asID: 10103
IP address blocks: 216.146.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:2b:61:c9:2e:db:f4:fe:5e:7e:0f:f5:ae:83:9c:d8:b2:d7:02:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B
Validity
Not Before: Oct 11 09:59:07 2024 GMT
Not After : Oct 10 10:04:07 2025 GMT
Subject: CN=837A8A5A65E55202CDA53D50E825AB0452407800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2b:0c:57:ed:08:cc:35:12:48:1c:f4:14:d9:
e0:c6:a6:9e:dd:c2:49:fc:34:00:f0:cb:c3:72:0e:
28:ab:09:30:09:cc:4b:4a:fe:e1:aa:79:70:a1:00:
2a:3e:b4:ee:0b:ae:05:30:03:96:a5:16:d6:59:b2:
c7:b7:7e:32:b7:34:9b:b1:8a:fb:82:ab:9c:aa:9e:
9a:c9:a5:b9:bc:96:f9:77:06:9b:c2:40:74:31:a9:
14:e3:a6:a9:67:1c:1f:93:5f:24:32:03:3f:4d:17:
89:86:92:12:12:84:4e:81:aa:19:c0:20:3d:3a:e8:
dc:a8:af:1f:c3:11:73:96:51:ee:59:15:c9:18:56:
fc:6c:3c:7e:95:e2:01:d8:28:a6:db:d1:1f:bd:24:
12:39:ee:1d:5f:a6:24:64:0f:a6:2e:8b:02:50:6e:
56:33:a0:b5:b5:6d:01:eb:b3:4c:2d:54:b8:bd:b4:
d5:19:8e:5f:a2:07:22:e7:0a:ec:f6:28:d1:d2:05:
2c:6f:8b:46:bc:0e:d8:19:42:10:b9:4c:0c:f1:54:
98:de:df:52:44:dd:4f:0c:63:0e:23:8c:02:ba:99:
7a:c6:a4:16:ff:e0:be:e6:db:c6:ff:28:2c:aa:f2:
77:08:11:e6:75:b5:f0:c4:91:c8:13:d7:2b:20:83:
42:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:7A:8A:5A:65:E5:52:02:CD:A5:3D:50:E8:25:AB:04:52:40:78:00
X509v3 Authority Key Identifier:
keyid:D8:DF:BB:D7:92:51:71:AE:E9:52:24:A2:3F:F4:C3:9A:95:BB:CC:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/AS945/3/D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/0/D8DFBBD7925171AEE95224A23FF4C39A95BBCC0B.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/AS945/3/3231362e3134362e32392e302f32342d3234203d3e203130313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.146.29.0/24
Signature Algorithm: sha256WithRSAEncryption
31:06:43:42:03:e8:50:5d:7c:5b:24:70:2b:6e:92:65:b8:e0:
e9:77:36:0b:c1:80:c7:a6:eb:55:60:39:62:72:d3:80:d4:e5:
95:36:90:29:bd:18:5f:4a:76:0b:fb:08:b8:7c:01:32:5d:16:
aa:26:5c:1a:03:8e:bf:da:9d:ff:f3:30:b9:45:f5:8d:0e:f4:
2d:30:ec:63:96:ea:cb:11:0b:75:90:0d:43:92:fa:7b:a7:9c:
54:0a:33:30:87:26:c7:c3:80:d8:2f:3f:d7:30:3b:a1:19:47:
23:23:95:14:e1:e3:0b:d3:bf:e5:16:7a:cf:d1:94:36:30:66:
79:23:bc:c6:22:b9:ca:9f:dc:b3:bc:22:1f:47:cf:31:b7:d4:
63:bb:17:ca:23:e1:0a:ed:00:98:0a:61:3b:d3:a4:6d:1f:7d:
f8:1b:ca:4a:72:12:dd:6e:df:ab:18:6d:ad:0f:b9:a4:13:8c:
3b:af:f2:67:7c:51:2d:a5:47:32:72:81:ec:cf:93:f2:5a:62:
8e:e8:1a:f6:d5:91:64:ce:f8:76:4d:96:95:09:96:ca:00:71:
a6:75:6b:46:1e:8d:7a:a5:b7:9e:c4:1f:7f:cd:29:0b:ae:9d:
3f:16:cf:7b:bf:1e:cd:be:34:af:df:64:0e:58:fe:01:50:28:
de:2e:91:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 19:13:56 2024 by rpki-client on console-fra.rpki-client.org