Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/August/12/3130342e33372e34322e302f32332d3234203d3e20393435.roa
File: 3130342e33372e34322e302f32332d3234203d3e20393435.roa (raw, json)
Hash identifier: b1PAuWcwDTbvvwrwQUnOtabHR6rRWxePGBcx7OpCNqA=
Subject key identifier: 0E:AF:C3:61:7B:05:C8:28:6F:F2:66:B3:AB:10:E0:2E:B0:FB:8E:85
Certificate issuer: /CN=64EF7C64F4E72CC0730DD0DA80D3C367CB785E67
Certificate serial: 4B7259CD29D0EDD7ABEC8DAB6AE1537C80F4D2E3
Authority key identifier: 64:EF:7C:64:F4:E7:2C:C0:73:0D:D0:DA:80:D3:C3:67:CB:78:5E:67
Authority info access: rsync://repo.kagl.me/rpki/KeatonAGLair/0/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.cer
Subject info access: rsync://dev.tw/rpki/August/12/3130342e33372e34322e302f32332d3234203d3e20393435.roa
Signing time: Sun 15 Sep 2024 04:13:28 +0000
ROA not before: Sun 15 Sep 2024 04:08:28 +0000
ROA not after: Sun 14 Sep 2025 04:13:28 +0000
asID: 945
IP address blocks: 104.37.42.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 03 Oct 2024 22:06:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:72:59:cd:29:d0:ed:d7:ab:ec:8d:ab:6a:e1:53:7c:80:f4:d2:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64EF7C64F4E72CC0730DD0DA80D3C367CB785E67
Validity
Not Before: Sep 15 04:08:28 2024 GMT
Not After : Sep 14 04:13:28 2025 GMT
Subject: CN=0EAFC3617B05C8286FF266B3AB10E02EB0FB8E85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:69:ca:b5:14:14:24:03:a1:34:d9:67:09:ec:
4a:d2:dc:04:5f:8d:df:d7:7d:04:56:1c:d9:c5:17:
c9:b4:44:8c:06:af:40:40:a5:07:3f:e6:f5:89:af:
7e:f5:75:53:27:06:78:17:0c:f5:4a:1a:64:93:83:
ad:11:db:a9:4f:b1:e4:cd:41:f5:38:54:13:3b:e7:
43:04:91:be:b0:87:dc:eb:12:40:17:1c:03:08:72:
dd:08:5f:cc:77:e3:70:ad:76:f8:44:cc:97:6b:66:
fd:29:0d:14:34:7c:08:ce:ea:16:0e:6f:c8:18:06:
d8:5e:66:89:6e:45:dc:41:c1:c1:17:e4:3a:47:16:
76:a5:43:9e:9d:52:4e:ef:a4:9b:f6:3a:65:3d:e9:
67:8c:17:01:ca:81:6d:6a:01:7a:be:29:2f:41:5b:
50:b0:87:2d:be:73:ea:20:5c:a9:89:4f:2b:84:b3:
e4:91:f4:7a:4f:25:18:2c:db:64:74:c6:82:ef:ba:
6b:ad:c7:ef:29:10:22:c6:38:25:cb:fa:26:4f:c8:
27:f7:5c:71:3c:4d:5e:6d:d6:f9:d8:83:b1:5f:66:
0e:f3:b7:60:a6:8f:42:17:a3:c0:64:3c:d8:49:9a:
33:4d:3d:e2:3d:aa:43:7f:00:c4:b6:6f:cd:a1:b4:
2c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AF:C3:61:7B:05:C8:28:6F:F2:66:B3:AB:10:E0:2E:B0:FB:8E:85
X509v3 Authority Key Identifier:
keyid:64:EF:7C:64:F4:E7:2C:C0:73:0D:D0:DA:80:D3:C3:67:CB:78:5E:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/August/12/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.crl
Authority Information Access:
CA Issuers - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/August/12/3130342e33372e34322e302f32332d3234203d3e20393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
104.37.42.0/23
Signature Algorithm: sha256WithRSAEncryption
87:28:6d:80:83:2a:c6:ae:d4:8b:66:bf:b2:d9:e2:fa:a0:08:
41:21:cb:f5:7e:a8:a3:02:63:74:13:09:b0:81:69:5c:56:91:
e1:e0:60:93:37:f1:ac:b5:2c:d4:51:1c:62:ae:59:21:4b:94:
43:f4:f9:ea:30:03:93:aa:17:e9:35:d2:5b:56:7b:fd:95:fb:
6d:93:fb:16:eb:86:5a:ac:3c:31:a2:ea:cd:18:1d:7e:ba:73:
e8:43:cc:fa:e7:33:5c:5e:e7:ae:5d:48:98:a2:ab:33:ed:a2:
d4:6e:b8:9d:92:af:13:f9:62:00:43:bd:c7:72:71:33:9d:7f:
b9:92:07:7e:72:a4:6a:6d:a7:10:d9:4b:d5:10:9e:c3:3a:ac:
1f:36:dc:7e:7e:fa:18:44:5b:e0:01:49:b3:b2:a1:b0:05:56:
b1:f0:78:7f:0a:2c:5b:af:44:a1:8b:05:12:e9:6e:5b:c3:9a:
4c:28:65:7b:eb:76:70:a6:fa:38:6b:63:3e:f1:c7:fa:79:fe:
92:7d:ae:89:e9:03:48:9e:99:6a:63:c7:a3:27:07:fa:8e:7c:
68:61:5d:c9:fd:0b:bc:8b:24:58:61:3a:bf:e7:29:06:1c:93:
12:0f:0a:2e:32:70:3f:07:34:54:97:87:b2:15:d7:d9:df:88:
18:c9:73:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 23:36:09 2024 by rpki-client on console-fra.rpki-client.org