Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/August/5/326131323a646434303a3a2f32392d3438203d3e20393435.roa
File: 326131323a646434303a3a2f32392d3438203d3e20393435.roa (raw, json)
Hash identifier: XpAr/f+FLFzxA8XPGvTlPjiiyvsc8/56R1tJbgN41O8=
Subject key identifier: 2B:9D:9B:1F:73:BE:C6:F5:6D:A0:90:00:CD:85:A6:FA:5D:1A:CE:D2
Certificate issuer: /CN=9d620b45c9098506ac4bf1184bee6cdbe9d71c4c
Certificate serial: 7F69FBC24BD444E2FDD156056EDDD94096A66297
Authority key identifier: 9D:62:0B:45:C9:09:85:06:AC:4B:F1:18:4B:EE:6C:DB:E9:D7:1C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
Subject info access: rsync://dev.tw/rpki/August/5/326131323a646434303a3a2f32392d3438203d3e20393435.roa
Signing time: Tue 17 Sep 2024 17:13:49 +0000
ROA not before: Tue 17 Sep 2024 17:08:49 +0000
ROA not after: Tue 16 Sep 2025 17:13:49 +0000
asID: 945
IP address blocks: 2a12:dd40::/29 maxlen: 48
Validation: Failed, certificate revoked on Thu 03 Oct 2024 20:25:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:69:fb:c2:4b:d4:44:e2:fd:d1:56:05:6e:dd:d9:40:96:a6:62:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d620b45c9098506ac4bf1184bee6cdbe9d71c4c
Validity
Not Before: Sep 17 17:08:49 2024 GMT
Not After : Sep 16 17:13:49 2025 GMT
Subject: CN=2B9D9B1F73BEC6F56DA09000CD85A6FA5D1ACED2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:78:73:60:f9:a3:00:92:af:d7:7d:ef:5d:de:
eb:ba:67:a9:a2:9c:d7:22:2e:5e:19:23:5b:f8:de:
43:f9:84:f6:2f:21:53:8a:88:ed:fd:7a:1f:fe:b1:
4c:52:b2:0f:51:9c:3d:28:8b:f6:87:80:4d:8e:bd:
32:dc:c4:f5:9e:62:c2:9c:95:cb:bf:d8:d9:d8:e0:
80:64:4a:c8:57:25:63:86:e9:82:97:44:f1:9d:11:
0c:c3:53:68:91:98:24:e8:cb:6a:f3:d3:8e:c2:ac:
91:43:df:2f:9f:d7:f1:bb:8c:19:c1:51:3f:ca:e4:
fe:95:63:28:03:46:b2:af:08:78:1d:bd:32:3b:4a:
16:23:4a:a8:75:e9:7d:13:ca:f5:47:17:84:80:89:
9b:15:b6:e8:0b:6d:80:11:04:88:80:de:d4:70:47:
5d:31:3b:b5:2f:44:d7:38:64:c2:5c:2b:42:8e:97:
ea:c2:ad:ce:e7:3f:9d:87:f7:0d:04:d8:67:d0:87:
58:ba:82:4a:71:6c:f9:b9:c5:2c:c4:a7:05:fb:7e:
ad:92:2b:2f:b8:9d:c1:a1:58:0e:9d:d0:03:5f:8f:
9b:25:d6:51:5b:02:2d:7c:03:b6:00:b4:9e:43:2a:
60:7c:00:bd:3a:7c:d2:07:a4:3a:b2:1d:dd:99:76:
0b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:9D:9B:1F:73:BE:C6:F5:6D:A0:90:00:CD:85:A6:FA:5D:1A:CE:D2
X509v3 Authority Key Identifier:
keyid:9D:62:0B:45:C9:09:85:06:AC:4B:F1:18:4B:EE:6C:DB:E9:D7:1C:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/August/5/326131323a646434303a3a2f32392d3438203d3e20393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd40::/29
Signature Algorithm: sha256WithRSAEncryption
54:a0:17:59:e4:9d:c7:3c:8d:e0:1f:3c:d5:55:95:94:9f:53:
f1:05:8d:3c:a6:4e:9f:c8:a4:b9:8b:2f:7e:42:c0:15:91:25:
6b:e9:6a:bf:53:a6:2d:24:64:49:f9:11:8f:0c:d3:89:96:53:
37:18:77:dd:e5:7d:28:6a:09:d7:44:f9:3d:f1:4b:d2:cc:47:
d6:35:28:29:52:99:71:80:59:1b:dd:98:47:b2:c6:ae:2b:f5:
39:3c:05:e9:97:d3:bf:0f:00:9d:12:46:fe:ca:5b:96:d6:02:
74:0a:95:fc:7f:f8:ff:31:0a:71:fc:3e:b8:93:97:e5:d1:8f:
93:7b:4c:10:14:c3:a3:9e:5e:39:df:c7:53:df:52:d5:94:8d:
86:b5:dc:71:a1:2e:26:f0:1f:29:5c:b6:98:c9:c0:65:d4:fd:
60:2d:f0:b5:c6:d4:8e:4b:6e:ea:7e:47:be:77:e9:71:a7:f8:
be:ca:8d:0c:30:4b:40:42:fd:91:75:38:1d:88:e7:37:a5:75:
f1:96:e5:53:50:18:7d:81:8a:ea:fe:a9:c8:75:0d:7d:13:4c:
26:47:61:22:5b:a9:d2:f5:2d:9b:35:46:c9:a0:70:f0:22:d0:
e4:e5:83:15:eb:a9:33:41:fe:f6:30:bb:51:67:f3:96:22:e0:
aa:9b:95:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 23:28:32 2024 by rpki-client on console-ams.rpki-client.org