Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/August/5/326131323a646434363a313030303a3a2f33362d3438203d3e20313531313838.roa
File: 326131323a646434363a313030303a3a2f33362d3438203d3e20313531313838.roa (raw, json)
Hash identifier: 0NYlir+nlHkHMIBNXnp9NjOneEyNAx9QOMbTbH1CJmg=
Subject key identifier: 82:18:01:DE:D4:F3:8A:63:9D:3E:E9:78:53:FE:FF:74:2B:20:74:35
Certificate issuer: /CN=9d620b45c9098506ac4bf1184bee6cdbe9d71c4c
Certificate serial: 0E2ECF42C09E37EDD6C6E4C6D45DB87CBE76F2A0
Authority key identifier: 9D:62:0B:45:C9:09:85:06:AC:4B:F1:18:4B:EE:6C:DB:E9:D7:1C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
Subject info access: rsync://dev.tw/rpki/August/5/326131323a646434363a313030303a3a2f33362d3438203d3e20313531313838.roa
Signing time: Sun 15 Sep 2024 05:13:35 +0000
ROA not before: Sun 15 Sep 2024 05:08:35 +0000
ROA not after: Sun 14 Sep 2025 05:13:35 +0000
asID: 151188
IP address blocks: 2a12:dd46:1000::/36 maxlen: 48
Validation: Failed, certificate revoked on Thu 03 Oct 2024 20:26:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:2e:cf:42:c0:9e:37:ed:d6:c6:e4:c6:d4:5d:b8:7c:be:76:f2:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d620b45c9098506ac4bf1184bee6cdbe9d71c4c
Validity
Not Before: Sep 15 05:08:35 2024 GMT
Not After : Sep 14 05:13:35 2025 GMT
Subject: CN=821801DED4F38A639D3EE97853FEFF742B207435
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:f7:03:b3:ad:8f:8e:68:92:3e:31:8e:e7:
12:80:26:f3:1d:1a:82:4b:fb:f6:30:f8:34:54:59:
1f:d6:31:2f:b4:0f:d3:43:4e:2e:f1:c6:40:f3:17:
7d:f2:dd:f6:f4:aa:37:3e:db:59:10:4e:66:00:8d:
13:9b:70:b3:dd:26:65:bd:37:bb:42:16:78:ad:10:
74:3e:07:0d:a7:93:c7:ab:9d:96:ee:1d:f7:9e:bb:
72:36:a7:9d:97:95:e4:95:8a:94:f2:98:16:34:9a:
22:95:db:2a:85:8b:f1:6e:41:5e:4c:da:83:f5:e5:
0c:73:10:05:38:11:5e:1c:b2:81:79:1a:c7:18:ca:
41:34:ca:65:72:1f:56:55:88:d8:a6:3f:a6:dc:4c:
b4:47:4a:79:e0:ff:c9:2e:68:23:95:23:a1:c3:e0:
01:47:0b:93:b2:d7:18:5b:17:90:61:dd:65:ca:78:
1e:bd:03:82:d9:8d:7e:a1:72:1f:50:8b:9f:c7:2f:
3c:f0:95:f9:06:88:51:e7:56:8c:5f:39:09:df:87:
9f:62:ab:db:b0:f5:ba:df:5e:fc:31:08:dd:18:c0:
02:95:bd:01:36:4e:c0:93:10:a3:29:40:69:12:0c:
ba:16:29:a8:34:6b:e4:3a:8d:c0:4b:aa:25:6f:e3:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:18:01:DE:D4:F3:8A:63:9D:3E:E9:78:53:FE:FF:74:2B:20:74:35
X509v3 Authority Key Identifier:
keyid:9D:62:0B:45:C9:09:85:06:AC:4B:F1:18:4B:EE:6C:DB:E9:D7:1C:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/August/5/326131323a646434363a313030303a3a2f33362d3438203d3e20313531313838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd46:1000::/36
Signature Algorithm: sha256WithRSAEncryption
32:99:5c:26:cb:d4:2a:fc:22:b0:ea:a6:1c:8f:39:8e:1d:99:
f5:b8:f9:8a:08:c9:43:8f:dc:d0:9e:c8:7e:54:41:84:96:76:
03:57:3d:a4:a8:d1:78:4c:a6:85:eb:30:27:bd:3f:a7:67:36:
3e:ac:c7:e1:83:96:bd:2a:a0:60:7c:91:52:9d:3b:fa:dd:e2:
ea:d2:a3:d8:3b:df:f8:09:8e:b3:c1:70:cc:66:83:5f:16:56:
77:29:a2:75:55:0a:3f:c8:7c:30:a8:67:c6:38:06:79:ab:a2:
db:99:49:09:52:68:58:23:b6:2d:a9:c4:b9:c8:7b:24:a4:6c:
97:7a:6e:e6:3d:54:ff:69:a4:a6:28:89:3c:d5:36:64:b8:80:
46:ac:b3:bc:af:18:7a:96:de:13:ac:56:38:fc:9f:ec:83:ce:
07:8b:13:12:f4:eb:ef:27:15:e4:d2:8b:6d:54:10:0b:0e:7c:
d8:2a:52:53:49:dd:77:79:42:82:ad:fe:05:1a:5a:59:8b:10:
65:52:95:06:d8:ce:a0:a9:fe:6c:b8:c8:ce:69:0d:be:85:1c:
73:6c:aa:9d:10:80:c8:78:d4:22:99:6a:63:b7:a1:5a:ba:c0:
fa:17:d3:07:ff:26:45:58:4e:42:57:ba:b2:c8:69:b1:ae:7d:
6a:0d:d0:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 23:28:32 2024 by rpki-client on console-ams.rpki-client.org