Route Origin Authorization
$ rpki-client -vvf dev.tw/rpki/August/5/326131323a646434373a3230303a3a2f34342d3438203d3e20313531333338.roa
File: 326131323a646434373a3230303a3a2f34342d3438203d3e20313531333338.roa (raw, json)
Hash identifier: g/LZwfWCkYMCUiKv2cmOjL9cN5XsUMSTsOjogin7XGI=
Subject key identifier: 1E:2F:E5:32:91:CC:48:57:2D:0E:F6:6C:87:6D:51:A1:9A:A9:81:3F
Certificate issuer: /CN=9d620b45c9098506ac4bf1184bee6cdbe9d71c4c
Certificate serial: 76D98E201B9F9D7FD9FCAAFD258B13503067DC6D
Authority key identifier: 9D:62:0B:45:C9:09:85:06:AC:4B:F1:18:4B:EE:6C:DB:E9:D7:1C:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
Subject info access: rsync://dev.tw/rpki/August/5/326131323a646434373a3230303a3a2f34342d3438203d3e20313531333338.roa
Signing time: Sun 26 Nov 2023 16:58:04 +0000
ROA not before: Sun 26 Nov 2023 16:53:04 +0000
ROA not after: Sun 24 Nov 2024 16:58:04 +0000
asID: 151338
IP address blocks: 2a12:dd47:200::/44 maxlen: 48
Validation: Failed, certificate revoked on Sun 26 Nov 2023 18:03:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:d9:8e:20:1b:9f:9d:7f:d9:fc:aa:fd:25:8b:13:50:30:67:dc:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d620b45c9098506ac4bf1184bee6cdbe9d71c4c
Validity
Not Before: Nov 26 16:53:04 2023 GMT
Not After : Nov 24 16:58:04 2024 GMT
Subject: CN=1E2FE53291CC48572D0EF66C876D51A19AA9813F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4e:21:97:55:08:79:4f:f3:3d:a6:2f:34:3f:
e3:38:b5:6b:38:d8:3d:68:1d:1c:06:6b:18:c0:03:
ba:ea:a9:b9:ac:b3:da:cd:d5:0b:d8:ef:62:d4:74:
aa:f5:70:59:2a:cd:45:cb:21:8b:38:1c:42:65:8b:
cf:0c:8f:5d:88:b7:b6:28:2c:ee:4d:dc:da:1b:ac:
c8:d1:e5:29:0d:3b:5a:43:cc:da:5a:86:71:2d:78:
8d:6f:2e:91:9b:dc:ec:89:b9:8c:d6:42:a5:dd:8b:
c6:b4:c2:52:e6:fa:6b:bb:f6:53:e8:ee:38:2b:82:
f4:3e:a0:3d:e7:c3:cb:4d:aa:8a:e3:fe:51:19:46:
c0:fd:e9:e1:ea:54:ba:de:26:9b:e0:8a:b4:d1:ca:
58:26:eb:89:65:eb:83:d2:56:d3:37:39:fb:8c:69:
59:d5:33:0d:dc:62:4f:32:a8:18:38:eb:f8:70:8f:
02:8d:bc:ac:6c:7c:21:a5:a3:28:7d:f5:35:9b:e1:
5b:26:de:e5:29:8b:d8:bd:11:75:5f:39:a4:1c:97:
f8:f9:7e:1e:00:4e:33:c9:c1:56:60:c8:5a:83:c3:
7d:f1:12:9f:50:c8:55:34:af:02:28:ff:db:66:a2:
69:b8:6b:12:7e:07:1e:f8:84:aa:ec:09:d7:03:cc:
7c:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:2F:E5:32:91:CC:48:57:2D:0E:F6:6C:87:6D:51:A1:9A:A9:81:3F
X509v3 Authority Key Identifier:
keyid:9D:62:0B:45:C9:09:85:06:AC:4B:F1:18:4B:EE:6C:DB:E9:D7:1C:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
Subject Information Access:
Signed Object - URI:rsync://dev.tw/rpki/August/5/326131323a646434373a3230303a3a2f34342d3438203d3e20313531333338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:200::/44
Signature Algorithm: sha256WithRSAEncryption
66:cd:4d:35:31:33:54:ed:15:51:11:30:1c:2b:4f:ce:d0:83:
d4:02:a4:9a:27:45:74:48:a2:83:1b:53:59:78:0f:a9:cf:32:
75:8e:33:8b:ae:42:8a:17:b6:34:5c:c3:24:00:e2:a2:a6:f0:
fe:15:d1:f4:bb:02:19:92:e9:4a:a0:a0:bd:f6:2d:95:cf:ac:
32:75:8d:16:93:b4:b1:50:ba:70:df:ab:d7:0a:22:c1:44:9c:
05:f2:c7:e9:66:f0:39:e4:2a:b3:ce:8c:c2:65:4a:76:d6:08:
93:e1:5f:0e:7a:61:71:60:aa:84:25:c4:7f:24:e0:8d:5b:48:
08:b8:e3:f6:33:53:a6:94:fe:c1:44:27:de:cb:e3:58:bc:47:
95:78:66:60:87:a4:f6:15:61:ea:3a:f2:44:1f:43:22:9f:7f:
96:b5:20:4b:58:ab:2a:b2:6b:43:a4:65:09:f3:a5:66:ba:e2:
bd:5a:e2:2a:3a:da:4c:01:4d:80:25:0b:4b:32:70:87:76:a0:
03:2b:df:84:76:14:c0:00:66:93:35:da:99:2d:24:7e:1e:6f:
bd:9e:b4:e9:6c:fb:f8:28:9b:2b:21:1e:7c:5b:c5:53:85:a3:
81:b6:5b:02:24:1d:de:91:8a:d4:b7:a8:c4:63:fe:84:07:15:
35:94:35:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:56 2024 by rpki-client on console-fra.rpki-client.org