Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS208328/2/326130353a646663363a393130303a3a2f34322d3432203d3e20323038333238.roa
File: 326130353a646663363a393130303a3a2f34322d3432203d3e20323038333238.roa (raw, json)
Hash identifier: BfSOfp+2fhcJYxjYlZ7JxZabSbACFnvFDMyddPLahZQ=
Subject key identifier: 5F:9C:EC:56:A4:14:E9:A8:BC:F3:27:32:67:C4:57:81:72:0E:3A:F8
Certificate issuer: /CN=628FD1F0C18E89557B438A75BE55134F4E9D4478
Certificate serial: 5CBCAFDA051D8FB3114203D9A309CDC1FA744DDB
Authority key identifier: 62:8F:D1:F0:C1:8E:89:55:7B:43:8A:75:BE:55:13:4F:4E:9D:44:78
Authority info access: rsync://dev.tw/rpki/August/13/628FD1F0C18E89557B438A75BE55134F4E9D4478.cer
Subject info access: rsync://rpki.co/repo/AS208328/2/326130353a646663363a393130303a3a2f34322d3432203d3e20323038333238.roa
Signing time: Sat 11 May 2024 15:40:25 +0000
ROA not before: Sat 11 May 2024 15:35:25 +0000
ROA not after: Sat 10 May 2025 15:40:25 +0000
asID: 208328
IP address blocks: 2a05:dfc6:9100::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:bc:af:da:05:1d:8f:b3:11:42:03:d9:a3:09:cd:c1:fa:74:4d:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=628FD1F0C18E89557B438A75BE55134F4E9D4478
Validity
Not Before: May 11 15:35:25 2024 GMT
Not After : May 10 15:40:25 2025 GMT
Subject: CN=5F9CEC56A414E9A8BCF3273267C45781720E3AF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6b:59:5f:b6:79:d6:01:99:81:66:fb:df:e5:
c6:f1:21:a6:a6:93:80:9d:2f:2a:a7:ee:9a:78:c0:
aa:42:c3:64:59:cd:fc:9e:e4:8d:38:13:f1:ec:27:
9d:55:a5:ec:ed:57:1d:40:57:ca:c2:71:47:62:b6:
86:83:69:a2:ba:4a:fc:31:21:1e:9d:f1:2d:1e:35:
32:a2:9d:43:ed:98:01:74:50:4c:7c:ef:f5:13:1e:
34:12:19:46:49:71:d2:79:39:da:9f:6d:ff:10:35:
39:67:59:96:d4:f3:0c:73:13:c9:c6:4a:f7:76:7d:
d9:c0:83:8f:5b:96:24:f6:b9:cd:9d:2d:24:c7:b2:
de:1e:e8:6c:bd:f3:04:0e:3f:38:84:8b:87:ae:c8:
ce:fa:05:de:03:80:58:37:19:fc:cb:5d:2e:a7:c3:
e9:25:18:30:39:ef:21:86:1b:51:cf:e3:92:e2:93:
55:41:73:fb:6b:d8:0f:3e:b6:c1:1e:a6:ff:a4:f0:
ee:f2:e3:01:1c:97:bb:49:fd:e9:7d:7f:51:76:76:
7c:ed:bd:fc:ae:93:da:5e:8c:c2:5e:03:4c:17:2a:
83:a2:59:f7:6f:2f:c5:2e:96:8c:44:95:bb:04:bd:
0e:78:47:77:d3:69:81:53:30:30:21:13:a9:a1:ff:
a4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:9C:EC:56:A4:14:E9:A8:BC:F3:27:32:67:C4:57:81:72:0E:3A:F8
X509v3 Authority Key Identifier:
keyid:62:8F:D1:F0:C1:8E:89:55:7B:43:8A:75:BE:55:13:4F:4E:9D:44:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS208328/2/628FD1F0C18E89557B438A75BE55134F4E9D4478.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/13/628FD1F0C18E89557B438A75BE55134F4E9D4478.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS208328/2/326130353a646663363a393130303a3a2f34322d3432203d3e20323038333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc6:9100::/42
Signature Algorithm: sha256WithRSAEncryption
6d:a3:5c:4c:44:76:59:2a:54:23:cd:b9:f9:34:2d:5f:ea:71:
65:c6:48:23:de:6e:c3:cc:27:4c:1a:dc:34:45:6c:c8:76:50:
47:61:a2:b0:98:3f:f4:49:04:dd:da:87:5c:5e:e7:c6:4d:48:
bb:20:d4:63:14:46:d6:bc:e8:e1:49:9d:fd:24:71:68:ad:a8:
bb:d6:d7:07:64:63:05:e8:82:06:0c:d5:e2:b5:0d:4a:15:50:
61:db:c6:51:fd:a4:4a:75:09:a7:85:5e:fc:45:6a:5f:9b:e6:
c3:95:84:f9:55:db:e7:ac:f3:b3:61:0a:15:62:df:c7:2e:a6:
9b:2c:e2:4a:22:86:c2:4e:ae:92:72:53:f0:d5:d4:0e:fc:2e:
48:ab:e7:de:84:20:48:3d:b1:6e:8f:48:2f:cc:c8:20:7c:72:
e2:5d:33:3c:a7:d1:86:1d:27:32:02:fd:6b:ae:84:7c:1e:dc:
5b:74:a4:57:33:d6:6f:c2:12:80:42:e2:29:c0:44:d1:5f:3b:
8e:3f:f3:31:f8:7b:5d:55:16:c4:04:c4:12:23:40:42:1b:b1:
3e:ea:3d:6c:0f:c7:c1:54:81:02:c4:fc:2e:fc:ff:d0:c0:e5:
37:4d:59:16:87:35:cc:75:39:80:21:a9:af:8b:aa:20:b1:7f:
35:1c:c8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 3 21:58:06 2024 by rpki-client on console-fra.rpki-client.org