Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/323030313a3637633a6138383a3a2f34382d3438203d3e20393435.roa
File: 323030313a3637633a6138383a3a2f34382d3438203d3e20393435.roa (raw, json)
Hash identifier: o4nX/+7IKhg7yiJHBsQZBrMSFJvM8RUVx4xP9VhDRMA=
Subject key identifier: C3:AA:B8:9C:18:11:E6:F0:08:7A:4E:81:4F:7D:14:2F:AE:FE:21:D9
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 1A952660441D41734415D2945ECCEA05B66D41DD
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/323030313a3637633a6138383a3a2f34382d3438203d3e20393435.roa
Signing time: Tue 17 Oct 2023 16:13:32 +0000
ROA not before: Tue 17 Oct 2023 16:08:32 +0000
ROA not after: Tue 15 Oct 2024 16:13:32 +0000
asID: 945
IP address blocks: 2001:67c:a88::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 02:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:95:26:60:44:1d:41:73:44:15:d2:94:5e:cc:ea:05:b6:6d:41:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:32 2023 GMT
Not After : Oct 15 16:13:32 2024 GMT
Subject: CN=C3AAB89C1811E6F0087A4E814F7D142FAEFE21D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:0c:f8:86:fc:fc:09:55:ce:1c:56:ee:3f:1a:
a1:b4:16:53:b5:a9:88:57:99:60:0e:62:8c:14:08:
32:bf:05:ee:3c:5b:cc:4c:70:0d:bc:14:e6:dc:90:
64:d3:22:ba:99:97:36:9a:c2:db:6c:a7:c8:13:24:
01:48:cf:b9:0b:9a:6d:33:65:9a:56:17:9e:f9:ac:
1d:bb:1d:2a:15:ab:e6:64:18:b0:5b:aa:27:e9:fc:
68:f8:47:4a:b4:29:31:9a:8c:7f:ad:28:53:8f:48:
c7:ba:5b:66:f3:ea:4f:93:7e:80:8f:7c:af:f2:1f:
ad:d1:8e:2c:63:ad:24:96:6b:81:44:3d:1e:4d:b5:
85:16:a5:ee:c9:32:62:c7:d5:01:4c:2a:d6:47:26:
88:d8:f6:17:8a:2d:ff:cc:4c:aa:a4:a8:75:82:55:
a0:86:c8:ff:e2:6c:12:77:f4:24:61:3e:e9:b3:fc:
e1:d0:b2:06:34:db:e4:7f:0c:41:65:84:e9:9e:b4:
85:5d:49:8b:ec:e0:76:6a:a2:d3:3e:d5:8d:08:e4:
50:a6:c4:47:91:87:e4:50:03:af:06:e5:2b:3f:79:
b7:d2:f2:c3:d3:5c:7d:4b:31:a3:6e:2c:63:48:7c:
f1:01:e1:50:8d:fb:08:74:4e:d8:43:02:51:a0:93:
77:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AA:B8:9C:18:11:E6:F0:08:7A:4E:81:4F:7D:14:2F:AE:FE:21:D9
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/323030313a3637633a6138383a3a2f34382d3438203d3e20393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a88::/48
Signature Algorithm: sha256WithRSAEncryption
86:31:76:52:19:ac:38:70:df:eb:2f:42:50:e3:21:14:90:ec:
13:af:30:c7:6d:a8:d3:18:9b:9b:80:3e:08:7c:b9:01:1a:0d:
47:88:fa:1b:af:8b:37:8c:8d:55:a8:1b:77:72:22:31:2f:78:
d6:a4:e5:59:aa:0c:9e:b6:f2:ad:f4:33:8f:af:5a:7d:db:42:
49:68:28:83:00:db:58:c7:60:7f:23:9f:5e:7b:5a:22:fb:41:
16:ad:e6:ea:4a:15:e6:c4:b2:bb:92:78:48:16:de:b7:15:5c:
e2:94:42:81:79:52:b3:ec:f0:df:10:d7:de:97:5d:fc:2f:6f:
d7:9c:04:39:be:c5:84:e3:ec:3b:68:ba:72:1c:94:5d:71:61:
56:5b:e8:27:1a:2a:dc:c3:56:50:fe:3d:2b:3f:45:f4:7e:fd:
8c:ac:01:f6:43:eb:d8:1b:29:37:e2:24:d7:6c:3f:4b:0d:a1:
aa:9a:6f:a4:7c:31:97:3c:c0:98:42:f4:eb:b2:86:1a:e8:67:
c1:09:47:bf:55:5c:b8:2b:af:e9:f7:72:cf:fd:20:4e:f7:aa:
2d:44:fd:a5:c8:14:04:c0:eb:50:c8:7c:e7:c3:cb:68:80:19:
84:3a:bd:b8:68:f5:b8:d4:7c:16:8a:34:9c:3b:9c:1a:6a:be:
a5:60:28:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 08:09:19 2024 by rpki-client on console-ams.rpki-client.org