Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/323030313a3637633a6139343a3a2f34382d3438203d3e20393435.roa
File: 323030313a3637633a6139343a3a2f34382d3438203d3e20393435.roa (raw, json)
Hash identifier: b3prK4zjH6dSHvt3xy8UKQ2Ya70GV0fE11RK1TZrmgI=
Subject key identifier: 52:ED:A2:FA:F5:D5:B8:5A:29:94:32:F3:91:56:86:F5:CE:B3:FA:3D
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 20A6256242CCEF6D48B3BF908C240FBAACEE7344
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/323030313a3637633a6139343a3a2f34382d3438203d3e20393435.roa
Signing time: Tue 17 Oct 2023 16:13:32 +0000
ROA not before: Tue 17 Oct 2023 16:08:32 +0000
ROA not after: Tue 15 Oct 2024 16:13:32 +0000
asID: 945
IP address blocks: 2001:67c:a94::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:a6:25:62:42:cc:ef:6d:48:b3:bf:90:8c:24:0f:ba:ac:ee:73:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:32 2023 GMT
Not After : Oct 15 16:13:32 2024 GMT
Subject: CN=52EDA2FAF5D5B85A299432F3915686F5CEB3FA3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:54:61:ad:ee:c4:36:c1:79:c6:fe:7c:07:47:
4f:b3:0d:37:f1:0b:ee:a4:a8:1b:17:fb:94:b6:4f:
f3:a5:11:ec:d1:f5:2b:75:a6:83:36:b7:b1:ee:c0:
b6:23:52:52:fd:fb:38:2d:bf:ea:9e:b4:15:b8:3b:
19:bc:4a:c2:af:92:dc:ac:27:52:c9:24:73:f1:d1:
51:18:de:b6:a9:3c:2f:f3:fa:06:1d:91:9f:c5:a6:
0b:e6:de:4d:ff:b3:86:15:ab:e0:d5:3c:57:1a:d5:
88:39:4b:30:de:02:59:01:45:a3:ac:35:ca:0f:9f:
9c:7d:e4:e0:1c:80:8d:f5:78:06:e3:e2:c0:27:2d:
96:ec:3b:ae:16:14:92:f0:f9:28:52:c3:69:e1:54:
c3:ac:63:9a:3a:58:87:48:8a:31:69:55:c7:41:c7:
e5:31:78:32:fa:2c:05:bc:58:4b:53:0c:8b:05:ad:
3b:a0:4b:68:19:d4:86:bf:76:21:d5:90:1e:ca:c4:
d7:ee:f3:10:23:bc:95:b7:ec:f6:83:94:68:11:b8:
b1:ee:e9:bf:2a:08:40:06:d8:f0:d4:37:96:ed:78:
55:8e:97:0e:e5:19:59:5c:be:d6:89:b2:26:c7:3b:
44:38:29:45:67:51:60:60:06:2a:70:43:b9:7c:d9:
00:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:ED:A2:FA:F5:D5:B8:5A:29:94:32:F3:91:56:86:F5:CE:B3:FA:3D
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/323030313a3637633a6139343a3a2f34382d3438203d3e20393435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:67c:a94::/48
Signature Algorithm: sha256WithRSAEncryption
96:c4:f6:63:19:59:d9:bf:d3:7c:a0:2c:16:76:4a:8f:e3:3f:
fd:18:52:38:86:1e:b6:bb:dc:2f:d9:af:f7:b1:a6:9a:c7:16:
94:68:f5:6f:e4:fa:6d:37:d3:87:65:eb:4f:f6:15:0b:6c:cc:
08:be:8a:7a:75:4c:6b:18:0a:a7:1b:16:e4:29:a5:9b:14:07:
cd:c7:50:57:79:85:a4:2d:bd:27:98:7f:c5:31:98:df:cf:fc:
7c:b2:30:59:f3:d5:ed:bf:47:72:d5:e9:8c:dd:7c:06:41:e1:
e5:1e:8a:51:6b:f5:69:89:8d:ea:9f:f2:2b:14:8c:12:a5:f1:
a2:98:9b:5b:61:a1:71:36:fe:ee:3d:d5:6f:3b:fd:b0:99:48:
30:22:47:c2:d9:02:17:bc:1e:a0:28:9c:e2:a7:01:4c:5e:5a:
7d:68:65:ee:05:1c:c1:75:74:b1:24:79:a0:fb:02:34:c4:ea:
f3:a7:39:15:8b:a5:83:f8:3c:4b:59:4c:23:0d:d5:95:4b:12:
8e:1f:60:03:2a:36:b1:ce:c0:a5:3c:07:4b:4a:66:e2:e9:f4:
73:d7:25:73:f3:78:6f:61:2f:5e:60:b9:d8:62:44:19:f0:36:
ba:a8:06:d0:fe:10:a4:03:8b:26:ed:2e:50:4a:8c:5b:22:79:
84:53:92:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:17:38 2025 by rpki-client