Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa
File: 326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa (raw, json)
Hash identifier: uCN2GK49yyVzNEjEDlPra9SSufxgzDlJUC9eK/qm/0I=
Subject key identifier: 14:C2:BC:FE:E1:3A:D2:0E:84:05:63:1C:7C:4A:CB:28:DF:AC:82:61
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 23E60B0325987ECC269BBC0004C8558B63446370
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa
Signing time: Tue 17 Oct 2023 16:13:31 +0000
ROA not before: Tue 17 Oct 2023 16:08:31 +0000
ROA not after: Tue 15 Oct 2024 16:13:31 +0000
asID: 41732
IP address blocks: 2a12:dd47:5000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:e6:0b:03:25:98:7e:cc:26:9b:bc:00:04:c8:55:8b:63:44:63:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:31 2023 GMT
Not After : Oct 15 16:13:31 2024 GMT
Subject: CN=14C2BCFEE13AD20E8405631C7C4ACB28DFAC8261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ec:de:f4:38:8e:20:89:9c:04:40:1f:c1:e3:
6a:29:ec:57:c9:d8:2c:d4:bd:69:41:eb:bf:ac:4c:
98:00:d2:4e:df:77:b6:86:46:60:e2:e2:85:16:20:
f9:81:e8:37:26:88:f9:a4:bb:8b:a7:0e:a3:7f:e6:
9a:f2:3b:b9:35:a6:8a:fb:81:df:37:8c:2e:ec:1d:
ce:2d:1a:a6:47:43:fb:31:81:98:bd:f5:73:dd:b8:
57:e8:af:e8:54:05:d0:25:9f:cb:09:72:dd:ab:f8:
74:26:74:3e:15:2c:ce:20:64:93:d5:fe:d1:5f:fa:
bd:1b:ce:ec:e0:5f:24:07:06:e4:c8:0c:21:ca:b7:
fe:1e:a6:bc:93:4e:a8:30:9d:74:89:3f:8e:2d:c4:
1f:90:88:a4:13:b7:c8:09:2e:cb:0a:1a:c8:0d:09:
7f:0c:7d:9b:c2:61:2b:1e:0a:82:39:ca:41:58:c0:
f1:7b:5a:6b:30:f5:12:cf:f1:fc:15:04:94:1b:85:
b6:f6:92:06:82:6b:38:5c:03:76:82:1e:4a:1d:b9:
dd:db:61:52:ba:f8:83:33:67:8e:a5:4a:60:24:e1:
7b:7d:98:b2:be:e6:c9:8e:d1:cf:e6:92:dc:0e:97:
81:3a:5b:5c:df:3d:87:09:58:23:15:2c:bd:a8:7c:
36:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C2:BC:FE:E1:3A:D2:0E:84:05:63:1C:7C:4A:CB:28:DF:AC:82:61
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a353030303a3a2f34302d3438203d3e203431373332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:5000::/40
Signature Algorithm: sha256WithRSAEncryption
53:17:30:11:87:bc:ec:fa:3d:05:ed:bc:2a:70:73:1b:3d:5d:
0f:18:9a:de:51:85:ba:1a:70:c6:cb:d5:b2:21:77:0f:92:92:
61:87:40:61:73:a4:0b:d0:a4:bf:46:55:23:1d:52:1c:6b:5a:
e4:52:e4:18:f3:92:8b:86:bd:f4:16:5a:b6:d9:e1:59:20:d7:
13:08:0a:f5:73:fb:a7:53:95:0f:b7:11:8c:7e:8f:93:b7:4e:
a9:d6:46:81:86:d1:58:79:b3:5f:66:19:f3:43:60:51:bb:dc:
43:09:9b:ea:ba:90:81:51:5b:b9:96:bd:2c:02:8e:fe:10:5a:
4a:be:ab:6c:3e:38:aa:61:e7:47:26:fa:8f:50:99:97:c6:7c:
77:42:a9:0f:58:a4:a3:a0:90:15:38:1c:04:a7:7d:38:cb:48:
18:b7:4f:f2:0a:ee:2f:7e:d0:73:d0:14:60:dd:72:12:d1:2e:
2c:1f:78:3d:65:cf:9d:26:51:6d:fc:37:72:d1:5a:a9:80:ef:
74:b7:eb:ab:b1:a4:11:5d:e8:0f:d2:a3:b3:46:4b:44:6a:cc:
10:33:35:5b:fc:59:35:79:05:cb:02:08:e5:9c:82:92:f8:98:
a0:66:d5:7e:e8:05:83:f8:a4:a3:46:85:71:97:b9:68:10:83:
3c:94:22:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:01:24 2024 by rpki-client on console-ams.rpki-client.org