Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a383036303a3a2f34342d3438203d3e20323131343131.roa
File: 326131323a646434373a383036303a3a2f34342d3438203d3e20323131343131.roa (raw, json)
Hash identifier: 8Zziy63c9aF2u0z/IWIi5oIAGr8Kn56v4jhOuINHquQ=
Subject key identifier: 05:5F:58:37:B8:11:A6:19:26:FE:EB:27:53:68:61:4C:7B:F4:FB:56
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 79EC03DE9AEC94EF492DC5CB68AA72838D7E9E66
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a383036303a3a2f34342d3438203d3e20323131343131.roa
Signing time: Tue 17 Oct 2023 16:13:26 +0000
ROA not before: Tue 17 Oct 2023 16:08:26 +0000
ROA not after: Tue 15 Oct 2024 16:13:26 +0000
asID: 211411
IP address blocks: 2a12:dd47:8060::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:ec:03:de:9a:ec:94:ef:49:2d:c5:cb:68:aa:72:83:8d:7e:9e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:26 2023 GMT
Not After : Oct 15 16:13:26 2024 GMT
Subject: CN=055F5837B811A61926FEEB275368614C7BF4FB56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:ee:5f:16:f8:b3:b8:04:ec:02:78:3e:fb:ce:
18:de:b7:55:41:a5:9e:3b:30:44:e4:f4:a6:2e:2e:
3d:de:f1:59:03:99:bd:57:c4:1b:ea:6e:c0:66:c6:
0d:7f:ee:aa:15:b0:32:66:94:10:f8:cd:19:41:c6:
2b:76:6d:7b:1d:4d:df:24:61:14:2f:94:a4:d7:6b:
67:e8:49:c8:01:28:ec:45:a2:b2:79:7d:f8:dd:80:
27:ff:97:13:e3:4f:0b:de:40:ea:c0:da:24:00:b7:
3b:b7:8d:ec:95:23:32:90:a7:8f:77:4d:80:bb:c2:
0c:b7:07:81:7d:8f:db:1f:5f:97:06:48:e1:82:ca:
f2:79:06:8e:f3:d3:85:74:49:85:cc:87:0d:c3:bf:
75:3b:d0:fb:60:f1:93:ad:84:2c:1f:6c:cb:6d:51:
69:95:fe:81:fd:77:25:f2:63:f3:1a:d3:80:cc:a3:
64:2a:29:50:91:37:03:d5:a7:c9:1e:2e:f6:1f:df:
32:78:09:38:94:cf:b4:8e:6c:65:d6:fc:f8:11:ce:
40:40:cc:2d:ed:53:29:3b:d2:77:a2:20:6c:dd:74:
92:3f:63:5d:03:4f:62:27:55:b9:95:7f:13:16:21:
bf:33:a5:04:ce:3f:e7:07:38:dc:5a:fb:d5:e8:84:
9a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:5F:58:37:B8:11:A6:19:26:FE:EB:27:53:68:61:4C:7B:F4:FB:56
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a383036303a3a2f34342d3438203d3e20323131343131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8060::/44
Signature Algorithm: sha256WithRSAEncryption
be:7b:14:cc:15:13:b1:e3:2a:bc:25:06:eb:2e:8f:b7:d3:3d:
f5:8a:56:64:3f:3f:d0:3d:86:fc:4d:6d:ab:c8:1b:85:2c:96:
f8:b7:21:af:c5:1b:f4:54:31:c2:50:ba:97:52:67:74:f8:e4:
fc:39:40:7f:c5:36:15:53:32:3c:62:16:ab:f4:c6:c9:c2:04:
b8:00:df:c1:fe:c0:f1:9a:76:c7:f9:ad:d0:66:fc:91:96:96:
88:61:27:c5:81:a5:bf:47:ac:49:b9:31:11:cc:e6:58:3a:7b:
c4:26:cf:8a:f4:02:72:fe:f1:a7:0b:f4:e4:98:cd:09:d6:14:
c0:ad:17:3f:21:39:d3:a4:71:6d:3b:e5:6a:31:95:d0:b4:84:
00:2b:66:99:21:92:e3:61:dd:6d:07:ec:b6:05:06:0b:b4:65:
fb:f3:4c:09:a2:40:14:c2:9f:a8:40:6c:2b:10:ba:11:21:ab:
87:c0:48:3e:43:15:99:1a:f7:ba:be:ce:0d:4f:ee:24:10:f3:
ab:4c:a0:0d:1e:01:37:a3:9d:9b:f0:7f:22:7d:29:47:7a:7d:
02:fa:2a:53:70:2b:c9:bc:93:2b:d0:23:a8:37:b5:c7:38:c6:
c7:25:cd:a4:90:98:8e:c1:cc:2e:d7:26:b1:dd:a1:3a:e6:d4:
36:6a:87:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:40:11 2024 by rpki-client on console-fra.rpki-client.org