Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a383334303a3a2f34342d3438203d3e20323030323430.roa
File: 326131323a646434373a383334303a3a2f34342d3438203d3e20323030323430.roa (raw, json)
Hash identifier: kPadFVfpBC1dGPlxjZ9VzJswbwbGS4fsfcroB6Lz+tk=
Subject key identifier: 79:17:34:EE:61:56:62:93:16:00:09:7F:0D:D2:E1:30:64:EB:1F:A7
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 168B3E303480768FCADBACA7EA07C837EF19C8A6
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a383334303a3a2f34342d3438203d3e20323030323430.roa
Signing time: Tue 17 Oct 2023 16:13:36 +0000
ROA not before: Tue 17 Oct 2023 16:08:36 +0000
ROA not after: Tue 15 Oct 2024 16:13:36 +0000
asID: 200240
IP address blocks: 2a12:dd47:8340::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:8b:3e:30:34:80:76:8f:ca:db:ac:a7:ea:07:c8:37:ef:19:c8:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:36 2023 GMT
Not After : Oct 15 16:13:36 2024 GMT
Subject: CN=791734EE615662931600097F0DD2E13064EB1FA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d9:4d:8e:c6:c0:85:8c:d0:c4:b4:5a:d7:54:
a5:73:8b:52:6a:c5:a2:d3:e7:4e:06:82:f9:d2:c8:
10:89:3b:bf:c7:5c:16:1c:45:47:2c:20:11:8e:4b:
0b:9f:4c:52:91:a4:86:c3:ee:61:7c:5d:73:40:c9:
06:43:66:24:14:68:00:18:37:56:14:6c:02:a0:c7:
26:b9:cb:a9:29:f6:a9:6d:1b:a6:c8:99:52:b9:df:
84:0a:48:71:66:83:26:ca:1a:e2:67:1e:5c:9e:58:
bc:7a:3a:ba:4b:de:9d:de:fa:a8:fe:c8:4a:0b:d3:
98:e2:74:c5:9c:20:2c:7f:1b:85:77:b3:ac:79:e4:
6b:57:24:26:87:60:37:ef:d3:f4:d7:e3:70:57:36:
01:07:17:0d:ef:7d:0c:fd:aa:8f:26:ed:ba:74:57:
7e:8c:e4:92:29:37:43:4c:47:64:77:4b:dc:4f:9e:
14:0e:dd:e3:52:9a:3d:6d:89:53:20:9a:6b:00:2a:
bd:ae:3f:ea:81:81:ff:3c:f8:87:f0:58:e2:6e:f6:
45:89:85:2d:f8:30:82:34:73:18:6c:d4:f4:cb:a1:
a8:61:37:24:0b:3b:1c:5e:43:4b:65:c9:6a:b1:ef:
6a:e7:1d:28:32:d4:b1:48:51:15:ae:e3:98:2c:dc:
d4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:17:34:EE:61:56:62:93:16:00:09:7F:0D:D2:E1:30:64:EB:1F:A7
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a383334303a3a2f34342d3438203d3e20323030323430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8340::/44
Signature Algorithm: sha256WithRSAEncryption
7f:02:ab:52:15:75:15:be:1d:8c:be:68:cf:a4:5a:63:ca:ac:
5a:35:55:db:16:37:c3:8f:d3:47:fe:46:48:38:a5:81:78:0a:
d6:94:6f:65:94:e8:d7:34:0a:de:17:60:89:c2:34:ee:ed:2b:
38:e1:18:5f:bd:78:df:5e:4d:6d:e4:34:6d:d0:47:1e:92:03:
4d:76:ff:96:c9:2a:36:b0:0a:5f:f2:7b:9b:a2:4a:66:bc:ef:
1d:45:e2:5b:c0:52:59:fd:81:a6:a5:3d:8b:16:78:16:da:bc:
b2:10:2f:13:63:6f:74:e1:0f:1a:47:5a:24:5b:fc:0d:2c:a0:
fd:97:d1:87:d9:22:b5:24:f8:3a:84:1e:a6:e7:25:6b:fa:22:
4c:b4:68:2f:01:2a:39:4f:d1:52:2a:93:d6:4b:89:85:cb:90:
9a:1b:15:9d:68:ca:a7:56:41:78:e8:77:45:9b:12:42:dd:8c:
84:8d:22:31:b7:71:a8:63:29:73:d8:d0:45:90:b2:46:30:c4:
2e:74:7a:9e:d7:2b:35:fb:4d:17:46:6a:36:1c:62:82:e9:65:
4b:73:27:70:db:ef:29:62:2e:6a:4e:54:fe:1e:1b:6b:ae:9f:
4d:fa:2c:61:e4:b2:98:75:a8:b2:75:c4:c9:4c:36:dd:1a:bb:
21:3a:33:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:01:24 2024 by rpki-client on console-ams.rpki-client.org