Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a383364303a3a2f34342d3438203d3e20323031333836.roa
File: 326131323a646434373a383364303a3a2f34342d3438203d3e20323031333836.roa (raw, json)
Hash identifier: 7X5N6IlvGHRpQucSQEyBhoJIh3gZqbzPGLldVNaar0w=
Subject key identifier: 4E:1D:51:5A:A4:F5:B8:0C:EE:AA:11:E6:C8:E0:7C:AF:1E:A4:5A:D6
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 6AA813FAD37C959006E9BF97063D5E925004DED4
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a383364303a3a2f34342d3438203d3e20323031333836.roa
Signing time: Tue 17 Oct 2023 16:13:36 +0000
ROA not before: Tue 17 Oct 2023 16:08:36 +0000
ROA not after: Tue 15 Oct 2024 16:13:36 +0000
asID: 201386
IP address blocks: 2a12:dd47:83d0::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:a8:13:fa:d3:7c:95:90:06:e9:bf:97:06:3d:5e:92:50:04:de:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:36 2023 GMT
Not After : Oct 15 16:13:36 2024 GMT
Subject: CN=4E1D515AA4F5B80CEEAA11E6C8E07CAF1EA45AD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:02:50:9c:1c:aa:79:f8:22:8a:7c:ca:e6:49:
4f:c5:7f:06:00:0f:23:05:fd:0d:47:10:06:83:81:
42:15:b8:bc:fe:19:5f:0a:82:9f:90:c3:77:af:b0:
62:3c:46:81:53:5f:1a:57:22:e2:6d:61:20:33:52:
c3:cb:2e:e1:39:61:91:6a:d2:1a:04:d3:41:15:96:
65:ea:63:2b:d8:df:81:3e:96:3d:80:6e:2b:c7:82:
20:a6:33:14:79:6e:67:8f:73:f0:d2:6c:d9:49:c7:
33:e3:9c:a3:81:df:75:86:32:6b:0b:65:2f:f9:b9:
a8:00:ac:8b:2d:78:d7:ea:2b:2b:80:ff:e0:c0:27:
3a:74:fa:b2:4e:2d:ad:c0:14:16:1f:f5:8b:57:a7:
ef:15:7f:29:f0:1e:1b:02:b5:97:26:1a:a3:29:4c:
63:7a:f4:0c:f3:67:51:20:c3:5c:a3:ea:e1:3a:04:
15:57:42:54:61:75:85:a0:1c:2d:36:0d:53:61:c7:
57:96:ad:29:0b:2e:f5:90:91:68:82:61:ba:6e:42:
cb:34:54:ee:02:db:a7:16:02:d1:03:47:7a:f3:cc:
2c:dc:f3:e4:56:54:28:f3:f5:27:d6:7e:ce:67:b9:
02:48:4d:01:cf:16:02:c6:74:f4:90:b3:19:a6:69:
d4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:1D:51:5A:A4:F5:B8:0C:EE:AA:11:E6:C8:E0:7C:AF:1E:A4:5A:D6
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a383364303a3a2f34342d3438203d3e20323031333836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:83d0::/44
Signature Algorithm: sha256WithRSAEncryption
b4:65:bd:e5:d7:91:d9:ee:9b:39:db:d9:00:37:51:46:e7:a4:
0c:57:f4:2c:a0:f2:55:e8:ef:46:4b:87:70:40:ed:8a:da:36:
bb:f0:03:18:0e:f2:21:22:cb:44:3b:2b:05:55:63:7e:1f:d4:
aa:d8:19:e6:85:a0:9f:e0:20:16:10:c0:d5:e3:79:e6:f8:c1:
ec:f7:ac:13:d3:6f:aa:ce:a8:c0:1a:16:dd:d0:fa:9a:dd:fc:
a9:c7:81:4d:23:ef:34:1b:d7:a6:d2:4b:93:53:c6:ca:ad:ba:
d2:b5:b4:55:99:2d:fc:21:af:7b:93:a1:41:3c:82:82:0c:03:
0a:12:52:ed:41:3a:b3:39:0f:6d:4a:39:96:d0:ee:0b:bb:4d:
6e:e1:0c:b8:01:84:94:cf:ea:94:c0:bb:ac:f8:16:13:21:36:
fb:4c:73:de:f7:6c:93:d9:a9:ef:19:0c:b3:c1:38:d6:5d:92:
1a:f1:f8:02:89:83:68:76:2b:ad:3d:74:b6:da:11:66:7a:cf:
bf:45:17:6c:f2:17:18:cd:72:47:2b:22:a5:eb:55:96:47:e2:
60:3d:fa:df:48:da:11:9c:0a:49:b1:f3:77:8b:de:0c:fb:b5:
c4:35:b1:c7:ae:25:17:13:9d:85:3d:0c:0c:5d:e8:ad:39:4a:
de:8f:8d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:01:24 2024 by rpki-client on console-ams.rpki-client.org