Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a383530303a3a2f34302d3430203d3e203531333936.roa
File: 326131323a646434373a383530303a3a2f34302d3430203d3e203531333936.roa (raw, json)
Hash identifier: HSLUX561bE3SFqmExJcGyliwFF1TqPDf5txh31bFzOI=
Subject key identifier: 29:CD:7E:24:FE:EA:82:2C:F3:F9:C7:9E:EB:61:99:64:34:FC:6B:75
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 3CD05D6341461587CB9E4A2B215157C50CAA3DE4
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a383530303a3a2f34302d3430203d3e203531333936.roa
Signing time: Fri 15 Dec 2023 08:10:52 +0000
ROA not before: Fri 15 Dec 2023 08:05:52 +0000
ROA not after: Fri 13 Dec 2024 08:10:52 +0000
asID: 51396
IP address blocks: 2a12:dd47:8500::/40 maxlen: 40
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:d0:5d:63:41:46:15:87:cb:9e:4a:2b:21:51:57:c5:0c:aa:3d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Dec 15 08:05:52 2023 GMT
Not After : Dec 13 08:10:52 2024 GMT
Subject: CN=29CD7E24FEEA822CF3F9C79EEB61996434FC6B75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:0d:78:48:df:1e:7f:8d:f5:b2:6f:4d:9a:4d:
8c:3e:fe:3c:b7:e2:03:98:44:af:d4:ba:42:8b:2f:
bf:6e:1f:1b:19:08:81:22:02:45:56:40:58:47:7a:
da:d6:42:b0:2a:65:ca:d2:1e:81:23:6d:03:cc:97:
47:b0:7e:6c:28:eb:f7:6e:33:5a:8e:91:04:21:72:
0e:86:9a:54:2d:17:94:9f:dd:10:10:ac:5d:5c:50:
34:18:be:dc:64:6f:6e:05:e4:c0:bd:77:7a:5e:8e:
a0:77:e6:50:fd:9c:e8:48:c6:05:7d:e7:0b:eb:67:
e9:2a:0c:90:41:e0:37:a0:05:c4:3c:f1:22:2c:7f:
5c:13:59:4a:b9:dc:46:10:80:88:f3:1c:17:20:ed:
55:ad:63:15:31:c8:f0:bb:b3:68:e3:2f:67:92:6d:
60:79:ff:7e:3f:2f:50:d8:a4:4a:4f:52:c2:ad:b8:
98:91:64:29:90:fb:b3:1e:f5:6d:1f:1b:74:82:73:
89:22:c9:01:ce:cd:cc:21:02:ae:3c:85:97:ac:6d:
a5:87:50:b3:9f:b2:e8:6b:12:56:a1:fb:3e:52:42:
c4:13:9c:ae:d3:28:fb:15:cd:74:91:a4:7e:71:f2:
da:e8:22:35:71:59:30:2d:84:28:75:ff:bc:f1:d8:
7f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CD:7E:24:FE:EA:82:2C:F3:F9:C7:9E:EB:61:99:64:34:FC:6B:75
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a383530303a3a2f34302d3430203d3e203531333936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8500::/40
Signature Algorithm: sha256WithRSAEncryption
94:99:3d:24:6b:82:b7:72:84:71:fe:1d:9a:fd:a2:4f:16:5c:
75:a8:4d:9d:a9:a5:25:a6:65:35:8d:d7:27:65:0a:81:0c:9f:
5e:68:49:61:00:f2:7b:ac:ce:63:f8:0c:36:9c:d0:b2:d6:6f:
14:a4:56:b8:05:48:01:e1:c7:ff:7c:62:b2:af:dc:a0:c9:b6:
f4:28:6d:bc:37:0b:55:c9:41:65:8a:0c:8a:b6:0c:8d:62:2f:
55:36:66:27:0b:99:3c:65:9f:61:e1:fa:9b:12:15:1e:8c:6b:
b1:10:cb:c1:d0:cf:d2:f4:df:da:98:73:d4:40:70:5b:86:bf:
49:59:6b:9f:bf:42:69:51:6e:06:e0:8a:78:66:a5:13:7d:06:
1f:74:88:4a:9a:21:ec:d5:c9:d4:f5:0e:2b:d6:c3:57:f1:a5:
e5:f1:b5:35:eb:c9:67:85:f8:ab:e4:02:8c:2e:77:0f:31:03:
64:d9:ab:13:95:e8:5c:68:23:01:10:4c:db:76:15:51:00:5e:
27:0f:b4:ac:f4:a1:72:85:12:a2:38:42:f4:de:02:07:01:ac:
2c:38:11:5b:96:d3:87:a8:5b:26:bf:c5:2c:23:6a:5b:20:a5:
d8:75:7e:05:3e:f0:35:fc:97:4c:e9:5d:27:2e:12:96:69:49:
c2:52:8f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:01:24 2024 by rpki-client on console-ams.rpki-client.org