Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa
File: 326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa (raw, json)
Hash identifier: rORxB7oUDjglfQXiUWNvBE3yDqKJLQr+EBAbAD21Urk=
Subject key identifier: 83:24:D4:17:ED:31:94:2F:23:FF:4A:06:21:9B:FE:60:3F:36:86:C1
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 61F289D10F269BD8D3B9A10F95AF445B53680784
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa
Signing time: Tue 17 Oct 2023 16:13:33 +0000
ROA not before: Tue 17 Oct 2023 16:08:33 +0000
ROA not after: Tue 15 Oct 2024 16:13:33 +0000
asID: 203913
IP address blocks: 2a12:dd47:8800::/39 maxlen: 39
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:f2:89:d1:0f:26:9b:d8:d3:b9:a1:0f:95:af:44:5b:53:68:07:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:33 2023 GMT
Not After : Oct 15 16:13:33 2024 GMT
Subject: CN=8324D417ED31942F23FF4A06219BFE603F3686C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:13:bb:fe:2e:25:0b:79:8b:78:0f:ed:39:a2:
da:06:c3:dc:1d:ad:c9:17:4a:0b:17:c6:ed:2a:4d:
c2:23:d0:f3:a9:a7:47:b2:d7:58:99:f1:44:90:8e:
27:75:3c:4c:6a:2e:bd:f9:67:f6:dd:a4:51:5a:fb:
b0:43:60:53:14:ca:5a:9b:4c:d4:93:a4:08:f3:26:
6a:c4:89:42:ce:e9:95:db:54:5d:ca:7b:7d:4c:a2:
c2:2e:ac:c3:34:d9:c5:07:44:92:43:7b:82:e7:e8:
37:30:36:9a:cd:61:51:3a:1c:c8:c9:2b:3f:d4:b2:
53:49:8a:e3:c7:eb:5e:70:11:f7:f5:32:84:f8:8a:
2d:76:66:59:7c:67:73:9d:9b:b4:f2:53:22:bd:e8:
ce:98:04:7d:fb:2c:b8:e7:43:3e:6f:f1:ba:00:8f:
38:68:4b:61:9e:ab:f4:d7:36:05:6a:e3:6b:e1:e9:
b7:17:a2:1f:5c:a9:6b:6c:b7:ab:d0:f8:5e:ef:75:
49:85:06:bb:6d:f5:90:2c:01:e9:94:2e:1d:ba:76:
b8:00:40:91:58:0d:e8:15:8c:d7:1e:fa:2d:bc:19:
6f:80:4c:c7:62:c9:90:5b:b7:eb:19:6b:e9:b1:91:
10:1e:b4:a7:64:c7:6e:a0:da:70:bc:0d:18:f5:d5:
77:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:24:D4:17:ED:31:94:2F:23:FF:4A:06:21:9B:FE:60:3F:36:86:C1
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8800::/39
Signature Algorithm: sha256WithRSAEncryption
31:57:c3:a6:17:cc:e1:c0:f1:82:43:a5:96:bb:91:50:0b:54:
bd:d5:ce:aa:a3:40:68:0f:b4:ad:6a:78:6d:e8:52:60:75:45:
1a:5a:82:3c:88:48:26:3f:46:e8:11:52:00:cc:24:50:5f:f1:
60:42:51:c9:10:45:4a:81:74:b3:d9:ea:b4:01:a1:17:0e:07:
0f:6b:c7:c3:6d:22:da:c9:2f:62:51:13:bd:25:7e:01:0f:1a:
47:3d:97:ea:8e:c7:45:d1:c2:f3:f2:25:87:b3:32:2e:5c:44:
8c:5d:ea:41:15:df:7e:5a:c3:d6:3f:68:bd:36:2f:06:a2:48:
46:87:64:99:04:fe:84:01:fd:fd:78:51:da:b9:ef:86:d3:56:
af:9b:71:f7:1b:47:9c:74:03:11:73:e0:18:b9:ee:32:a7:e8:
ee:06:0f:51:41:8d:c6:a7:65:a1:40:51:fa:f2:2f:14:c2:eb:
62:e8:9d:9f:21:92:c4:75:06:95:d6:7b:de:1a:e9:cb:9c:40:
27:81:b5:a8:79:03:12:5f:4c:b6:a7:36:cf:12:ae:01:da:00:
32:4c:a5:64:42:0b:2b:d0:32:85:41:5b:0c:5c:00:8f:0a:9d:
f6:0b:e7:a6:e8:f2:3f:d5:91:b3:ac:bc:05:6e:6c:23:a6:ad:
85:cd:9e:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:01:24 2024 by rpki-client on console-ams.rpki-client.org