Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a646633303a3a2f34342d3438203d3e20323130353632.roa
File: 326131323a646434373a646633303a3a2f34342d3438203d3e20323130353632.roa (raw, json)
Hash identifier: j3cyzvHDXEoe1FE2g9XJTH/niycL1mr/sge2seOLXIU=
Subject key identifier: 3C:D0:44:0C:8D:61:DC:84:A0:B5:E3:10:91:8B:B6:82:88:E6:7B:C9
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 5CDC9638FCAC81EF533724EF6E5DC1611BBF0A78
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a646633303a3a2f34342d3438203d3e20323130353632.roa
Signing time: Tue 17 Oct 2023 16:13:27 +0000
ROA not before: Tue 17 Oct 2023 16:08:27 +0000
ROA not after: Tue 15 Oct 2024 16:13:27 +0000
asID: 210562
IP address blocks: 2a12:dd47:df30::/44 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 13:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:dc:96:38:fc:ac:81:ef:53:37:24:ef:6e:5d:c1:61:1b:bf:0a:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:27 2023 GMT
Not After : Oct 15 16:13:27 2024 GMT
Subject: CN=3CD0440C8D61DC84A0B5E310918BB68288E67BC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:45:fd:95:02:48:c6:1e:07:3a:2c:0a:ec:a9:
bc:55:1e:a5:16:52:b3:6b:47:b0:36:e6:d8:b2:16:
22:a8:ea:9f:86:6f:9b:8f:47:27:a4:50:08:f2:ec:
9d:e2:e7:5f:ab:8a:3f:01:e0:6a:a6:56:59:34:ce:
fb:c5:08:94:e3:6e:1d:5d:b4:49:2e:ce:0f:a7:1e:
7c:28:5c:be:ff:71:b4:f5:01:44:b8:93:da:26:64:
54:e6:5e:13:88:4d:2b:1b:4e:72:bd:89:56:f8:6a:
f5:99:98:50:8c:b2:dd:4f:74:49:70:79:0f:cf:87:
f3:19:6c:b4:fd:bb:60:ee:78:f3:aa:dd:50:a2:d9:
04:b2:d8:40:84:9c:dc:68:8f:54:2b:08:f2:6f:99:
6c:13:54:2e:0d:6d:94:04:72:0a:68:69:b1:14:2a:
91:50:bd:ec:e1:31:f7:cf:42:36:15:8e:70:90:76:
72:bd:fe:cd:b2:e9:29:fa:03:ad:e3:15:6b:5b:71:
d6:52:54:d3:c8:24:63:9c:fe:d7:0a:16:b0:69:0b:
1e:0c:8e:0b:59:b2:bc:42:43:c0:02:85:81:c2:a6:
d2:d6:67:2f:da:71:3f:00:02:d3:c7:6f:68:b7:2a:
4c:ad:ce:5d:f0:41:f1:a2:a6:75:5b:d3:27:c0:01:
10:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D0:44:0C:8D:61:DC:84:A0:B5:E3:10:91:8B:B6:82:88:E6:7B:C9
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a646633303a3a2f34342d3438203d3e20323130353632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:df30::/44
Signature Algorithm: sha256WithRSAEncryption
aa:66:93:10:b2:30:8a:f9:7e:2d:a3:e4:d1:0e:9b:7a:c6:5b:
16:27:f7:35:a2:a7:1e:0c:43:13:c1:6e:51:cc:55:a1:20:60:
41:34:a9:81:71:23:26:7a:81:44:3a:4e:09:5c:02:d9:7d:c3:
ff:bd:4a:a8:d1:34:ef:3a:25:a9:b3:58:25:da:92:b1:95:c1:
1a:52:b4:94:48:65:71:da:ed:e2:db:5d:ca:1a:e8:2b:3c:87:
dd:7d:58:05:9c:d8:af:9d:a7:f6:f5:02:7d:4f:00:db:bb:46:
99:6c:a0:de:12:0c:ef:50:16:7b:a5:69:d2:c8:ae:0f:8c:51:
b2:ea:50:b8:e0:42:6b:12:92:96:f1:dc:c4:e8:55:a9:e3:65:
55:40:27:e3:65:7a:fa:5d:e1:fa:29:bf:a4:ae:ae:03:1c:d3:
9f:ec:10:53:41:85:75:54:52:6a:67:ab:f9:6f:2d:f4:0e:24:
40:fa:48:31:c7:4d:e8:32:ec:a8:42:fb:31:d1:35:db:f3:ad:
cd:b5:27:2e:0c:83:b4:92:18:d4:be:98:ec:45:be:1d:3c:e7:
69:5c:48:30:ed:90:6a:a9:f4:2e:ff:d5:72:e8:1f:fd:ad:4b:
f1:9a:fe:bb:76:52:6f:a2:1e:a5:70:58:de:37:c3:2c:6f:99:
9b:3b:92:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:01:24 2024 by rpki-client on console-ams.rpki-client.org