Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/1/326131323a646434373a663030303a3a2f34302d3438203d3e20323031323137.roa
File: 326131323a646434373a663030303a3a2f34302d3438203d3e20323031323137.roa (raw, json)
Hash identifier: QUAXq3kN7bJhSqS9QRxZBBBHPV61PcTJvgKZz13oaSQ=
Subject key identifier: 65:B7:57:DF:EA:B7:DE:11:74:82:00:F0:CA:D5:23:1F:38:3E:1C:1F
Certificate issuer: /CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Certificate serial: 411B9891F3827DDD9502A7B004E24FBD9BED9C62
Authority key identifier: 66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
Authority info access: rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject info access: rsync://rpki.co/repo/AS945/1/326131323a646434373a663030303a3a2f34302d3438203d3e20323031323137.roa
Signing time: Tue 17 Oct 2023 16:13:33 +0000
ROA not before: Tue 17 Oct 2023 16:08:33 +0000
ROA not after: Tue 15 Oct 2024 16:13:33 +0000
asID: 201217
IP address blocks: 2a12:dd47:f000::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.mft
rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.crl
rsync://dev.tw/rpki/August/5/9D620B45C9098506AC4BF1184BEE6CDBE9D71C4C.mft
rsync://rpki.ripe.net/repository/DEFAULT/nWILRckJhQasS_EYS-5s2-nXHEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 05 May 2024 14:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:1b:98:91:f3:82:7d:dd:95:02:a7:b0:04:e2:4f:bd:9b:ed:9c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6604289C7E39E08E1AE1255CEE73C05BFD99F3E6
Validity
Not Before: Oct 17 16:08:33 2023 GMT
Not After : Oct 15 16:13:33 2024 GMT
Subject: CN=65B757DFEAB7DE11748200F0CAD5231F383E1C1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2f:c8:d9:4e:62:79:01:d0:1e:95:ce:91:21:
05:04:2a:da:dd:36:d1:75:82:a1:47:85:e5:ba:cc:
51:27:2e:90:74:a0:50:2b:08:6e:63:99:a0:ab:2b:
e8:1b:bc:c4:2f:f7:56:2b:95:a0:cc:a0:31:f6:ff:
12:11:d0:51:b7:58:00:e5:8b:55:02:69:cf:d7:9b:
35:a9:76:31:20:52:de:81:14:50:23:b5:c6:62:48:
22:46:88:00:ba:04:b1:61:d4:fc:b0:54:5d:60:6a:
f7:6c:28:ff:c1:e6:ab:d1:87:17:03:a6:f2:4c:0f:
d7:e5:6d:fc:b4:cd:ff:47:f4:d5:f0:0f:3f:6a:cd:
43:e6:50:76:0a:39:79:4c:a7:46:6b:53:63:f6:46:
f6:f4:0f:0b:f1:c0:19:c1:b0:b0:fd:0a:32:dd:aa:
81:73:d3:ea:3c:62:07:bb:93:7c:f4:b7:64:af:1d:
38:dd:50:4e:f8:d2:4f:fb:2b:69:13:9e:4c:1a:58:
35:27:f2:2e:54:1a:b1:d7:50:9e:ed:26:0f:07:e6:
17:4f:4a:b4:14:be:9c:e6:3c:9e:a5:7e:06:58:23:
ae:f8:cb:da:34:24:d4:38:42:72:5b:31:76:ad:51:
1a:be:ce:93:25:19:5a:41:00:09:da:c0:5f:36:69:
67:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:B7:57:DF:EA:B7:DE:11:74:82:00:F0:CA:D5:23:1F:38:3E:1C:1F
X509v3 Authority Key Identifier:
keyid:66:04:28:9C:7E:39:E0:8E:1A:E1:25:5C:EE:73:C0:5B:FD:99:F3:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/1/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/5/6604289C7E39E08E1AE1255CEE73C05BFD99F3E6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/1/326131323a646434373a663030303a3a2f34302d3438203d3e20323031323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:f000::/40
Signature Algorithm: sha256WithRSAEncryption
7e:9c:fc:80:36:b0:5a:9f:d6:98:dc:75:a2:87:56:c9:63:7a:
05:ec:0a:43:77:e0:e2:a2:4d:fc:9a:5b:e3:40:d2:c5:ff:35:
22:72:1b:4c:29:31:84:cf:fd:9d:76:d8:f9:96:45:e9:1b:2b:
33:ad:a9:bd:e3:c6:58:77:4f:4e:33:e2:81:ee:64:dd:55:c6:
e2:67:e0:70:de:d7:fc:c8:20:d3:b8:55:fa:cd:e1:22:a6:0c:
6e:61:0a:78:28:ef:0e:3c:c4:3c:77:a5:39:66:53:87:ab:35:
07:fa:d9:c3:d6:86:b8:ae:3d:67:c3:66:c0:70:f8:8d:9c:10:
b7:02:a5:18:69:3a:ca:fc:8c:e3:41:d5:83:fe:1e:7d:9f:13:
49:d3:f8:d9:62:1c:9c:b1:f4:7d:69:1e:b0:83:be:3b:3d:c4:
60:2e:ff:be:a4:bf:ea:c5:c4:f1:37:0b:6f:89:7c:47:3b:b7:
2b:d2:e3:2d:3b:e8:46:75:db:4a:b4:e2:5f:1c:46:6f:75:0c:
0a:8d:75:9e:f7:ee:02:4b:9b:c8:61:f5:b9:8c:c3:30:9a:03:
10:a9:8e:66:5a:47:b9:e2:39:a0:19:eb:85:a4:9c:e3:da:1f:
fd:0c:b1:07:ab:c2:f2:0a:7b:a0:79:f4:ff:7a:31:51:79:bb:
39:c2:53:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 4 20:40:11 2024 by rpki-client on console-fra.rpki-client.org