Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/14/326130353a646663363a393530303a3a2f34302d3438203d3e20323030353239.roa
File: 326130353a646663363a393530303a3a2f34302d3438203d3e20323030353239.roa (raw, json)
Hash identifier: ZfDGhnPbGXzKmB2OHeNeI4gY+FrcVZSfB51+uq5Fduk=
Subject key identifier: 3F:40:BA:58:86:60:41:AD:AA:57:9A:67:DF:CD:D6:CE:B6:AE:15:58
Certificate issuer: /CN=3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9
Certificate serial: 4C1771508C30E8D1F10D89D65FFA05F9ECB4462F
Authority key identifier: 3E:38:23:CF:F4:D4:1C:2C:6F:6B:3A:20:CC:DD:59:F6:EB:BE:AD:E9
Authority info access: rsync://dev.tw/rpki/August/13/3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9.cer
Subject info access: rsync://rpki.co/repo/AS945/14/326130353a646663363a393530303a3a2f34302d3438203d3e20323030353239.roa
Signing time: Sat 04 May 2024 19:18:37 +0000
ROA not before: Sat 04 May 2024 19:13:37 +0000
ROA not after: Sat 03 May 2025 19:18:37 +0000
asID: 200529
IP address blocks: 2a05:dfc6:9500::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:17:71:50:8c:30:e8:d1:f1:0d:89:d6:5f:fa:05:f9:ec:b4:46:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9
Validity
Not Before: May 4 19:13:37 2024 GMT
Not After : May 3 19:18:37 2025 GMT
Subject: CN=3F40BA58866041ADAA579A67DFCDD6CEB6AE1558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8e:fb:52:26:46:82:3a:2a:f6:39:2e:e4:2a:
23:34:70:9e:ca:a2:23:f8:cc:87:ee:ad:df:cb:9f:
43:d0:6c:21:64:41:99:4a:6a:38:91:18:61:43:f7:
d7:f3:30:ad:40:bf:4e:c0:d4:2f:72:33:88:78:ca:
25:ca:41:94:e7:cc:41:95:a0:5f:7b:9b:7d:db:23:
b4:f2:0f:c9:b8:e0:a9:5f:7b:65:c1:61:5b:fd:2a:
f1:c0:26:4e:a5:c7:62:66:38:2e:56:9f:a4:d0:a5:
55:96:98:3b:7d:8d:b6:60:77:79:05:fd:0c:b1:8f:
8f:aa:d6:53:41:72:d4:fd:98:fa:7b:8a:7f:0b:7f:
98:88:00:e9:63:42:54:f2:8f:83:c7:1d:cf:ae:57:
aa:8a:65:c8:2e:63:bf:00:30:b7:47:45:eb:bb:f2:
f1:b8:8d:fa:e6:78:f7:98:e4:f3:49:0b:f0:1f:4a:
ca:c7:39:01:d6:d8:de:08:d9:0c:9f:4f:d5:3a:f8:
9e:ef:25:91:09:b2:20:6d:de:df:22:04:7e:2e:97:
e8:8e:ba:7d:26:a1:0b:40:7c:9e:f2:d0:e9:46:a1:
e2:76:05:5d:c4:39:dd:21:fc:29:46:3f:c1:73:47:
ba:56:e9:d6:07:87:e9:cb:33:1b:d5:25:fd:14:1a:
ee:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:40:BA:58:86:60:41:AD:AA:57:9A:67:DF:CD:D6:CE:B6:AE:15:58
X509v3 Authority Key Identifier:
keyid:3E:38:23:CF:F4:D4:1C:2C:6F:6B:3A:20:CC:DD:59:F6:EB:BE:AD:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/14/3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/13/3E3823CFF4D41C2C6F6B3A20CCDD59F6EBBEADE9.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/14/326130353a646663363a393530303a3a2f34302d3438203d3e20323030353239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a05:dfc6:9500::/40
Signature Algorithm: sha256WithRSAEncryption
67:7a:06:71:23:16:1d:82:d5:62:c1:89:bf:ba:de:61:62:53:
ab:27:8b:cd:73:57:7c:29:09:4f:31:4e:6e:7b:6c:0c:11:9a:
e8:ef:b4:22:a4:7a:3e:0b:1d:90:a0:0d:7a:57:15:a6:d4:8f:
ff:e4:08:fc:cf:61:c2:69:b6:ff:6c:da:1c:db:d4:5c:7b:92:
67:a5:7c:e6:e9:7d:ff:9c:11:d7:97:cf:3a:53:f7:8a:aa:bf:
ed:90:1e:03:7b:ee:40:fc:c5:b5:f1:5f:f5:0e:1c:29:89:fd:
16:38:b3:1b:6b:66:78:3e:b2:c1:f0:eb:7d:d0:03:ea:49:e2:
51:67:7b:0f:38:dc:d2:67:ef:d5:48:97:78:b8:b3:af:a4:aa:
a5:e3:7e:75:f4:d6:75:0a:fc:ef:36:8b:04:0c:39:59:f3:71:
d9:2c:8f:53:c4:c0:64:29:a0:a7:cc:ad:b7:9e:ec:55:c7:d6:
0b:0f:8c:5a:a7:fa:f5:8a:24:b4:8e:8f:f3:9f:a5:78:b6:ed:
73:86:de:0d:01:99:75:3a:ed:df:d5:4d:b3:88:aa:ad:0d:dd:
61:0a:db:7c:17:dd:91:63:ec:b3:87:c0:25:cf:e7:c8:11:0f:
a4:c6:7b:59:25:6f:0a:86:35:4f:96:e2:0c:95:99:22:5c:12:
e8:95:bd:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 06:05:19 2024 by rpki-client on console-fra.rpki-client.org