Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/3/3231362e3134362e32392e302f32342d3234203d3e203130313033.roa
File: 3231362e3134362e32392e302f32342d3234203d3e203130313033.roa (raw, json)
Hash identifier: IIOzdNhosnCngZ3PZQAEXUTB3Rr+uXaqVTLKoV+NyPc=
Subject key identifier: 23:31:5F:E8:B2:D0:FF:13:77:07:EF:93:38:72:36:77:9D:87:8F:C3
Certificate issuer: /CN=D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6
Certificate serial: 6D6E105513A14DDC17403F77BB6FCFE6A28E9B62
Authority key identifier: D9:9E:36:77:F8:E2:DE:F2:A5:83:7C:3D:4A:76:86:C7:C8:9B:51:C6
Authority info access: rsync://dev.tw/rpki/August/0/D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6.cer
Subject info access: rsync://rpki.co/repo/AS945/3/3231362e3134362e32392e302f32342d3234203d3e203130313033.roa
Signing time: Fri 14 Jun 2024 06:41:24 +0000
ROA not before: Fri 14 Jun 2024 06:36:24 +0000
ROA not after: Fri 13 Jun 2025 06:41:24 +0000
asID: 10103
IP address blocks: 216.146.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:6e:10:55:13:a1:4d:dc:17:40:3f:77:bb:6f:cf:e6:a2:8e:9b:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6
Validity
Not Before: Jun 14 06:36:24 2024 GMT
Not After : Jun 13 06:41:24 2025 GMT
Subject: CN=23315FE8B2D0FF137707EF93387236779D878FC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:95:6d:0c:39:8e:d6:9f:8e:86:4a:a9:5d:6b:
fd:61:68:f6:9d:ef:cf:a9:25:4c:96:8a:55:1d:2e:
82:ab:d2:94:f2:3e:59:cb:e2:36:1f:10:0d:32:c2:
6b:cc:de:e8:b0:23:73:f7:9f:64:6b:c1:2a:42:8e:
08:95:a4:f2:c1:b4:cd:6f:8a:a8:d7:84:9b:c4:21:
60:34:df:00:b2:fe:5b:ab:d5:6e:ea:a0:d4:61:d8:
63:fd:c6:67:ce:0e:18:67:d5:3f:c8:9d:41:11:ef:
cf:bb:31:ef:79:84:a1:c3:a0:77:97:50:c8:ad:db:
a5:2c:f3:0f:25:2d:d5:ce:e7:31:48:9b:bb:5a:8b:
ec:0e:47:13:19:eb:8d:0a:fe:14:e0:3d:03:21:72:
52:32:86:13:01:43:31:7b:80:94:66:68:8b:c9:46:
67:72:cd:c9:85:5b:12:76:0e:0c:ad:c1:cc:11:9b:
fe:cd:a4:5c:2b:ad:97:40:7b:29:35:7f:b9:62:05:
a2:96:d5:c1:08:5d:3f:90:01:89:ed:c9:23:78:8e:
64:22:28:d6:ca:a0:28:17:ad:47:63:ca:95:28:20:
6f:2b:5a:83:c4:b9:98:c1:12:3f:99:2e:9e:24:e1:
85:79:32:bc:f0:25:58:b3:34:ac:75:c0:1d:b3:10:
b1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:31:5F:E8:B2:D0:FF:13:77:07:EF:93:38:72:36:77:9D:87:8F:C3
X509v3 Authority Key Identifier:
keyid:D9:9E:36:77:F8:E2:DE:F2:A5:83:7C:3D:4A:76:86:C7:C8:9B:51:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/3/D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/0/D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/3/3231362e3134362e32392e302f32342d3234203d3e203130313033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.146.29.0/24
Signature Algorithm: sha256WithRSAEncryption
66:d4:66:86:cc:a6:46:5c:04:08:71:f1:44:08:ec:0f:9a:f4:
a0:c4:59:df:9c:3b:64:92:10:b8:72:27:ec:72:eb:43:86:7a:
3b:b5:9e:93:9c:9c:45:2c:5a:02:19:a5:7d:25:7e:e7:eb:df:
d8:7d:91:de:26:55:f1:f2:f5:7d:74:14:d0:64:94:36:6c:9d:
44:df:1f:74:9c:93:fc:15:79:de:01:fc:7b:02:3e:d1:e2:be:
8e:2e:0c:90:7f:66:b0:d0:c4:ff:ea:50:8f:e4:10:70:98:d2:
83:f9:26:d5:92:6a:1d:ce:57:e7:bd:07:52:04:9b:15:86:b4:
97:ea:4c:a3:c2:55:e3:56:67:13:00:56:24:ef:97:97:7f:d1:
08:a2:1d:14:a2:20:3c:ae:c4:e3:69:02:59:e8:78:9b:6d:86:
6d:fc:11:c4:8d:87:c9:ef:b8:9a:86:4a:9e:7f:ae:61:0b:eb:
08:d4:38:fc:d0:66:65:6c:e8:31:4a:87:b3:e7:d3:f8:48:7a:
83:42:a3:69:7c:47:c3:26:61:b2:46:2d:07:85:cf:a0:32:e2:
17:e3:b9:e7:3b:9d:d0:94:ff:c9:0d:3c:4e:e8:31:14:12:3d:
b4:ef:f1:4c:fe:81:ce:27:fd:7f:cf:d7:be:fe:fe:bb:b4:e1:
d4:d2:b8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:24:52 2025 by rpki-client