Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/3/3231362e3134362e32392e302f32342d3234203d3e20313937353337.roa
File: 3231362e3134362e32392e302f32342d3234203d3e20313937353337.roa (raw, json)
Hash identifier: tkThlYiWYXY7WT14ZoVkzmf91lRagba/8Sk3q0RJOSE=
Subject key identifier: F4:95:33:C9:00:F3:11:74:A0:F5:0E:DA:32:8D:57:74:97:FB:B4:4A
Certificate issuer: /CN=D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6
Certificate serial: 5BEFEF0D11141D7626ABA04CA36D56CF075F2B83
Authority key identifier: D9:9E:36:77:F8:E2:DE:F2:A5:83:7C:3D:4A:76:86:C7:C8:9B:51:C6
Authority info access: rsync://dev.tw/rpki/August/0/D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6.cer
Subject info access: rsync://rpki.co/repo/AS945/3/3231362e3134362e32392e302f32342d3234203d3e20313937353337.roa
Signing time: Fri 14 Jun 2024 06:40:50 +0000
ROA not before: Fri 14 Jun 2024 06:35:50 +0000
ROA not after: Fri 13 Jun 2025 06:40:50 +0000
asID: 197537
IP address blocks: 216.146.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:ef:ef:0d:11:14:1d:76:26:ab:a0:4c:a3:6d:56:cf:07:5f:2b:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6
Validity
Not Before: Jun 14 06:35:50 2024 GMT
Not After : Jun 13 06:40:50 2025 GMT
Subject: CN=F49533C900F31174A0F50EDA328D577497FBB44A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:45:9d:5c:79:be:d7:22:70:bd:57:29:b1:97:
02:40:f1:90:f3:18:1a:0b:ec:f1:8b:0a:4e:cd:35:
80:d0:75:ea:0c:95:c0:7e:86:df:69:e4:c9:b1:c7:
ae:e3:7c:76:01:4c:4e:99:9b:3d:60:e5:16:85:92:
72:fb:ec:86:ad:25:df:33:f4:d7:86:06:3c:a1:6b:
4a:40:1c:2d:6d:4b:48:71:30:aa:83:ea:34:f2:9e:
fa:2a:9e:88:48:40:68:84:c9:de:72:ed:21:e8:1d:
5b:e2:1b:0f:ff:84:4e:4f:a3:ef:24:c5:a5:9f:ef:
7d:dc:ce:d3:a2:91:5d:f9:f1:f9:b6:76:d4:80:aa:
c8:c0:dd:ad:33:10:95:24:d6:ba:35:57:26:f9:cb:
c1:e5:ce:6d:00:81:1d:fa:d1:bc:6d:21:3e:fd:45:
9b:94:f4:ea:39:d1:13:3c:54:48:c1:b4:b7:47:28:
89:8d:b4:71:df:51:d4:b6:33:76:e8:f1:73:6d:d2:
96:82:7e:f1:cd:36:03:df:b8:02:fd:e9:76:f1:f8:
1e:d5:dd:2a:d5:85:8f:86:49:41:58:01:e1:e7:28:
22:9f:37:53:9f:02:7c:c2:11:9a:e1:7d:be:cc:92:
a4:14:df:3a:26:b0:cb:b4:43:1d:a9:9c:3e:12:69:
eb:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:95:33:C9:00:F3:11:74:A0:F5:0E:DA:32:8D:57:74:97:FB:B4:4A
X509v3 Authority Key Identifier:
keyid:D9:9E:36:77:F8:E2:DE:F2:A5:83:7C:3D:4A:76:86:C7:C8:9B:51:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/3/D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/0/D99E3677F8E2DEF2A5837C3D4A7686C7C89B51C6.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/3/3231362e3134362e32392e302f32342d3234203d3e20313937353337.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
216.146.29.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:12:e8:9d:cf:04:22:47:1d:49:d9:86:18:60:3c:81:69:84:
73:f5:d4:20:f6:e5:73:0d:f5:a5:f9:14:18:28:26:d8:33:29:
5e:ff:9f:f2:41:be:12:38:43:aa:19:5d:aa:bc:aa:40:01:ff:
8f:fb:ae:77:69:40:aa:e4:9a:43:bd:af:d1:cf:b7:eb:3e:19:
71:c4:15:d3:ea:7f:72:8d:1d:0b:be:b9:a7:b2:f3:ea:1e:e6:
54:85:7a:a1:84:03:81:fa:17:60:79:14:0b:71:41:b7:7e:45:
05:e5:9a:b7:e8:88:df:07:74:d1:6c:79:6d:da:26:8e:cd:58:
e4:e0:b8:4c:f8:b5:3c:b5:17:5f:51:f3:29:55:be:5f:1b:07:
94:7c:53:16:ac:a4:9f:ef:89:bf:73:27:36:07:8a:34:72:73:
58:04:df:07:e7:ce:55:ef:65:b9:5f:95:da:8c:1b:2e:f8:34:
df:07:ca:30:3a:19:4c:3f:c4:83:a3:21:22:84:6d:71:35:8f:
1b:c1:60:aa:33:22:31:c6:1d:82:db:28:6b:67:d3:44:75:7d:
09:4c:62:2c:bf:49:80:a3:60:41:8a:71:97:91:79:be:e0:21:
c5:15:34:dd:dd:6e:d4:ea:9b:fa:62:0a:c5:3c:29:c3:97:fc:
19:42:e6:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 13:19:25 2025 by rpki-client