Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/5/326131333a633030373a383031353a3a2f34382d3438203d3e20323032313531.roa
File: 326131333a633030373a383031353a3a2f34382d3438203d3e20323032313531.roa (raw, json)
Hash identifier: mrQqyvWG+EkvY6JMQ1yluX3o0it9LH1g2xX/aUwi8Rc=
Subject key identifier: 44:0A:99:77:C1:0A:F0:D6:03:4E:7E:FF:F5:C4:9E:34:10:B5:45:F2
Certificate issuer: /CN=AD4A224A9565F67E4914E6F8C2B3C34303C9C875
Certificate serial: 161B49D7E61D587F0408C89716EBC53C84E2E276
Authority key identifier: AD:4A:22:4A:95:65:F6:7E:49:14:E6:F8:C2:B3:C3:43:03:C9:C8:75
Authority info access: rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
Subject info access: rsync://rpki.co/repo/AS945/5/326131333a633030373a383031353a3a2f34382d3438203d3e20323032313531.roa
Signing time: Mon 11 Mar 2024 04:13:50 +0000
ROA not before: Mon 11 Mar 2024 04:08:50 +0000
ROA not after: Mon 10 Mar 2025 04:13:50 +0000
asID: 202151
IP address blocks: 2a13:c007:8015::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.crl
rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.mft
rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.crl
rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.mft
rsync://rpki.ripe.net/repository/DEFAULT/RCw1Skg6i3DYOdP3mM2HBoTwIYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 May 2024 15:36:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:1b:49:d7:e6:1d:58:7f:04:08:c8:97:16:eb:c5:3c:84:e2:e2:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD4A224A9565F67E4914E6F8C2B3C34303C9C875
Validity
Not Before: Mar 11 04:08:50 2024 GMT
Not After : Mar 10 04:13:50 2025 GMT
Subject: CN=440A9977C10AF0D6034E7EFFF5C49E3410B545F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:b3:1e:a8:44:c9:3b:32:e9:62:8b:21:0b:6f:
93:75:4f:d6:86:3a:74:bf:4a:a1:ef:20:22:10:39:
f8:5d:15:2a:eb:04:07:1c:8d:bf:eb:2b:36:18:75:
d1:7d:25:60:11:ad:ae:65:8d:0a:15:68:ed:cb:3e:
8d:3e:71:a2:84:42:b3:59:ac:2c:b5:1d:76:2e:96:
af:f1:a6:94:12:99:e1:25:e3:5e:3c:bd:d0:ba:76:
b8:f2:8e:76:77:22:3a:c5:5c:d8:60:3b:22:73:2b:
1c:e2:3d:99:aa:56:98:cd:ce:d7:64:3e:a3:8f:7d:
e3:cd:c3:d5:6e:c7:e0:a9:0d:64:c5:4d:53:14:a7:
c2:c7:54:c6:02:80:59:14:75:db:52:e9:cd:dc:28:
d4:23:0a:e2:eb:8c:49:17:5e:9a:eb:67:96:11:00:
bc:73:c1:ee:a8:3a:cc:2e:40:02:5f:fb:3e:bc:a2:
50:87:be:ab:17:ae:d4:01:3a:15:4d:7a:a8:d9:c6:
8e:d4:63:cf:b5:16:6c:c2:c7:62:f4:b5:fe:f3:07:
f6:b4:0c:8b:0b:b3:f6:d0:d0:92:82:63:40:e8:30:
da:dc:0f:a0:0b:6c:9f:9e:6b:12:fb:ca:86:03:81:
78:d1:9e:86:d9:ac:ad:61:ac:4b:40:61:fb:4f:a5:
16:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:0A:99:77:C1:0A:F0:D6:03:4E:7E:FF:F5:C4:9E:34:10:B5:45:F2
X509v3 Authority Key Identifier:
keyid:AD:4A:22:4A:95:65:F6:7E:49:14:E6:F8:C2:B3:C3:43:03:C9:C8:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/5/326131333a633030373a383031353a3a2f34382d3438203d3e20323032313531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c007:8015::/48
Signature Algorithm: sha256WithRSAEncryption
00:a6:ba:40:37:07:bd:76:2f:8f:22:c4:f3:c7:1f:b4:5e:a2:
db:ad:59:f7:90:18:01:95:7c:0d:15:51:80:dc:cd:a0:2c:4c:
3c:3c:a8:b8:a6:d1:68:c0:b7:02:68:9e:94:c8:e6:43:8c:b3:
34:4e:31:c3:7e:73:1d:13:f9:fa:e2:51:41:3f:be:aa:4f:5c:
07:e1:0c:ce:8b:e6:04:52:89:92:f0:aa:c1:a6:0a:0b:73:90:
51:6a:2d:08:19:96:a7:6f:82:fa:52:1d:09:24:2b:60:49:e0:
c4:66:ae:c9:62:bc:34:cc:bd:f5:99:eb:0b:94:4c:49:68:41:
94:6a:cb:ab:33:31:1c:95:53:44:4a:f8:0f:c7:56:d1:fb:2f:
e9:dd:2e:69:ba:e7:37:fc:57:6c:41:a7:74:7e:72:da:8c:15:
cc:1c:27:e8:8c:54:9a:d2:9e:03:c4:38:b7:d5:e6:ea:50:20:
8f:13:43:f3:41:de:8d:37:d9:1e:36:43:04:4e:73:1d:e4:bf:
e3:6c:2c:8c:ab:8b:2d:dc:8f:b1:0d:e9:d3:42:dc:3f:34:fc:
ed:4a:d3:6d:81:5d:ee:80:f9:23:bd:22:ed:22:a6:ab:16:8f:
d6:65:8e:c3:18:bb:07:1c:d9:24:85:fd:01:92:d1:2f:ea:fa:
04:37:84:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:40:57 2024 by rpki-client on console-ams.rpki-client.org