Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/5/326131333a633030373a383031373a3a2f34382d3438203d3e20313939313736.roa
File: 326131333a633030373a383031373a3a2f34382d3438203d3e20313939313736.roa (raw, json)
Hash identifier: EaFzF8lrKBdIrcgaHhP+juxLgCk3lK8vlOLMSlgYO4g=
Subject key identifier: 43:0C:60:DD:DB:36:E1:16:A5:BF:92:4D:63:A1:23:0F:23:4D:10:E4
Certificate issuer: /CN=AD4A224A9565F67E4914E6F8C2B3C34303C9C875
Certificate serial: 6713ECF76B865FEF69FEED5249C5FB2C3CC6ECFF
Authority key identifier: AD:4A:22:4A:95:65:F6:7E:49:14:E6:F8:C2:B3:C3:43:03:C9:C8:75
Authority info access: rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
Subject info access: rsync://rpki.co/repo/AS945/5/326131333a633030373a383031373a3a2f34382d3438203d3e20313939313736.roa
Signing time: Thu 25 Apr 2024 19:27:04 +0000
ROA not before: Thu 25 Apr 2024 19:22:04 +0000
ROA not after: Thu 24 Apr 2025 19:27:04 +0000
asID: 199176
IP address blocks: 2a13:c007:8017::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.crl
rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.mft
rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.crl
rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.mft
rsync://rpki.ripe.net/repository/DEFAULT/RCw1Skg6i3DYOdP3mM2HBoTwIYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 22:47:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:13:ec:f7:6b:86:5f:ef:69:fe:ed:52:49:c5:fb:2c:3c:c6:ec:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD4A224A9565F67E4914E6F8C2B3C34303C9C875
Validity
Not Before: Apr 25 19:22:04 2024 GMT
Not After : Apr 24 19:27:04 2025 GMT
Subject: CN=430C60DDDB36E116A5BF924D63A1230F234D10E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cf:65:94:4e:19:31:52:4b:d4:26:59:a1:01:
50:08:6c:c9:7c:09:bd:6f:4b:b3:3f:12:db:f2:0c:
33:1b:6c:14:49:72:06:d5:f8:dd:bd:02:62:24:e4:
40:79:c2:b5:ec:6c:94:6a:24:12:37:50:3f:34:de:
2b:4b:06:2f:56:1f:72:c5:80:16:6a:a1:7b:8b:14:
69:e7:19:ef:f2:81:24:ad:7f:e8:a9:8d:f0:19:8a:
58:c3:11:1c:63:77:d8:68:f2:7f:f0:99:65:2d:77:
17:27:b5:4b:ee:ce:1d:de:c5:16:95:8d:62:a6:20:
65:76:31:af:3c:82:79:74:0e:1f:44:a5:ba:36:72:
fe:5f:37:aa:c2:a9:34:2f:32:7f:53:a2:23:1f:6e:
3f:b4:2c:68:b1:b9:f7:7f:d9:5c:2a:bf:f5:5d:a6:
7c:90:7f:76:3a:f7:ef:3e:2a:a8:61:dc:b0:16:7a:
d9:fd:ee:f9:87:5a:f4:15:48:5c:29:b5:01:12:5d:
13:5c:16:c3:b8:97:80:1c:49:ea:0c:e6:1b:43:42:
ca:4d:67:59:a7:ec:5b:31:12:d9:f5:3d:0b:13:9e:
d3:ff:55:c5:1e:e1:b5:64:93:ec:97:f9:61:92:88:
37:c2:dd:99:c6:c1:a0:cf:6d:b2:c1:68:87:3a:60:
90:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:0C:60:DD:DB:36:E1:16:A5:BF:92:4D:63:A1:23:0F:23:4D:10:E4
X509v3 Authority Key Identifier:
keyid:AD:4A:22:4A:95:65:F6:7E:49:14:E6:F8:C2:B3:C3:43:03:C9:C8:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/5/326131333a633030373a383031373a3a2f34382d3438203d3e20313939313736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c007:8017::/48
Signature Algorithm: sha256WithRSAEncryption
9c:55:2e:e7:38:a5:0f:5d:94:aa:68:c2:79:64:fc:6e:0a:38:
3e:e7:df:0b:4f:0e:d1:7c:2f:b5:d0:9a:66:33:4b:75:d5:8c:
93:87:af:24:07:6e:c4:76:17:08:56:09:a5:44:eb:7d:5b:dc:
a3:0b:10:85:e1:d1:ad:7f:15:c4:6a:eb:75:c3:ba:7c:b2:c8:
ec:e9:85:06:63:a8:4d:46:e1:60:8c:e8:a7:f6:82:da:35:d8:
54:77:bc:4b:77:dc:37:ea:42:c6:8e:84:7a:bc:42:88:db:cd:
e4:9f:9f:e0:da:d2:90:b2:f7:97:e2:ea:ba:1d:dc:90:40:47:
8d:ef:74:8c:b2:93:ee:4f:27:2e:76:73:1c:ae:ef:d3:0c:df:
f5:11:09:ef:85:85:ee:30:8f:91:97:41:68:8e:d2:f1:ab:a2:
60:83:64:9a:04:ea:89:f4:b7:aa:b5:a9:1e:45:a6:04:0a:f9:
9a:53:3b:24:9a:25:cb:ee:ff:e5:c3:81:b3:69:f4:4a:49:24:
9c:87:73:75:35:f6:4d:04:88:ea:a7:54:36:e8:63:1f:a1:8b:
91:ef:f8:44:8b:13:ad:75:b5:95:16:42:1d:ba:9b:6c:95:5f:
47:89:34:5c:a7:98:79:6c:94:ff:41:49:2a:c7:ff:40:9e:60:
51:1b:40:25
-----BEGIN CERTIFICATE-----
MIIEyjCCA7KgAwIBAgIUZxPs92uGX+9p/u1SScX7LDzG7P8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUQ0QTIyNEE5NTY1RjY3RTQ5MTRFNkY4QzJCM0MzNDMw
M0M5Qzg3NTAeFw0yNDA0MjUxOTIyMDRaFw0yNTA0MjQxOTI3MDRaMDMxMTAvBgNV
BAMTKDQzMEM2MEREREIzNkUxMTZBNUJGOTI0RDYzQTEyMzBGMjM0RDEwRTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7z2WUThkxUkvUJlmhAVAIbMl8
Cb1vS7M/EtvyDDMbbBRJcgbV+N29AmIk5EB5wrXsbJRqJBI3UD803itLBi9WH3LF
gBZqoXuLFGnnGe/ygSStf+ipjfAZiljDERxjd9ho8n/wmWUtdxcntUvuzh3exRaV
jWKmIGV2Ma88gnl0Dh9Epbo2cv5fN6rCqTQvMn9ToiMfbj+0LGixufd/2Vwqv/Vd
pnyQf3Y69+8+Kqhh3LAWetn97vmHWvQVSFwptQESXRNcFsO4l4AcSeoM5htDQspN
Z1mn7FsxEtn1PQsTntP/VcUe4bVkk+yX+WGSiDfC3ZnGwaDPbbLBaIc6YJC/AgMB
AAGjggHUMIIB0DAdBgNVHQ4EFgQUQwxg3ds24Ralv5JNY6EjDyNNEOQwHwYDVR0j
BBgwFoAUrUoiSpVl9n5JFOb4wrPDQwPJyHUwDgYDVR0PAQH/BAQDAgeAMFoGA1Ud
HwRTMFEwT6BNoEuGSXJzeW5jOi8vcnBraS5jby9yZXBvL0FTOTQ1LzUvQUQ0QTIy
NEE5NTY1RjY3RTQ5MTRFNkY4QzJCM0MzNDMwM0M5Qzg3NS5jcmwwZQYIKwYBBQUH
AQEEWTBXMFUGCCsGAQUFBzAChklyc3luYzovL2Rldi50dy9ycGtpL0F1Z3VzdC8x
L0FENEEyMjRBOTU2NUY2N0U0OTE0RTZGOEMyQjNDMzQzMDNDOUM4NzUuY2VyMH0G
CCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5bmM6Ly9ycGtpLmNvL3JlcG8v
QVM5NDUvNS8zMjYxMzEzMzNhNjMzMDMwMzczYTM4MzAzMTM3M2EzYTJmMzQzODJk
MzQzODIwM2QzZTIwMzEzOTM5MzEzNzM2LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG
AQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKhPAB4AXMA0GCSqG
SIb3DQEBCwUAA4IBAQCcVS7nOKUPXZSqaMJ5ZPxuCjg+598LTw7RfC+10JpmM0t1
1YyTh68kB27EdhcIVgmlROt9W9yjCxCF4dGtfxXEaut1w7p8ssjs6YUGY6hNRuFg
jOin9oLaNdhUd7xLd9w36kLGjoR6vEKI283kn5/g2tKQsveX4uq6HdyQQEeN73SM
spPuTycudnMcru/TDN/1EQnvhYXuMI+Rl0FojtLxq6Jgg2SaBOqJ9LeqtakeRaYE
CvmaUzskmiXL7v/lw4GzafRKSSSch3N1NfZNBIjqp1Q26GMfoYuR7/hEixOtdbWV
FkIduptslV9HiTRcp5h5bJT/QUkqx/9AnmBRG0Al
-----END CERTIFICATE-----
Generated at Wed May 8 02:23:15 2024 by rpki-client on console-ams.rpki-client.org