Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/5/326131333a633030373a383430303a3a2f34302d3438203d3e20323135383535.roa
File: 326131333a633030373a383430303a3a2f34302d3438203d3e20323135383535.roa (raw, json)
Hash identifier: k3DAICRNG4L8ICdD530CheDJJDMW9A/RYUSZEppXTIA=
Subject key identifier: E7:19:32:15:54:57:E5:A9:C5:76:6C:9C:97:D1:2D:4B:DA:1C:73:46
Certificate issuer: /CN=AD4A224A9565F67E4914E6F8C2B3C34303C9C875
Certificate serial: 4EFF26B2F6BC0AB10E7DAC8412615F91F6AD08D9
Authority key identifier: AD:4A:22:4A:95:65:F6:7E:49:14:E6:F8:C2:B3:C3:43:03:C9:C8:75
Authority info access: rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
Subject info access: rsync://rpki.co/repo/AS945/5/326131333a633030373a383430303a3a2f34302d3438203d3e20323135383535.roa
Signing time: Sun 17 Mar 2024 18:04:17 +0000
ROA not before: Sun 17 Mar 2024 17:59:17 +0000
ROA not after: Sun 16 Mar 2025 18:04:17 +0000
asID: 215855
IP address blocks: 2a13:c007:8400::/40 maxlen: 48
Validation: OK
Signature path: rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.crl
rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.mft
rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.crl
rsync://dev.tw/rpki/August/1/442C354A483A8B70D839D3F798CD870684F02186.mft
rsync://rpki.ripe.net/repository/DEFAULT/RCw1Skg6i3DYOdP3mM2HBoTwIYY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 08 May 2024 22:47:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:ff:26:b2:f6:bc:0a:b1:0e:7d:ac:84:12:61:5f:91:f6:ad:08:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD4A224A9565F67E4914E6F8C2B3C34303C9C875
Validity
Not Before: Mar 17 17:59:17 2024 GMT
Not After : Mar 16 18:04:17 2025 GMT
Subject: CN=E71932155457E5A9C5766C9C97D12D4BDA1C7346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:68:7a:ac:16:f3:e4:aa:77:71:94:57:a4:48:
83:f1:24:b0:2b:79:04:0d:1f:1b:40:02:9c:88:0e:
38:dd:df:b8:f3:8b:82:35:18:f7:63:a4:2d:32:a4:
67:af:e3:dd:13:9c:3f:b1:ef:38:72:28:4e:23:c1:
65:18:c1:d4:a7:d2:bd:bf:30:4b:e3:24:a0:92:bc:
11:fe:e9:40:50:a9:22:4d:53:58:66:24:51:3e:af:
13:8c:32:b3:8f:1f:40:54:25:d2:33:75:25:00:dc:
e8:3f:97:f4:13:b6:39:fc:d6:0e:6f:d1:9f:6f:9a:
2b:47:17:2a:2c:ac:45:ee:6e:e9:15:c1:e5:61:7c:
c3:d6:ae:3d:b0:0b:64:92:72:ad:4a:76:43:46:90:
23:a3:85:79:6f:9c:aa:47:70:cb:97:d0:f6:db:2e:
30:dc:bd:91:75:cd:a9:7f:01:f0:7a:74:28:d1:11:
14:5d:8d:84:7c:f5:26:92:fe:bc:12:2d:40:b7:da:
11:92:48:90:f8:b2:5c:4b:83:54:59:5b:ed:cb:6f:
b3:30:8c:7b:c1:3e:c1:ac:d2:fa:8a:5a:69:c0:bf:
3b:93:63:3d:26:b4:62:85:c1:59:4e:ec:61:cf:16:
7a:7c:30:29:3b:dc:0f:96:87:58:86:a2:c7:14:43:
15:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:19:32:15:54:57:E5:A9:C5:76:6C:9C:97:D1:2D:4B:DA:1C:73:46
X509v3 Authority Key Identifier:
keyid:AD:4A:22:4A:95:65:F6:7E:49:14:E6:F8:C2:B3:C3:43:03:C9:C8:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/5/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/1/AD4A224A9565F67E4914E6F8C2B3C34303C9C875.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/5/326131333a633030373a383430303a3a2f34302d3438203d3e20323135383535.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a13:c007:8400::/40
Signature Algorithm: sha256WithRSAEncryption
39:a2:5b:88:ec:dc:b1:1a:29:72:3d:86:0a:1a:aa:80:8f:86:
35:8f:c4:5c:05:20:4b:a6:25:33:20:b6:e4:49:f7:52:bc:95:
b7:d1:5f:3e:1f:98:2e:91:af:1e:ef:b1:cc:05:fb:28:07:fd:
78:b3:b9:73:01:cf:05:53:30:ac:19:0d:f8:6a:bd:7d:2d:4a:
91:aa:d3:41:f7:4b:18:d3:65:71:4f:9c:1b:6a:a8:48:6a:51:
12:03:92:71:5e:b6:06:6e:0b:ab:a9:69:ca:46:fb:29:3c:15:
e7:f3:51:74:dd:a9:e1:f1:4b:d6:f0:f8:52:2d:2c:91:4d:fe:
50:f8:f0:d2:3b:69:43:95:57:ea:05:88:da:67:a0:7b:b5:42:
e1:c5:58:4d:fe:3b:fc:12:64:b8:e9:a2:65:17:90:cc:fd:44:
9b:8e:9b:8a:7f:44:4f:a0:13:21:a1:d0:0c:9a:20:bd:6c:9d:
c5:cc:7b:0c:53:38:3f:11:ee:e9:a8:6d:ab:7c:a6:6c:07:a6:
a2:25:74:15:74:d1:47:2b:7e:5a:9d:97:cc:2f:a3:8d:81:00:
2a:35:9e:11:0b:06:49:ca:75:bb:87:f9:ca:14:7a:55:b3:17:
a3:29:12:a7:94:c5:4c:2f:42:ba:57:56:99:e1:cf:84:e7:4c:
a4:f7:e6:60
-----BEGIN CERTIFICATE-----
MIIEyTCCA7GgAwIBAgIUTv8msva8CrEOfayEEmFfkfatCNkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUQ0QTIyNEE5NTY1RjY3RTQ5MTRFNkY4QzJCM0MzNDMw
M0M5Qzg3NTAeFw0yNDAzMTcxNzU5MTdaFw0yNTAzMTYxODA0MTdaMDMxMTAvBgNV
BAMTKEU3MTkzMjE1NTQ1N0U1QTlDNTc2NkM5Qzk3RDEyRDRCREExQzczNDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAaHqsFvPkqndxlFekSIPxJLAr
eQQNHxtAApyIDjjd37jzi4I1GPdjpC0ypGev490TnD+x7zhyKE4jwWUYwdSn0r2/
MEvjJKCSvBH+6UBQqSJNU1hmJFE+rxOMMrOPH0BUJdIzdSUA3Og/l/QTtjn81g5v
0Z9vmitHFyosrEXubukVweVhfMPWrj2wC2SScq1KdkNGkCOjhXlvnKpHcMuX0Pbb
LjDcvZF1zal/AfB6dCjRERRdjYR89SaS/rwSLUC32hGSSJD4slxLg1RZW+3Lb7Mw
jHvBPsGs0vqKWmnAvzuTYz0mtGKFwVlO7GHPFnp8MCk73A+Wh1iGoscUQxVhAgMB
AAGjggHTMIIBzzAdBgNVHQ4EFgQU5xkyFVRX5anFdmycl9EtS9occ0YwHwYDVR0j
BBgwFoAUrUoiSpVl9n5JFOb4wrPDQwPJyHUwDgYDVR0PAQH/BAQDAgeAMFoGA1Ud
HwRTMFEwT6BNoEuGSXJzeW5jOi8vcnBraS5jby9yZXBvL0FTOTQ1LzUvQUQ0QTIy
NEE5NTY1RjY3RTQ5MTRFNkY4QzJCM0MzNDMwM0M5Qzg3NS5jcmwwZQYIKwYBBQUH
AQEEWTBXMFUGCCsGAQUFBzAChklyc3luYzovL2Rldi50dy9ycGtpL0F1Z3VzdC8x
L0FENEEyMjRBOTU2NUY2N0U0OTE0RTZGOEMyQjNDMzQzMDNDOUM4NzUuY2VyMH0G
CCsGAQUFBwELBHEwbzBtBggrBgEFBQcwC4ZhcnN5bmM6Ly9ycGtpLmNvL3JlcG8v
QVM5NDUvNS8zMjYxMzEzMzNhNjMzMDMwMzczYTM4MzQzMDMwM2EzYTJmMzQzMDJk
MzQzODIwM2QzZTIwMzIzMTM1MzgzNTM1LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsG
AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKhPAB4QwDQYJKoZI
hvcNAQELBQADggEBADmiW4js3LEaKXI9hgoaqoCPhjWPxFwFIEumJTMgtuRJ91K8
lbfRXz4fmC6Rrx7vscwF+ygH/XizuXMBzwVTMKwZDfhqvX0tSpGq00H3SxjTZXFP
nBtqqEhqURIDknFetgZuC6upacpG+yk8FefzUXTdqeHxS9bw+FItLJFN/lD48NI7
aUOVV+oFiNpnoHu1QuHFWE3+O/wSZLjpomUXkMz9RJuOm4p/RE+gEyGh0AyaIL1s
ncXMewxTOD8R7umobat8pmwHpqIldBV00Ucrflqdl8wvo42BACo1nhELBknKdbuH
+coUelWzF6MpEqeUxUwvQrpXVpnhz4TnTKT35mA=
-----END CERTIFICATE-----
Generated at Wed May 8 02:23:15 2024 by rpki-client on console-ams.rpki-client.org