Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS945/7/32332e3134392e3234382e302f32342d3234203d3e20323032373336.roa
File: 32332e3134392e3234382e302f32342d3234203d3e20323032373336.roa (raw, json)
Hash identifier: d5QJdzDyOwXAMWI+gIVB/VJEz4f2CujRP1hc97360vI=
Subject key identifier: 1B:CD:F6:E6:B6:7B:39:E4:E1:86:0A:D4:46:7A:06:3F:38:01:F8:C3
Certificate issuer: /CN=8489863A432D851EFEA043950365EE23436FCF95
Certificate serial: 4A00C89D060273EB36EA37D9C61253296233BEFE
Authority key identifier: 84:89:86:3A:43:2D:85:1E:FE:A0:43:95:03:65:EE:23:43:6F:CF:95
Authority info access: rsync://dev.tw/rpki/August/8/8489863A432D851EFEA043950365EE23436FCF95.cer
Subject info access: rsync://rpki.co/repo/AS945/7/32332e3134392e3234382e302f32342d3234203d3e20323032373336.roa
Signing time: Mon 08 Apr 2024 19:03:50 +0000
ROA not before: Mon 08 Apr 2024 18:58:50 +0000
ROA not after: Mon 07 Apr 2025 19:03:50 +0000
asID: 202736
IP address blocks: 23.149.248.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:00:c8:9d:06:02:73:eb:36:ea:37:d9:c6:12:53:29:62:33:be:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8489863A432D851EFEA043950365EE23436FCF95
Validity
Not Before: Apr 8 18:58:50 2024 GMT
Not After : Apr 7 19:03:50 2025 GMT
Subject: CN=1BCDF6E6B67B39E4E1860AD4467A063F3801F8C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:e7:f0:03:ce:b5:b5:94:fc:96:fa:a9:d8:
8b:9e:62:63:86:4a:1e:2e:b6:1d:5f:1a:6e:dd:8d:
7b:9c:da:d2:ee:40:e2:ec:df:8e:af:4b:89:b8:04:
5d:9d:75:09:35:0d:53:9e:2b:23:43:3b:3c:29:70:
37:c8:05:00:61:3c:f6:ba:3f:e6:ca:5c:9a:62:5f:
92:c7:b7:c4:ec:37:4b:9f:05:36:4f:a5:58:46:f4:
76:97:dc:36:03:9a:1e:81:82:6a:ee:67:2e:50:43:
d7:4a:61:a6:dd:6b:a8:08:cb:6f:c8:db:e0:66:c3:
93:98:20:ea:51:e5:98:95:a3:99:79:27:12:cd:24:
3d:59:08:e7:df:55:c8:5b:56:28:78:75:d9:8e:5f:
ca:1e:1c:60:4f:2d:79:a5:c2:b1:20:a7:15:2b:d5:
9d:ba:ad:59:34:73:29:a4:c1:2b:70:99:ca:1e:d1:
53:3f:02:06:cb:e7:06:75:31:25:f0:b4:dc:95:ff:
4e:62:75:fa:73:b1:05:70:6b:29:48:b7:02:09:49:
ae:75:10:d0:ca:60:64:09:92:b0:9d:2d:1e:64:d5:
9e:3d:75:71:12:88:2e:c3:8c:01:45:3d:a8:4f:35:
57:fd:fc:12:a0:8b:1e:26:2c:bf:17:30:2c:e1:98:
0d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CD:F6:E6:B6:7B:39:E4:E1:86:0A:D4:46:7A:06:3F:38:01:F8:C3
X509v3 Authority Key Identifier:
keyid:84:89:86:3A:43:2D:85:1E:FE:A0:43:95:03:65:EE:23:43:6F:CF:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS945/7/8489863A432D851EFEA043950365EE23436FCF95.crl
Authority Information Access:
CA Issuers - URI:rsync://dev.tw/rpki/August/8/8489863A432D851EFEA043950365EE23436FCF95.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS945/7/32332e3134392e3234382e302f32342d3234203d3e20323032373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
23.149.248.0/24
Signature Algorithm: sha256WithRSAEncryption
14:12:db:91:1e:05:fc:67:ec:58:a1:6a:05:2b:d9:32:5d:de:
0f:c2:23:c4:60:ca:0b:d5:93:7a:be:a7:4f:de:95:d4:35:78:
d2:e4:f1:11:d3:fb:34:dd:62:3e:5f:9f:5d:ed:0d:f8:0b:42:
8f:eb:e2:fb:d2:6a:b9:52:92:fc:ad:88:e4:9c:f6:ad:b9:36:
0b:8f:63:04:73:e3:43:f5:8f:08:ef:a4:a8:72:4f:e6:82:ea:
c4:ed:05:d5:37:e4:09:9c:f7:a2:d2:eb:cc:a6:73:d1:18:5c:
81:b7:dc:78:91:3a:75:a5:40:64:e2:d4:85:ea:37:45:19:09:
24:d2:ea:21:64:12:30:9c:d2:d7:7d:a7:cf:1c:0c:98:39:6c:
3d:ec:b4:02:81:0c:14:b3:95:3f:25:fc:91:c4:49:26:51:2b:
54:b3:60:91:c0:e2:6d:9b:3f:17:64:0b:e6:df:43:59:36:29:
b0:0d:33:ce:7f:a4:b8:86:63:f4:28:d9:03:ce:7f:ca:4e:13:
79:a5:dc:5d:42:47:9a:89:1a:08:e0:33:5a:3b:a4:f7:f6:3f:
42:5d:a3:37:6f:13:b4:42:ca:d8:64:7f:4b:d0:f3:cc:d0:64:
0e:94:93:a9:96:e8:f3:73:e8:82:a7:c2:68:e6:11:6a:47:67:
1a:bc:eb:f7
-----BEGIN CERTIFICATE-----
MIIEvzCCA6egAwIBAgIUSgDInQYCc+s26jfZxhJTKWIzvv4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODQ4OTg2M0E0MzJEODUxRUZFQTA0Mzk1MDM2NUVFMjM0
MzZGQ0Y5NTAeFw0yNDA0MDgxODU4NTBaFw0yNTA0MDcxOTAzNTBaMDMxMTAvBgNV
BAMTKDFCQ0RGNkU2QjY3QjM5RTRFMTg2MEFENDQ2N0EwNjNGMzgwMUY4QzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC6efwA861tZT8lvqp2IueYmOG
Sh4uth1fGm7djXuc2tLuQOLs346vS4m4BF2ddQk1DVOeKyNDOzwpcDfIBQBhPPa6
P+bKXJpiX5LHt8TsN0ufBTZPpVhG9HaX3DYDmh6BgmruZy5QQ9dKYabda6gIy2/I
2+Bmw5OYIOpR5ZiVo5l5JxLNJD1ZCOffVchbVih4ddmOX8oeHGBPLXmlwrEgpxUr
1Z26rVk0cymkwStwmcoe0VM/AgbL5wZ1MSXwtNyV/05idfpzsQVwaylItwIJSa51
ENDKYGQJkrCdLR5k1Z49dXESiC7DjAFFPahPNVf9/BKgix4mLL8XMCzhmA0pAgMB
AAGjggHJMIIBxTAdBgNVHQ4EFgQUG8325rZ7OeThhgrURnoGPzgB+MMwHwYDVR0j
BBgwFoAUhImGOkMthR7+oEOVA2XuI0Nvz5UwDgYDVR0PAQH/BAQDAgeAMFoGA1Ud
HwRTMFEwT6BNoEuGSXJzeW5jOi8vcnBraS5jby9yZXBvL0FTOTQ1LzcvODQ4OTg2
M0E0MzJEODUxRUZFQTA0Mzk1MDM2NUVFMjM0MzZGQ0Y5NS5jcmwwZQYIKwYBBQUH
AQEEWTBXMFUGCCsGAQUFBzAChklyc3luYzovL2Rldi50dy9ycGtpL0F1Z3VzdC84
Lzg0ODk4NjNBNDMyRDg1MUVGRUEwNDM5NTAzNjVFRTIzNDM2RkNGOTUuY2VyMHUG
CCsGAQUFBwELBGkwZzBlBggrBgEFBQcwC4ZZcnN5bmM6Ly9ycGtpLmNvL3JlcG8v
QVM5NDUvNy8zMjMzMmUzMTM0MzkyZTMyMzQzODJlMzAyZjMyMzQyZDMyMzQyMDNk
M2UyMDMyMzAzMjM3MzMzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABeV+DANBgkqhkiG9w0BAQsFAAOC
AQEAFBLbkR4F/GfsWKFqBSvZMl3eD8IjxGDKC9WTer6nT96V1DV40uTxEdP7NN1i
Pl+fXe0N+AtCj+vi+9JquVKS/K2I5Jz2rbk2C49jBHPjQ/WPCO+kqHJP5oLqxO0F
1TfkCZz3otLrzKZz0RhcgbfceJE6daVAZOLUheo3RRkJJNLqIWQSMJzS132nzxwM
mDlsPey0AoEMFLOVPyX8kcRJJlErVLNgkcDibZs/F2QL5t9DWTYpsA0zzn+kuIZj
9CjZA85/yk4TeaXcXUJHmokaCOAzWjuk9/Y/Ql2jN28TtELK2GR/S9DzzNBkDpST
qZbo83PogqfCaOYRakdnGrzr9w==
-----END CERTIFICATE-----
Generated at Thu Jun 20 06:05:19 2024 by rpki-client on console-fra.rpki-client.org