Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6N8WMyHG7cTkfSvE32P8d79naz4.roa
File: 6N8WMyHG7cTkfSvE32P8d79naz4.roa (raw, json)
Hash identifier: sRQH1VVh316pXsAMoEk32CApteoURm5nhsDK3I8SO/4=
Subject key identifier: E8:DF:16:33:21:C6:ED:C4:E4:7D:2B:C4:DF:63:FC:77:BF:67:6B:3E
Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Certificate serial: 130A
Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6N8WMyHG7cTkfSvE32P8d79naz4.roa
Signing time: Fri 01 Sep 2023 09:24:25 +0000
ROA not before: Fri 01 Sep 2023 09:24:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38851
IP address blocks: 60.245.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4874 (0x130a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72
Validity
Not Before: Sep 1 09:24:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E8DF163321C6EDC4E47D2BC4DF63FC77BF676B3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d8:f9:3f:96:d0:5d:c1:ad:b7:f3:76:bc:50:
c3:24:e1:18:81:d8:a3:4c:f7:9b:d3:06:0a:02:90:
04:68:b3:53:dd:68:f5:69:9b:c0:7e:f0:da:cd:bc:
1a:b7:39:6e:72:75:9e:07:cc:d5:75:c9:18:4a:03:
1a:08:f5:d9:f4:b9:a1:c0:d2:01:4c:d9:bc:7a:5c:
46:0a:a3:fb:bd:a1:f1:4b:c4:a9:84:db:28:13:8d:
af:83:9e:ab:f1:d6:ad:2f:f4:a5:17:c1:dd:71:2a:
58:3e:2c:e8:19:b0:76:ea:5a:0a:35:e7:15:25:ae:
62:0d:07:61:c0:ae:02:3b:9f:0b:92:e3:66:10:70:
92:1f:77:4e:04:72:cd:63:cb:64:db:15:23:b6:42:
f5:bd:f8:e8:c9:60:49:7c:17:85:f6:a0:c6:00:2f:
6a:4a:68:e2:e5:e4:c1:09:99:91:84:b2:f8:1d:55:
0d:b1:e3:9c:fb:f4:cd:b9:22:8d:69:76:e1:18:64:
93:65:85:76:8a:4f:c2:88:4c:fe:5a:5e:11:28:07:
f1:df:0a:3c:33:ef:e9:f5:f4:74:9d:a6:60:b6:ac:
3d:2d:36:29:4c:61:93:f9:fb:01:d6:e3:7c:bf:2f:
88:9e:31:7a:56:4d:b4:3d:3c:c4:2b:56:e2:0b:80:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:DF:16:33:21:C6:ED:C4:E4:7D:2B:C4:DF:63:FC:77:BF:67:6B:3E
X509v3 Authority Key Identifier:
keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6N8WMyHG7cTkfSvE32P8d79naz4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.245.120.0/21
Signature Algorithm: sha256WithRSAEncryption
ac:a2:9a:92:da:4f:8e:e9:c4:0c:0d:79:56:2b:21:2f:56:62:
de:1d:81:95:2d:8c:e7:fe:93:2b:32:71:dc:4e:6d:c2:3a:bc:
dd:d9:4d:34:14:94:5b:f6:ec:c0:18:59:e5:d4:0b:2f:9f:e3:
4d:74:e1:86:f4:00:39:a2:82:7c:b1:04:bf:fd:41:1c:0c:22:
a9:af:48:22:1f:c1:fb:9b:80:c1:84:d1:37:ba:39:21:c3:29:
5c:cc:ef:04:2a:ff:61:8e:6c:50:01:d6:4b:79:d6:ec:7a:1c:
ac:2e:10:6e:11:31:5c:7b:14:9a:47:32:a2:44:0b:e4:bb:dd:
b2:f7:d9:a7:9f:fc:34:e1:a7:fa:94:90:96:19:4b:78:5a:f0:
6c:bf:7d:ac:6e:8b:d9:e8:f7:e7:2e:99:11:61:4d:53:ef:c0:
f3:ce:fb:d0:2e:67:97:64:cf:3b:e1:23:0f:21:fa:9a:d7:76:
1a:dc:80:d8:55:90:40:a6:9b:12:3e:c5:12:71:08:77:1d:52:
ce:4e:cb:0b:f0:a1:cf:ad:b2:85:24:62:a0:4d:79:8e:a1:ef:
c5:d6:56:b1:9a:a4:63:a5:2c:82:2f:eb:14:78:e0:b5:6c:ef:
bc:54:2e:e2:91:a6:3f:87:96:00:d0:b5:88:db:28:bb:be:0d:
81:3d:7c:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org