Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APNT/EFKMxQtG6jFvrVNnR58PqFMelpg.roa
File: EFKMxQtG6jFvrVNnR58PqFMelpg.roa (raw, json)
Hash identifier: K/orf6en7YGU7sxUWdNb033BWb/uHBzWQYxzxsVSGno=
Subject key identifier: 10:52:8C:C5:0B:46:EA:31:6F:AD:53:67:47:9F:0F:A8:53:1E:96:98
Certificate issuer: /CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Certificate serial: 119D
Authority key identifier: C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/EFKMxQtG6jFvrVNnR58PqFMelpg.roa
Signing time: Fri 01 Sep 2023 08:04:00 +0000
ROA not before: Fri 01 Sep 2023 08:04:00 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 55789
IP address blocks: 2403:b0c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4509 (0x119d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2528D8C5B676FD9A24DFDA7E9217457B7310263
Validity
Not Before: Sep 1 08:04:00 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=10528CC50B46EA316FAD5367479F0FA8531E9698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8d:7c:93:af:37:93:68:11:9e:6d:57:d4:1f:
d9:24:5e:53:7e:91:23:10:e0:c5:25:5c:66:11:06:
8a:69:1b:77:4c:3c:c6:c4:be:d8:6a:9e:8d:49:2b:
6a:4c:6f:9b:cb:1b:78:62:b6:f9:17:2f:34:95:e3:
f3:09:8a:63:0e:39:c0:f9:48:5a:a3:80:44:bf:25:
fe:db:a9:5e:27:7f:98:1e:bf:52:5d:af:dd:2a:d5:
db:23:4f:c2:7d:ee:f1:f9:48:f7:bb:a0:88:8e:20:
88:b6:38:09:1a:6b:0a:3a:b2:8e:32:6c:ae:72:6a:
c0:74:69:f2:30:5c:d9:ad:77:18:c9:98:00:b9:e9:
33:a3:d3:78:9f:ac:de:60:0b:0c:72:02:c2:34:03:
e6:bf:a9:a6:4b:14:bd:4b:6e:f3:65:57:d1:3d:ad:
bc:95:2e:b8:3f:70:64:39:7c:ed:80:37:cc:3c:89:
0c:cd:09:2d:58:69:a3:fa:62:d0:9a:e9:d0:95:f2:
d6:26:09:b8:65:f1:8c:9d:2e:08:3b:8a:0f:9e:dc:
d7:22:b2:c3:de:e5:93:07:4c:68:ba:c0:78:67:b8:
1e:c1:8f:77:8d:2f:d2:28:a2:11:58:d2:21:ee:35:
8b:9c:a3:dc:40:df:b9:7f:ab:11:88:6e:12:3c:08:
a9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:52:8C:C5:0B:46:EA:31:6F:AD:53:67:47:9F:0F:A8:53:1E:96:98
X509v3 Authority Key Identifier:
keyid:C2:52:8D:8C:5B:67:6F:D9:A2:4D:FD:A7:E9:21:74:57:B7:31:02:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/wlKNjFtnb9miTf2n6SF0V7cxAmM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wlKNjFtnb9miTf2n6SF0V7cxAmM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APNT/EFKMxQtG6jFvrVNnR58PqFMelpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b0c0::/32
Signature Algorithm: sha256WithRSAEncryption
a3:f0:3b:dd:3e:e0:9b:72:65:f3:8b:4e:32:cb:ad:61:88:b2:
7d:5e:59:70:6d:09:89:32:27:9d:64:2f:0d:97:08:8d:f1:10:
8b:1d:41:33:69:d6:3d:48:c8:8d:cb:ce:ba:90:c5:a2:cb:43:
d5:a1:10:de:ee:17:f5:b4:81:5e:f7:6c:0d:ed:49:ff:08:81:
37:20:80:ef:dc:22:d4:1b:59:60:66:23:81:c7:e9:b6:ab:f9:
34:d3:43:26:52:91:de:b2:23:73:9d:5b:f4:19:95:09:dc:47:
95:1e:cd:9a:dd:46:5f:30:b9:e7:37:0c:9f:1c:70:9b:78:0b:
0b:a2:d8:ca:c4:45:ee:ef:a8:68:c9:d9:da:cc:da:5e:60:21:
0d:bb:7a:ce:d8:99:92:2d:7f:b9:54:ba:61:38:9f:8e:f5:c4:
95:fb:01:22:25:17:3e:32:19:cb:82:1f:28:a0:25:6c:85:be:
58:4a:c2:68:d6:ad:53:b0:6d:22:37:c3:7e:b8:19:a4:94:6b:
b7:1a:36:79:5a:d9:d5:1e:23:a4:46:eb:cf:34:48:e0:08:8a:
03:80:e4:2a:f8:68:d4:25:6e:3e:aa:2e:82:8c:f0:cd:47:3b:
0d:c1:ef:30:01:65:9a:08:b1:49:31:d1:23:4a:d9:c4:2f:53:
0a:5b:f9:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:59:59 2024 by rpki-client on console-ams.rpki-client.org