Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASGC/TxN01kusPDZqYe0LIJXvLt36exM.roa
File: TxN01kusPDZqYe0LIJXvLt36exM.roa (raw, json)
Hash identifier: +oif+14H4egQ88vkV1SgrX1y0FPdzYX8BmJF5euftzU=
Subject key identifier: 4F:13:74:D6:4B:AC:3C:36:6A:61:ED:0B:20:95:EF:2E:DD:FA:7B:13
Certificate issuer: /CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Certificate serial: 0B34
Authority key identifier: 76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/TxN01kusPDZqYe0LIJXvLt36exM.roa
Signing time: Fri 01 Sep 2023 08:05:55 +0000
ROA not before: Fri 01 Sep 2023 08:05:55 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24167
IP address blocks: 117.103.96.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2868 (0xb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=760EA9F7833EDC6366FD5E23A426BCF62BB01E6C
Validity
Not Before: Sep 1 08:05:55 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4F1374D64BAC3C366A61ED0B2095EF2EDDFA7B13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f9:fc:02:c6:88:24:3b:9e:d7:bc:1e:01:9d:
7f:d6:05:71:a2:cf:6a:50:44:a8:bb:06:3f:38:da:
6e:38:f2:d6:ad:00:5d:a1:78:ae:21:90:7b:fa:fb:
e3:7d:d4:8f:e2:0c:03:b5:ac:2b:d9:49:41:39:e9:
60:27:d8:04:0e:5e:64:b3:98:00:8a:f2:6e:31:f0:
88:13:00:0d:88:51:fe:8d:70:94:c1:93:2a:8b:f1:
6f:68:04:2f:c9:9c:ea:3c:dd:34:be:6f:d2:bc:4a:
5a:19:8d:54:d9:ac:ea:67:34:23:28:e9:48:8a:1d:
08:08:b6:cb:13:1b:d5:ba:19:bb:99:47:90:ba:7b:
bd:35:3f:0d:a2:75:94:4c:99:24:5b:95:48:5b:c2:
7f:fe:d1:ad:86:07:53:3d:f6:af:7e:a0:2e:62:dc:
be:14:50:43:0e:ae:5f:1e:b5:55:d7:c1:df:c0:0a:
20:56:a6:1b:0e:9a:d2:0c:22:ca:63:c2:50:b7:5d:
66:4a:4b:87:05:ea:e9:56:35:c7:cf:90:2f:cf:f4:
d2:54:0e:3b:d5:53:a4:ce:6c:31:93:45:3d:f7:ac:
d4:5c:db:af:fc:1e:97:d9:12:bf:85:a0:f6:56:6d:
0f:e5:f7:fa:5b:33:f3:f4:4a:22:84:4e:b6:8b:a5:
39:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:13:74:D6:4B:AC:3C:36:6A:61:ED:0B:20:95:EF:2E:DD:FA:7B:13
X509v3 Authority Key Identifier:
keyid:76:0E:A9:F7:83:3E:DC:63:66:FD:5E:23:A4:26:BC:F6:2B:B0:1E:6C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/dg6p94M-3GNm_V4jpCa89iuwHmw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dg6p94M-3GNm_V4jpCa89iuwHmw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASGC/TxN01kusPDZqYe0LIJXvLt36exM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
117.103.96.0/20
Signature Algorithm: sha256WithRSAEncryption
1f:cb:b3:ae:81:11:19:df:33:6a:a1:31:8c:d4:d5:e9:9a:49:
63:5b:13:6c:1b:df:c2:86:7b:6b:00:3f:78:58:a0:f8:4a:fa:
5c:00:ab:7c:ef:f6:88:3e:59:35:ab:4f:ca:2f:cd:23:eb:89:
1e:46:8c:80:ba:e4:4a:98:2b:99:ea:9b:ab:8c:79:fe:04:d9:
96:2c:2e:b3:64:ea:8c:91:e4:04:39:03:8d:98:24:29:2f:33:
63:37:6f:be:f4:13:76:28:8e:e8:96:a9:c4:0b:90:fa:d4:da:
3f:73:a8:9e:35:07:52:65:de:1d:b7:d9:16:eb:55:fb:80:a7:
78:e4:93:64:03:21:f7:06:35:12:ae:0e:63:e8:8b:27:0f:55:
a2:71:37:6b:a6:cb:c0:59:2e:2c:b6:ed:87:89:17:b5:ef:8f:
6f:54:70:f1:86:36:f8:87:9a:5a:64:ae:d1:6c:7c:a9:f7:21:
ac:90:76:01:4f:f6:6a:4d:77:4e:91:3d:35:a5:39:65:8b:a0:
8e:c2:69:7f:13:7a:22:ac:fb:d3:36:0b:fe:c9:b1:73:07:a3:
03:5a:a3:c6:b0:ea:b5:cc:bf:21:ea:f0:93:6e:56:1b:87:51:
3a:18:5d:d7:95:57:81:cd:8d:12:3e:65:e8:18:2a:b2:e8:da:
ad:2f:7a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 01:28:04 2024 by rpki-client on console-ams.rpki-client.org