Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/T10pnlqKGD-UNC-t1mbcRSCVRgA.roa
File: T10pnlqKGD-UNC-t1mbcRSCVRgA.roa (raw, json)
Hash identifier: xsXLWhQ1rSEvfkCnGt1N5rGElL7S/pbyTIwInEbuJ7M=
Subject key identifier: 4F:5D:29:9E:5A:8A:18:3F:94:34:2F:AD:D6:66:DC:45:20:95:46:00
Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Certificate serial: 0B68
Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/T10pnlqKGD-UNC-t1mbcRSCVRgA.roa
Signing time: Fri 24 Nov 2023 08:15:52 +0000
ROA not before: Fri 24 Nov 2023 08:15:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18217
IP address blocks: 2001:c08:ffff:ffff:ffff:ffff:fffa:800/119 maxlen: 119
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2920 (0xb68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A
Validity
Not Before: Nov 24 08:15:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=4F5D299E5A8A183F94342FADD666DC4520954600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:f9:f8:e1:f8:58:0b:2e:06:7c:73:a7:c8:13:
18:25:08:1c:b0:38:c7:72:77:3d:f1:a6:9d:7e:3c:
30:e8:21:c1:c4:cd:4e:1e:a6:01:77:e7:2e:a8:8a:
8e:84:01:2d:66:5b:27:52:8a:53:04:56:1b:ec:27:
a1:85:ab:2d:11:8d:de:92:b3:1a:12:74:e0:d3:a4:
96:56:f5:3e:41:95:ec:08:aa:07:81:9c:66:13:1a:
a2:e0:8a:ae:d0:8b:1e:47:a3:26:e7:ad:d5:a2:d0:
b9:0f:aa:9c:27:d5:cc:8a:ba:a2:e2:22:81:71:78:
6f:d8:b1:96:17:28:0a:1f:28:e6:75:ac:88:ab:80:
d3:dc:19:7f:37:a7:45:d0:e5:e5:0d:57:f8:c8:35:
1a:42:00:8a:8d:b3:92:09:4c:37:f7:b9:95:42:86:
54:76:88:80:f7:7c:ef:e6:b1:af:bf:00:97:ca:97:
1f:53:07:1e:2b:67:da:a6:0b:77:68:d1:40:ea:b2:
e3:6e:39:26:e8:9c:31:72:3c:b1:c6:1b:c9:a4:3d:
dd:e0:c0:f2:7c:f5:ef:b9:21:4d:6d:8e:2f:9c:ed:
a8:46:25:32:40:3b:ff:5b:c0:83:d8:c9:57:70:5a:
dd:11:a3:9c:59:32:17:08:1c:ed:11:d0:7d:9c:ef:
87:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:5D:29:9E:5A:8A:18:3F:94:34:2F:AD:D6:66:DC:45:20:95:46:00
X509v3 Authority Key Identifier:
keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/T10pnlqKGD-UNC-t1mbcRSCVRgA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:c08:ffff:ffff:ffff:ffff:fffa:800/119
Signature Algorithm: sha256WithRSAEncryption
77:17:ba:b7:67:0c:6d:a1:83:8e:5b:86:45:e2:ec:d5:16:b2:
2b:ea:e3:62:4c:cd:8f:32:27:bd:bc:80:ba:29:2f:06:d1:71:
96:9e:94:60:15:6c:b1:b9:91:64:3a:96:34:3a:73:7c:51:87:
c0:fe:67:b5:52:70:e2:e2:11:46:73:4e:8b:1d:ff:ca:a3:38:
21:61:8c:6a:c9:f4:d7:9f:97:ac:b0:ef:9e:6c:6c:ce:01:3c:
5f:75:c6:a4:58:14:1f:2e:4d:bf:2a:59:0b:b3:54:55:08:8e:
2a:81:27:b5:f8:bf:a1:30:d3:44:aa:c5:6c:9f:c9:0c:2d:82:
a9:c1:bd:5a:91:62:40:44:ca:be:32:e0:43:72:17:23:41:04:
42:c0:e9:fb:be:cc:09:6b:45:1c:53:93:a7:bf:2a:bf:cd:f8:
a7:fa:4d:bf:1e:42:9a:1b:de:00:29:8a:1f:ed:e4:8d:62:1f:
00:98:d0:c6:e7:78:20:9c:74:b3:7b:08:64:fa:79:6d:5f:4a:
ca:2d:e3:4a:2c:6f:c7:1a:8b:60:ed:7d:e4:de:2b:59:24:70:
e0:c3:a1:ac:ea:a4:63:47:fe:04:82:c0:13:ea:7a:bc:99:07:
b0:e4:3d:ca:a3:96:e7:75:d1:8c:c8:a6:d7:e5:ed:6c:30:9b:
f7:58:fd:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org