Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/7-odCCdsjRnCxnskD3y9g4Z3TuE.roa
File: 7-odCCdsjRnCxnskD3y9g4Z3TuE.roa (raw, json)
Hash identifier: Rc2+ZO9Evw9Sa16DVVW83lqv6Z0mwmfTEF0RMpzhR6E=
Subject key identifier: EF:EA:1D:08:27:6C:8D:19:C2:C6:7B:24:0F:7C:BD:83:86:77:4E:E1
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C79
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7-odCCdsjRnCxnskD3y9g4Z3TuE.roa
Signing time: Fri 01 Sep 2023 08:26:37 +0000
ROA not before: Fri 01 Sep 2023 08:26:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 27.147.24.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3193 (0xc79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EFEA1D08276C8D19C2C67B240F7CBD8386774EE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2c:f9:e5:6c:70:d5:16:5f:c8:08:8a:df:45:
4f:54:cc:a7:e2:f0:e0:05:3c:59:e6:42:59:b9:e4:
d6:15:05:50:46:90:fe:9e:c3:ba:e0:14:ed:73:56:
42:ab:26:1a:6b:7f:79:3d:97:44:1f:7d:12:fc:79:
34:3a:4d:27:5e:fe:b6:bb:57:6d:3a:df:b0:ba:36:
1a:a9:4a:a3:5f:ca:a2:bd:bc:eb:4a:51:73:64:9f:
64:31:6f:5a:68:f5:0d:27:20:7f:9a:bf:b8:a9:a4:
c3:d9:2f:e2:00:61:ac:fb:12:27:97:be:e0:6e:9b:
52:bb:f9:61:29:aa:e2:bd:27:1d:3a:15:42:45:0d:
54:50:13:fb:b7:d7:26:93:42:2a:06:ee:86:68:c6:
12:da:a6:e5:42:98:d8:d0:02:90:ba:f8:91:db:dd:
0c:50:8c:ea:b3:52:aa:b0:37:72:87:67:65:1f:07:
1d:70:f4:ea:a0:ec:36:d4:35:e4:e4:99:39:f1:3f:
24:28:7f:66:32:d4:32:f0:6f:e9:8c:36:c2:26:f9:
0a:41:f6:ca:22:45:c0:07:ce:cd:18:26:70:da:cd:
db:6c:cd:49:bd:67:a9:84:5a:88:5a:81:da:20:02:
18:1f:17:15:43:c3:a1:6c:9e:fa:97:c6:08:f6:41:
87:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:EA:1D:08:27:6C:8D:19:C2:C6:7B:24:0F:7C:BD:83:86:77:4E:E1
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7-odCCdsjRnCxnskD3y9g4Z3TuE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
29:b1:d7:b9:b2:69:37:e3:3a:5d:8f:36:fc:9f:b9:09:96:ff:
51:cc:62:c7:09:7e:c8:df:bd:1c:25:71:02:f5:30:2a:98:68:
2d:01:e7:39:6c:be:77:0d:36:31:d0:5f:10:67:c2:a3:2c:e3:
50:98:7d:40:af:28:cf:bc:65:43:d7:ef:ac:46:bf:4b:92:bf:
f7:40:a4:7d:0c:eb:20:56:a7:bf:07:f2:02:e9:cd:85:12:62:
88:f9:23:c3:e0:b3:1a:9c:38:a7:70:82:90:2e:64:fe:01:e8:
db:f6:44:e2:2b:a7:32:67:cc:35:c1:db:31:ab:88:7a:fe:56:
50:89:0b:a9:c3:48:11:a7:1e:2a:00:d6:e0:1b:fb:b8:21:7a:
58:b1:b0:c1:6a:d3:c5:43:2c:4d:2a:af:c7:bf:d8:2e:36:5a:
76:6d:95:1b:63:c8:1b:15:5c:ad:a2:ec:30:f0:75:8c:09:00:
46:57:d1:b7:1c:63:73:a2:4a:89:17:3c:10:2d:94:83:15:5b:
4b:15:fa:99:46:fb:13:fa:1b:7e:0e:ff:4f:e8:b1:58:2c:aa:
7a:9c:b5:11:ff:45:d8:5f:45:c3:06:33:6f:b1:0a:ef:37:35:
fb:57:6a:3c:6e:6c:c4:0d:7d:be:a0:82:02:a8:28:f0:42:2d:
a1:8f:fb:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:10 2024 by rpki-client on console-ams.rpki-client.org