Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/7dO8xf7jH6i1oHW5nsTQ6HTS36c.roa
File: 7dO8xf7jH6i1oHW5nsTQ6HTS36c.roa (raw, json)
Hash identifier: mUo9onhOWtb6SuyNoCNNoY11wwur4HJZDblwRsxj+DE=
Subject key identifier: ED:D3:BC:C5:FE:E3:1F:A8:B5:A0:75:B9:9E:C4:D0:E8:74:D2:DF:A7
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C78
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7dO8xf7jH6i1oHW5nsTQ6HTS36c.roa
Signing time: Fri 01 Sep 2023 08:26:36 +0000
ROA not before: Fri 01 Sep 2023 08:26:36 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 27.147.40.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3192 (0xc78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:36 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=EDD3BCC5FEE31FA8B5A075B99EC4D0E874D2DFA7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bd:d8:af:cd:60:2d:05:f3:0c:bd:ee:34:ce:
86:96:b0:54:4a:66:ac:b7:d7:77:b7:9f:49:3d:16:
c2:95:2f:71:b2:18:f2:0a:84:fc:e4:c8:03:71:ca:
96:72:68:49:b5:28:40:1b:91:01:f6:e1:6e:fc:97:
46:dd:40:1c:21:0f:05:d3:4a:b7:5a:5d:7d:60:12:
1c:70:66:c9:91:18:88:0b:ee:47:5b:f0:bc:a6:1e:
f2:6c:c3:a4:40:ef:33:ce:83:b8:b8:8f:c3:01:32:
92:06:ed:30:bc:41:81:c3:03:ce:18:fa:47:1d:d7:
da:60:40:d5:06:c0:55:82:20:99:dc:5d:f3:a8:da:
8d:1f:5b:21:e2:71:d6:12:44:08:4c:3a:ec:f0:f0:
5b:c7:a7:6e:ca:69:30:30:e6:43:13:07:b9:e8:c0:
25:97:91:1c:cc:61:46:8d:9e:21:b7:6e:c5:37:c2:
ca:d0:b9:3f:ed:aa:0f:23:6d:cd:0b:46:5a:c3:3c:
6f:b6:8c:d1:3e:67:15:08:bb:2a:84:e8:82:de:f0:
8f:c2:04:80:88:0f:d1:9f:c1:6f:01:ee:b9:83:f9:
d0:5b:20:b1:d3:eb:9a:1c:3b:9a:6a:4f:83:b0:b2:
01:88:22:42:15:f7:a1:ff:bb:bb:a8:0a:4e:15:ee:
76:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D3:BC:C5:FE:E3:1F:A8:B5:A0:75:B9:9E:C4:D0:E8:74:D2:DF:A7
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7dO8xf7jH6i1oHW5nsTQ6HTS36c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.147.40.0/21
Signature Algorithm: sha256WithRSAEncryption
93:5f:c5:08:7c:d8:b6:c2:9c:d3:63:c3:db:d3:94:6e:2f:e3:
c3:5f:79:07:f9:d4:1d:f8:23:7e:55:1d:91:d9:81:7b:ee:b4:
e9:22:99:27:64:34:1d:27:fb:77:bd:4b:76:f1:fe:4a:d0:a7:
76:77:dc:e0:55:b1:8f:61:97:14:91:6a:b0:6f:8a:6d:fd:a9:
41:f6:ea:87:99:69:d4:b4:f8:bb:e2:50:30:e2:7f:a9:a2:30:
c2:b1:d0:af:ce:2d:e3:d8:1a:ba:89:8d:48:eb:29:77:1f:91:
2e:1c:75:3f:c2:46:d0:68:71:7e:eb:61:85:b4:65:c1:3a:02:
a0:97:70:58:06:24:2b:7a:d7:c0:4a:5b:2c:4b:51:b3:88:d7:
22:54:3e:80:47:0f:25:69:54:7b:12:9f:9f:cf:45:da:8d:79:
f3:0f:96:45:24:4e:af:77:2a:33:8f:42:1e:5d:c1:eb:22:4b:
7d:a0:24:5d:e8:eb:cf:56:e7:98:5b:54:33:af:72:31:d0:f7:
5a:11:82:cb:21:ea:13:b5:cb:f5:36:16:f9:60:32:37:d5:8a:
6e:7d:bc:af:0e:11:ab:71:81:ed:1a:4c:08:0a:63:7f:88:06:
d6:15:06:61:5f:8d:1b:70:a4:43:49:c9:69:c8:7d:fb:fb:a8:
8c:d1:5d:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org