Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/K4R-secfi5f9LiE0Ba7_ZuasR1k.roa
File: K4R-secfi5f9LiE0Ba7_ZuasR1k.roa (raw, json)
Hash identifier: gmXQyO9ZNRpihEX17FoNxuOlzj/+uaujSbZ7QkQq9Ok=
Subject key identifier: 2B:84:7E:B1:E7:1F:8B:97:FD:2E:21:34:05:AE:FF:66:E6:AC:47:59
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C6C
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/K4R-secfi5f9LiE0Ba7_ZuasR1k.roa
Signing time: Fri 01 Sep 2023 08:26:32 +0000
ROA not before: Fri 01 Sep 2023 08:26:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 123.50.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3180 (0xc6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2B847EB1E71F8B97FD2E213405AEFF66E6AC4759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:77:e5:6f:1f:46:eb:4e:65:7f:11:d5:10:e0:
fe:c9:7c:9b:20:92:0d:f4:65:8c:86:f3:a4:81:c1:
23:55:ba:e8:48:07:2a:ed:25:4b:7e:58:16:b0:6e:
f4:32:55:d6:86:b1:3b:86:4e:e9:a6:75:cf:85:bd:
b2:7e:e9:ce:7d:d8:0f:85:c1:62:9f:9d:29:71:a5:
d0:f3:4c:ea:52:cc:3c:aa:54:7c:d4:1e:86:7e:41:
a7:30:09:47:5f:0b:ba:e2:5d:20:3e:ed:dd:19:c7:
c1:8a:e1:20:98:dc:c7:02:1e:01:68:af:f2:3a:c9:
9d:dd:73:c1:09:dc:bf:7c:af:f5:a8:df:25:27:05:
df:1e:9f:c4:90:41:d8:69:95:de:48:11:85:d4:5c:
2e:98:ae:9e:dc:6d:09:ad:50:8b:2a:10:4c:6f:4f:
eb:f6:e6:a7:4b:fd:55:cf:8a:45:61:19:cc:0c:61:
2a:5b:05:98:76:db:a5:0c:ab:63:9c:7a:2b:23:d5:
26:83:61:e1:60:39:d9:55:c2:08:04:51:60:f9:a5:
26:5e:31:18:1f:06:ff:54:51:67:c3:ff:19:b0:b8:
b3:1b:30:da:63:f2:88:1c:ff:8f:a2:d8:06:4e:bd:
7d:8b:7e:ed:ab:8a:a7:48:fa:77:d0:19:2f:69:af:
82:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:84:7E:B1:E7:1F:8B:97:FD:2E:21:34:05:AE:FF:66:E6:AC:47:59
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/K4R-secfi5f9LiE0Ba7_ZuasR1k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.48.0/21
Signature Algorithm: sha256WithRSAEncryption
71:38:c7:84:f6:b8:f5:17:c1:17:40:2f:61:22:25:9a:c7:f9:
e4:3e:6c:60:02:2c:93:20:91:69:f2:d4:91:15:47:c4:9f:5c:
35:ed:e5:b8:08:ef:7e:12:9c:8b:03:a4:cc:69:cf:43:b1:a1:
7f:29:8d:00:a4:ff:36:f9:3c:c5:d1:91:54:ca:94:a3:92:25:
cb:b1:05:93:66:6f:3d:c4:5f:96:ec:2c:1f:af:34:e3:f1:a5:
3c:7b:12:60:7f:3b:2e:72:01:2d:5b:a4:11:3c:4f:25:b6:56:
48:e6:b4:6b:33:49:c3:6c:05:a6:ce:cc:a9:16:74:6a:3f:f0:
7b:b3:d1:30:4d:e5:9a:5b:26:82:a5:36:0f:02:e6:42:66:33:
9e:73:f5:80:a9:8b:2b:c4:bb:49:be:b4:6c:e6:b5:9a:84:72:
a6:e9:46:51:25:83:4e:43:ef:34:61:1e:b1:25:30:21:bd:23:
17:f1:d8:06:19:d2:be:75:dd:75:15:3e:3d:79:11:ef:bc:5d:
74:27:38:9e:57:97:39:95:9d:23:eb:1c:53:69:b0:13:18:c2:
50:ec:27:3b:20:d0:83:90:61:07:73:5c:e9:4b:23:bd:cd:58:
a6:93:0e:08:aa:ac:5b:6e:0f:a4:7b:73:3c:3c:b8:ea:0b:45:
16:d4:80:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org