Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/LoxLvnF7vka-K89P5l3UiB0o0v0.roa
File: LoxLvnF7vka-K89P5l3UiB0o0v0.roa (raw, json)
Hash identifier: GPi+m1lq8xLXhgHWUKdMKd8EO4kf5vjVPx/I9lAstT8=
Subject key identifier: 2E:8C:4B:BE:71:7B:BE:46:BE:2B:CF:4F:E6:5D:D4:88:1D:28:D2:FD
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C7B
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/LoxLvnF7vka-K89P5l3UiB0o0v0.roa
Signing time: Fri 01 Sep 2023 08:26:37 +0000
ROA not before: Fri 01 Sep 2023 08:26:37 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 61.57.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3195 (0xc7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:37 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2E8C4BBE717BBE46BE2BCF4FE65DD4881D28D2FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fa:e4:a6:2b:51:29:1f:89:e6:8e:3c:55:1f:
6f:ce:8e:91:fb:89:6d:83:5f:c1:70:d7:77:d5:97:
80:f1:75:29:8b:0a:86:5d:e2:00:e7:07:c9:43:d0:
84:c2:23:e2:8d:ce:aa:25:e0:99:d5:c4:3a:03:8c:
d2:38:89:31:13:ac:2e:71:64:76:0d:73:aa:6d:02:
f5:87:99:2a:fb:65:b8:48:78:50:13:e1:7b:af:d4:
82:c4:86:46:3c:d9:01:ec:13:28:75:7b:dc:66:0b:
4b:08:53:ad:f1:53:a0:88:49:b3:4d:5e:f9:c8:02:
f9:20:b4:71:8b:c8:cc:e6:53:48:db:60:07:03:56:
07:95:e8:03:19:c8:55:6e:bd:dd:d8:c2:77:c5:a1:
8e:bc:e6:62:52:2f:7b:ca:80:14:d5:4c:d5:85:f5:
75:42:4a:dd:a1:8d:fa:43:80:29:64:ad:0e:ba:27:
9e:01:a3:11:a3:57:03:37:56:eb:e5:d8:16:6e:be:
e0:50:71:43:3a:8c:b4:25:85:dc:8f:0d:1b:5c:80:
e7:21:f9:da:fe:6d:72:ce:5b:af:cf:6d:14:ac:e5:
50:79:8b:c1:d5:ae:19:17:29:9f:d6:fa:48:44:2c:
3d:d1:e8:c6:f1:55:11:d8:f0:fb:a1:85:f3:3c:8e:
07:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8C:4B:BE:71:7B:BE:46:BE:2B:CF:4F:E6:5D:D4:88:1D:28:D2:FD
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/LoxLvnF7vka-K89P5l3UiB0o0v0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.144.0/20
Signature Algorithm: sha256WithRSAEncryption
55:b7:b6:83:91:59:67:10:8b:09:34:92:d8:65:4e:ff:71:80:
b2:03:92:11:2e:71:0f:c4:31:d7:2e:7f:6f:de:e3:37:79:63:
a8:bc:3e:35:77:9c:6e:84:cc:4e:e0:30:16:b8:6b:88:22:e1:
17:06:dc:05:bd:c9:6d:96:b0:58:53:8a:19:b6:e6:2b:4d:16:
64:91:fb:56:5e:e2:e7:26:c8:4e:ee:e7:ae:45:a5:af:16:9e:
40:b2:f2:1b:20:67:aa:e8:e3:5f:67:82:9a:2a:88:77:86:6a:
03:ad:f9:00:44:f7:91:d4:32:31:e0:75:03:60:db:7b:0c:1f:
b5:0b:47:3a:a8:1a:07:05:b5:19:94:cf:4c:98:5d:3d:37:0c:
c4:9a:b5:7e:dc:27:72:fe:d9:85:d9:ca:1c:7b:3c:c8:48:f1:
56:38:8e:e0:18:f9:36:6f:31:d3:b6:54:8c:a0:bb:1d:cd:e1:
e8:50:34:96:b7:e0:24:5e:d0:90:a9:23:e1:5d:55:2f:80:7e:
1e:62:48:aa:7b:b1:08:b9:64:b1:dd:7e:49:ab:f4:af:a7:a7:
15:4f:0f:10:3b:7a:8a:78:98:68:41:d6:2c:05:35:3d:1d:bc:
02:f4:6e:6a:88:e3:9f:ca:46:1e:4f:c3:c3:7c:b0:15:23:22:
80:77:73:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org