Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/VITMqGLL8lph7Gx55NIt6xHC-ZQ.roa
File: VITMqGLL8lph7Gx55NIt6xHC-ZQ.roa (raw, json)
Hash identifier: czJImi0LTb16TV4UVWldHq+4HipxOPPY3HczY4E4KdE=
Subject key identifier: 54:84:CC:A8:62:CB:F2:5A:61:EC:6C:79:E4:D2:2D:EB:11:C2:F9:94
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C71
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/VITMqGLL8lph7Gx55NIt6xHC-ZQ.roa
Signing time: Fri 01 Sep 2023 08:26:34 +0000
ROA not before: Fri 01 Sep 2023 08:26:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 123.50.56.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3185 (0xc71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5484CCA862CBF25A61EC6C79E4D22DEB11C2F994
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e9:0d:ec:65:f7:34:ba:15:51:34:66:0d:85:
98:9e:d1:33:22:1d:cb:03:58:d0:bf:fa:63:4b:d0:
a2:dc:4e:ac:8f:0c:d6:d7:8c:b3:70:1e:03:79:c2:
85:b1:28:6b:08:63:fd:58:96:97:bd:8b:dc:7f:bc:
1a:3f:07:e3:df:90:5a:6a:0e:1d:10:a1:1e:98:d2:
cf:32:ef:a4:1b:89:19:cf:03:5d:2c:e9:6c:4a:55:
35:98:02:8a:6f:e2:c3:a2:62:67:fc:50:19:3a:a4:
c0:c3:84:8e:89:a2:35:fc:69:8c:db:fe:9f:88:61:
d3:89:18:9e:71:c6:9e:75:6f:78:ff:65:f3:54:c3:
25:2c:03:1a:d4:e7:09:a2:f7:63:f8:7e:39:05:94:
e2:ab:5e:b7:ed:6d:91:66:b6:f2:29:88:7d:aa:62:
a5:9a:c1:1a:e3:f0:d9:0e:0a:7b:64:89:dd:53:bd:
36:ec:ab:8a:9f:b6:36:ce:a3:9b:81:d6:9e:0e:0d:
0a:a6:2d:e3:95:a8:2f:27:1a:8c:28:3c:1e:3c:23:
16:7f:2e:af:5a:a8:b9:09:7b:d3:cd:b3:30:50:74:
80:ba:37:7d:26:b0:ca:e6:50:fa:e3:ac:6c:2d:00:
28:72:96:bb:f2:c9:ad:a9:c4:51:53:ad:f3:75:ae:
c8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:84:CC:A8:62:CB:F2:5A:61:EC:6C:79:E4:D2:2D:EB:11:C2:F9:94
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/VITMqGLL8lph7Gx55NIt6xHC-ZQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.50.56.0/21
Signature Algorithm: sha256WithRSAEncryption
9f:07:1f:eb:18:5f:2b:76:0c:19:25:70:bc:b5:82:61:4e:db:
dc:54:4c:68:e0:7d:27:e1:09:53:80:5f:69:1e:a8:fb:b1:b2:
b7:84:64:bb:f8:6c:4d:e4:29:cb:20:95:b3:c7:2a:55:b1:08:
1a:a4:18:18:20:bd:4d:a6:28:e8:5a:a8:6e:3f:b7:55:05:58:
0d:83:3f:bf:f5:1f:fc:32:70:39:a0:75:f4:19:4c:10:a3:70:
16:7c:77:8b:5b:b7:7e:5e:db:15:73:b6:c2:9b:e9:8d:36:95:
9a:c4:67:42:36:0d:9b:5f:df:52:bc:ce:48:33:c1:0f:be:e0:
b0:75:ce:ab:e7:02:c1:4e:9a:9e:ef:74:6d:35:2c:20:7c:b5:
42:21:7d:a9:f3:c8:b0:c1:18:bd:5b:94:78:8e:07:62:b7:b2:
fc:06:82:6e:5f:e8:b1:09:e1:64:13:e1:41:89:63:59:0f:d7:
14:b7:77:98:6b:b8:99:ff:14:5e:da:30:79:bb:27:be:7b:0c:
51:26:bd:3a:e2:7c:65:a4:32:e2:d6:43:81:7f:7a:d0:14:4e:
9d:5a:d2:df:47:00:09:12:41:37:b4:f2:02:49:1b:57:f2:71:
38:86:16:24:86:4e:2a:c4:e2:79:64:3c:11:77:5b:34:21:78:
cd:2b:ef:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org