Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/u6icZCr2lDZYgRnZd4z1NP-_hQM.roa
File: u6icZCr2lDZYgRnZd4z1NP-_hQM.roa (raw, json)
Hash identifier: ghGXlSItY3XADAzHZUOh/iY6DNrC0nnFDQk57xN4tkk=
Subject key identifier: BB:A8:9C:64:2A:F6:94:36:58:81:19:D9:77:8C:F5:34:FF:BF:85:03
Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Certificate serial: 0C6F
Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/u6icZCr2lDZYgRnZd4z1NP-_hQM.roa
Signing time: Fri 01 Sep 2023 08:26:33 +0000
ROA not before: Fri 01 Sep 2023 08:26:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18429
IP address blocks: 45.64.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3183 (0xc6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261
Validity
Not Before: Sep 1 08:26:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=BBA89C642AF69436588119D9778CF534FFBF8503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:5f:1f:09:72:17:58:4d:05:4a:a9:fb:0a:7a:
8c:5b:8c:a4:18:8b:b0:11:ec:23:52:6d:68:f3:f6:
52:19:44:da:4c:fa:bd:95:21:41:95:77:72:45:18:
e4:1d:4b:bc:68:3b:d6:a1:d9:23:52:97:a0:50:ef:
6f:0a:53:a9:58:6e:34:a5:87:a0:c0:d5:60:30:07:
5c:fa:de:db:1d:f4:96:17:fd:c8:03:ba:21:e9:ac:
10:a7:d6:3b:5c:40:00:e0:4f:a5:53:d4:95:24:6e:
4d:be:ff:2f:8f:2c:d3:0e:e0:3b:30:08:3b:fe:75:
80:16:12:0a:6b:5b:5d:37:be:b9:ea:a6:60:81:1c:
23:ed:a8:4e:00:e5:0c:bb:38:bf:78:64:8c:18:21:
71:e3:cc:a0:f7:b9:7c:39:5c:fe:2b:9d:ec:ef:44:
1c:76:3e:69:e1:35:0a:b8:2a:69:89:00:fe:05:c3:
b1:1f:6f:9f:b8:12:e8:53:83:54:85:83:c6:3b:30:
a0:17:99:c8:48:96:02:ad:ed:7c:f6:3a:6f:79:70:
54:cd:9b:72:b8:f3:33:7c:60:09:6b:ad:ce:63:ef:
90:c1:db:34:e3:4b:b7:86:57:f5:6a:97:c0:f0:b0:
de:f2:18:60:15:90:47:5b:a5:21:57:e5:21:0a:ac:
5e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:A8:9C:64:2A:F6:94:36:58:81:19:D9:77:8C:F5:34:FF:BF:85:03
X509v3 Authority Key Identifier:
keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/u6icZCr2lDZYgRnZd4z1NP-_hQM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.64.232.0/22
Signature Algorithm: sha256WithRSAEncryption
27:ac:f4:ac:90:7d:5e:e2:89:33:ca:91:18:9f:25:6d:e0:66:
03:fa:3f:d0:ea:5d:f0:d5:87:a7:4f:ac:90:a5:a1:5c:25:fb:
79:df:17:53:67:d3:79:aa:98:0c:79:73:a7:94:8f:c6:f0:9c:
ef:c0:89:31:c3:85:54:22:a2:25:f5:5c:1e:ce:df:a2:e7:7c:
3b:7a:61:68:96:f7:f5:e8:4c:b2:07:17:b5:4b:c3:a2:29:a9:
c6:fb:a3:b1:2c:40:31:3c:0f:68:85:e1:7b:ad:1d:28:61:32:
03:ac:a0:9e:ca:42:79:15:bf:d8:2d:ce:05:c4:3d:24:45:5c:
c5:c5:ca:eb:0f:82:30:54:09:16:03:a7:eb:e3:00:72:d2:d1:
63:89:23:14:5e:4a:9b:33:bd:63:a7:c6:4c:68:14:c4:a9:aa:
ba:ad:12:da:2e:b3:14:0c:dd:c2:0f:31:ba:f0:c1:2e:c4:81:
0c:f9:bb:73:cb:15:d1:55:ff:4c:a7:41:13:ed:86:44:20:ee:
2a:70:3b:d1:14:37:90:8d:a0:90:2d:31:cb:21:02:d9:7e:bf:
3b:7b:8c:43:5a:f1:49:b2:ee:73:24:51:ef:d3:cb:dc:9d:15:
99:09:77:3b:9b:5a:8c:a1:e3:c4:f4:b2:54:d2:c8:d7:54:af:
cb:77:b9:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org