Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/D2CNIX1zgzUF4COCTu5__AYrqvw.roa
File: D2CNIX1zgzUF4COCTu5__AYrqvw.roa (raw, json)
Hash identifier: AOpWyvZrqJBmpNp49xMSEXOZ+Is81ZuBicHjbr91MqQ=
Subject key identifier: 0F:60:8D:21:7D:73:83:35:05:E0:23:82:4E:EE:7F:FC:06:2B:AA:FC
Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Certificate serial: 0AE0
Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/D2CNIX1zgzUF4COCTu5__AYrqvw.roa
Signing time: Fri 01 Sep 2023 08:30:15 +0000
ROA not before: Fri 01 Sep 2023 08:30:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131143
IP address blocks: 175.184.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2784 (0xae0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5
Validity
Not Before: Sep 1 08:30:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0F608D217D73833505E023824EEE7FFC062BAAFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:6e:4b:eb:c6:1a:b5:85:38:67:ce:6d:55:
dc:22:9f:78:b2:16:07:1c:95:fe:5a:77:3c:ed:f2:
0f:2f:e3:53:86:7b:84:bd:57:a7:5e:27:11:0c:c7:
7a:7e:b0:10:83:7e:a5:ca:03:ec:02:33:54:98:d5:
da:fc:e9:22:23:e0:e9:bb:36:29:cd:49:93:90:3b:
26:72:bb:3e:52:4d:b1:ae:3e:28:44:68:5f:24:df:
8e:d3:e8:2c:3a:58:16:ba:b5:ff:6f:2d:ad:b5:b7:
9a:73:cb:8c:a6:6d:1b:a7:09:73:00:91:7b:9c:2b:
dc:b4:4b:41:0f:4a:a6:9b:88:f3:3f:b9:8f:14:43:
5c:0d:dc:de:bf:e6:68:21:5c:eb:f0:f4:64:5b:da:
33:f7:78:c1:39:26:a7:0c:b4:e0:18:ec:3c:a0:e3:
e3:bd:4d:a1:74:70:d8:8a:49:ad:b7:cc:c1:af:68:
99:aa:cf:8f:ef:b8:d5:b7:85:99:28:3f:ff:ad:c0:
ed:b4:7e:fb:d3:a9:5c:c0:59:2f:88:cf:3a:87:c0:
af:c9:64:8c:62:87:82:96:88:9b:1c:c7:c9:c2:1b:
2f:56:45:23:ee:16:b1:a3:8a:d1:6b:b8:b7:0d:ba:
55:4e:77:7b:71:e6:2b:08:43:49:be:7c:ef:4b:e6:
03:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:60:8D:21:7D:73:83:35:05:E0:23:82:4E:EE:7F:FC:06:2B:AA:FC
X509v3 Authority Key Identifier:
keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/D2CNIX1zgzUF4COCTu5__AYrqvw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
175.184.240.0/21
Signature Algorithm: sha256WithRSAEncryption
7c:64:36:67:61:99:50:f5:b5:6c:0a:59:cb:4e:b2:92:38:9a:
0c:ba:9f:3a:f0:52:87:80:de:45:df:40:81:cd:35:52:c3:df:
60:84:47:40:3d:9a:2f:ec:1f:39:a6:35:40:17:75:42:fc:06:
bc:0b:d3:f2:ef:71:15:c9:2d:67:1e:f6:7b:d1:50:a0:e8:3f:
1b:fb:17:22:35:3b:83:4a:0a:53:73:bb:73:70:12:30:ee:61:
f1:8a:f3:f4:92:66:43:89:a8:80:d5:21:4d:ba:22:00:42:52:
b1:1e:c1:ad:23:cd:8b:d8:61:30:28:b4:57:ad:f8:73:41:e9:
37:f2:70:0f:2a:f2:ff:e6:3e:cd:fa:3a:2c:c3:93:93:92:c3:
24:e2:e7:20:25:04:53:f9:88:db:9b:ca:44:94:17:6e:7d:2e:
9a:8e:b1:c6:c7:79:5e:b6:af:1a:ff:7e:f1:23:7e:b8:29:9b:
2d:ef:68:5e:f4:d3:51:13:e9:e0:98:89:15:c6:5b:2f:ed:55:
df:3a:a4:f7:b1:ed:b7:d6:c0:2d:e0:f4:3c:45:b0:93:1e:e7:
ba:82:85:17:92:26:ee:37:1d:4a:1a:78:de:ca:21:37:9c:84:
d7:68:48:2c:00:80:45:02:16:fb:78:05:8e:13:fa:d2:a4:34:
ef:f1:9e:1f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org