Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa
File: 7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa (raw, json)
Hash identifier: vxuSLmx2slILT73KGIICKjidSUBoTz6HcpPYCErrpSM=
Subject key identifier: ED:71:4B:C2:2D:8E:12:CE:BE:34:D3:CF:EB:65:14:02:AB:05:4C:14
Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Certificate serial: C9
Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa
Signing time: Fri 01 Sep 2023 08:31:11 +0000
ROA not before: Fri 01 Sep 2023 08:31:11 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 983
IP address blocks: 2400:bea0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 201 (0xc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D
Validity
Not Before: Sep 1 08:31:11 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=ED714BC22D8E12CEBE34D3CFEB651402AB054C14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:86:9b:f6:01:80:13:e5:d9:71:c7:a5:c5:db:
48:60:ad:32:33:33:e5:2c:20:b4:fe:a5:4b:3a:94:
69:b0:12:37:b4:b2:03:03:7f:38:be:9e:f2:e3:1e:
53:a4:e0:d7:ca:26:8f:f2:d6:93:0e:84:31:a9:aa:
96:9b:63:6c:53:2d:aa:a3:16:68:08:7d:b5:94:53:
82:00:2b:4e:63:e5:08:8d:13:f8:34:58:88:0d:c0:
2a:b4:10:fc:1e:26:58:61:53:a4:32:99:a7:9a:ef:
88:2c:b7:b9:8e:d2:77:3c:20:9c:f1:45:ba:31:f6:
f2:5d:d7:31:a3:64:63:ce:17:13:0a:dc:1f:fb:ab:
3f:1a:ea:f8:62:c3:22:2e:f6:d8:81:dc:56:76:36:
c1:76:52:fd:0f:bd:d2:b6:2e:e0:08:3d:4c:2d:44:
98:38:bc:65:81:85:c5:d9:b5:81:83:62:a9:65:65:
20:64:5d:d5:f5:db:d1:0f:cb:a0:84:ab:74:0d:91:
97:a5:e2:86:b5:9a:67:43:0b:5c:86:db:96:fd:93:
b8:6d:fe:02:08:16:48:7b:11:39:09:cb:80:2d:13:
fa:05:12:57:e0:7c:02:7e:14:26:ee:18:b5:ad:cd:
64:a9:ff:e1:ce:2e:e7:7f:19:d4:7c:5a:b9:ff:12:
f2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:71:4B:C2:2D:8E:12:CE:BE:34:D3:CF:EB:65:14:02:AB:05:4C:14
X509v3 Authority Key Identifier:
keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:bea0::/32
Signature Algorithm: sha256WithRSAEncryption
a1:f0:44:9f:df:07:c5:38:1f:37:62:27:10:81:6a:5d:d7:9f:
4a:ee:78:bc:55:4a:8f:00:a3:5a:2f:ee:de:0a:66:4f:d6:8e:
2c:12:b8:5e:f1:53:bd:64:77:2c:a8:f1:3e:6c:40:8d:24:60:
b8:51:7f:cc:e4:21:7d:ba:c9:bb:fe:ac:c1:37:ca:40:c5:d3:
0e:b3:81:42:d5:ea:0c:c7:30:32:cd:25:f2:3c:ed:2a:af:90:
6c:ba:2d:42:27:f1:e0:e7:15:95:63:00:5e:10:2f:3a:bc:b3:
69:2b:b0:cc:c0:a8:7a:30:9a:7c:fd:79:56:da:f4:18:50:a9:
c3:d0:93:a2:11:40:f2:a6:13:51:ee:bd:cd:0a:38:2b:b3:bd:
cf:15:5a:8e:9d:f6:46:f2:d3:c9:2e:b6:63:40:d9:d2:4b:14:
17:87:4b:77:73:0c:51:5f:2c:08:7f:d5:76:b2:a9:e8:26:6b:
26:7a:71:8f:ea:43:e8:cf:3b:db:28:0e:83:81:7a:b5:8f:63:
25:10:87:09:e0:82:35:06:12:d7:ab:c6:b9:8c:69:6e:16:46:
d0:cf:78:46:17:f7:e8:d5:90:35:89:41:65:09:6d:0a:4f:7f:
cc:bb:67:57:e4:90:ff:fe:af:10:56:40:f6:2d:41:35:d3:51:
f7:fc:35:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org