Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/loYIJs0PHrcfDJRhN3dYRsuoBDs.roa
File: loYIJs0PHrcfDJRhN3dYRsuoBDs.roa (raw, json)
Hash identifier: OJ6EffYQxXSpITtSPWG1+Nauti0NQ9lMygear7aekAU=
Subject key identifier: 96:86:08:26:CD:0F:1E:B7:1F:0C:94:61:37:77:58:46:CB:A8:04:3B
Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6
Certificate serial: 01AE
Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/loYIJs0PHrcfDJRhN3dYRsuoBDs.roa
Signing time: Mon 24 Jun 2024 12:47:53 +0000
ROA not before: Mon 24 Jun 2024 12:47:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 63908
IP address blocks: 2400:b0a0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430 (0x1ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6
Validity
Not Before: Jun 24 12:47:53 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=96860826CD0F1EB71F0C946137775846CBA8043B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:91:75:4b:d1:52:47:66:6e:9b:00:2b:52:95:
85:23:b0:af:c2:3e:cd:60:ce:83:4a:07:ef:4b:8c:
b9:63:4b:75:e6:8f:87:e4:ed:21:9d:9d:f1:4e:3a:
6a:8c:eb:8d:0b:63:df:e2:da:21:39:80:04:8b:fe:
42:b4:d2:20:e5:78:b3:68:fc:de:bc:7f:0a:b4:26:
18:c1:e6:fa:0a:ad:25:f9:42:93:97:a3:a7:7d:7b:
96:17:8b:11:38:73:44:d5:c3:84:83:ae:4d:39:9f:
a7:97:f7:8b:ce:41:72:ed:72:53:d4:b3:31:00:d3:
27:7f:d3:7a:05:65:50:9f:8d:75:4c:23:4e:70:09:
97:5e:97:3d:18:cb:db:5a:98:09:22:df:80:2a:c3:
c5:06:5b:d8:38:7c:5f:a6:f8:7d:88:47:f1:f3:89:
dd:c4:44:bc:fe:4b:9a:30:7d:51:34:49:61:4b:f0:
70:e7:3a:b0:9a:e3:c3:83:e7:02:27:57:09:20:69:
39:fa:d1:0a:cf:ae:f5:49:48:ac:5d:7c:3b:50:13:
c1:96:ed:92:4e:7a:83:57:19:6f:2d:a0:bc:e4:14:
99:4f:40:30:cf:cc:32:33:c9:78:0b:95:f1:17:61:
c0:3d:5b:0f:fa:c3:f3:46:fb:8b:5d:1f:15:04:f8:
8d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:86:08:26:CD:0F:1E:B7:1F:0C:94:61:37:77:58:46:CB:A8:04:3B
X509v3 Authority Key Identifier:
keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/loYIJs0PHrcfDJRhN3dYRsuoBDs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:b0a0::/32
Signature Algorithm: sha256WithRSAEncryption
56:84:59:57:05:cd:74:fa:f3:f1:6f:1a:84:52:e8:63:9f:e1:
c3:42:f6:d3:52:6c:05:34:79:20:ff:13:03:03:62:40:ed:ef:
12:82:db:ed:22:20:a4:21:97:e3:78:12:06:38:9f:07:13:a5:
08:48:33:f8:29:0c:94:d6:17:a1:27:d5:b1:de:4d:6f:b5:24:
ae:c9:59:a8:98:95:62:a4:5c:56:f8:0c:df:da:30:f5:92:e5:
16:87:66:15:90:79:76:2b:9e:ee:2b:cf:c0:0b:fe:22:ee:4f:
25:d9:ba:b6:01:d5:9f:97:c5:c3:32:9b:91:39:ed:a2:17:f1:
47:ad:51:b6:d3:be:f9:bb:29:61:80:3d:5c:bb:4e:10:f8:4c:
a4:b4:c5:c5:50:0f:9a:45:6f:4a:7e:66:1f:dc:43:e4:d5:cb:
04:24:33:05:9e:83:3d:1f:84:94:38:52:42:da:51:02:66:7e:
a1:64:92:ad:37:22:07:1e:df:02:b5:d4:04:b7:12:d6:28:42:
f5:d3:01:6c:f0:51:d1:59:17:29:f2:f7:fc:5b:f2:d1:7f:3c:
63:9c:8f:af:9c:13:8b:3e:ca:03:1a:9b:be:d4:65:f4:0d:e7:
27:b8:2f:4c:df:e4:c0:8d:38:43:f3:4e:87:07:98:1d:58:4a:
af:5b:65:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org