Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CROWN/uMyb6AWpqQHr0-jbpYMfQ5GZC20.roa
File: uMyb6AWpqQHr0-jbpYMfQ5GZC20.roa (raw, json)
Hash identifier: 1yt/xIc5IxzNYh9Lx5HFKEEXMdfL4Rbsc4xw+ySpFM0=
Subject key identifier: B8:CC:9B:E8:05:A9:A9:01:EB:D3:E8:DB:A5:83:1F:43:91:99:0B:6D
Certificate issuer: /CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9
Certificate serial: F0
Authority key identifier: 4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/uMyb6AWpqQHr0-jbpYMfQ5GZC20.roa
Signing time: Thu 08 Aug 2024 01:11:25 +0000
ROA not before: Thu 08 Aug 2024 01:11:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131642
IP address blocks: 2401:29e0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 240 (0xf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A7B5FFF97B89C87BDBFD46164EE924A87D696E9
Validity
Not Before: Aug 8 01:11:25 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B8CC9BE805A9A901EBD3E8DBA5831F4391990B6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:af:bf:7a:28:cd:05:8c:67:8d:fb:a9:24:f3:
2c:80:a6:e9:75:f9:df:90:b1:1e:ae:35:c0:90:fb:
37:23:58:20:5b:d9:6e:fd:14:97:f0:b3:c7:53:c0:
ef:58:5b:84:79:70:37:65:ba:e5:bd:18:06:aa:66:
d6:20:62:1e:4a:75:fe:c0:83:38:cd:f9:30:3a:6b:
38:4f:90:f6:ed:1c:3f:48:50:6d:47:73:c8:13:4a:
d9:d1:35:0a:28:99:2e:88:c5:fc:43:ea:d6:72:ea:
44:c3:04:76:38:2f:ec:6d:2d:6d:9d:50:e0:d4:42:
ab:6c:07:6b:f5:f0:2b:73:07:4a:b1:08:44:fd:30:
d8:3d:fb:aa:f1:58:e1:b3:0b:55:e3:a6:fb:d1:11:
20:be:45:62:d7:f5:5d:ca:9b:dd:da:af:30:21:ea:
7b:52:ae:aa:e7:8a:85:94:f2:53:dc:66:8c:21:4d:
e7:be:64:25:7a:50:cc:d7:32:0b:9b:18:01:8b:df:
e9:e2:bc:48:7d:1f:5e:cb:26:39:0f:e7:93:43:bf:
65:66:74:be:a0:e0:c3:50:bc:f0:2d:01:72:d5:48:
bf:07:5b:35:de:8c:3e:20:e1:e9:df:86:67:de:42:
9e:6d:21:9f:28:98:91:f6:7f:9f:dd:f5:0f:a2:44:
6a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CC:9B:E8:05:A9:A9:01:EB:D3:E8:DB:A5:83:1F:43:91:99:0B:6D
X509v3 Authority Key Identifier:
keyid:4A:7B:5F:FF:97:B8:9C:87:BD:BF:D4:61:64:EE:92:4A:87:D6:96:E9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/Sntf_5e4nIe9v9RhZO6SSofWluk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sntf_5e4nIe9v9RhZO6SSofWluk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CROWN/uMyb6AWpqQHr0-jbpYMfQ5GZC20.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:29e0::/32
Signature Algorithm: sha256WithRSAEncryption
20:b0:de:33:22:8a:8c:e3:21:7a:ec:cc:2e:c5:de:55:30:9c:
1c:9c:b7:28:91:a5:77:e8:35:63:a7:d9:48:06:f6:fe:94:e7:
68:c5:60:83:f4:58:7e:a5:d8:f8:42:60:77:55:6d:1d:0c:2d:
fd:0b:36:e5:0a:b9:d7:39:9f:d9:2d:83:fa:0f:97:4f:47:5c:
9e:dd:d8:d9:ff:26:f2:de:2d:da:28:fc:95:b8:5d:71:2f:a1:
03:96:e3:8f:43:81:8e:d2:1b:1d:bb:b2:1b:a6:11:8d:f8:bc:
0b:8c:2c:d2:d2:5f:8a:f4:ac:a8:c1:8f:55:ce:7d:1a:d7:04:
41:42:de:56:b8:6e:09:2a:4c:bd:37:16:c8:46:bb:6b:fb:f5:
22:a8:3b:74:91:b7:b7:6c:30:61:db:67:4d:15:8d:48:bd:96:
5a:99:e4:39:06:9d:8f:5b:f1:fa:3f:9c:20:02:02:76:d8:7c:
ad:00:c2:00:80:56:d1:d6:b0:fd:36:17:9c:0e:58:b9:3d:41:
29:8c:e2:6a:21:93:a0:80:57:8e:6d:3e:fa:6d:2f:9c:8e:b6:
69:ee:a2:ae:25:e3:0a:04:14:fa:6f:fe:50:05:46:1a:42:f0:
fb:0c:55:67:fd:8d:7c:3a:4c:05:7f:46:fb:6d:e4:38:93:3c:
e3:00:56:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org