Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/03NioFNyJkZesj4V_xpyQ-DAVXw.roa
File: 03NioFNyJkZesj4V_xpyQ-DAVXw.roa (raw, json)
Hash identifier: +hxC9cVH4BtYieMhMUMuGRr7ldNlohX7iiNhXIHwX7c=
Subject key identifier: D3:73:62:A0:53:72:26:46:5E:B2:3E:15:FF:1A:72:43:E0:C0:55:7C
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0B43
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/03NioFNyJkZesj4V_xpyQ-DAVXw.roa
Signing time: Fri 01 Sep 2023 08:34:04 +0000
ROA not before: Fri 01 Sep 2023 08:34:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 61.57.208.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2883 (0xb43)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 1 08:34:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D37362A0537226465EB23E15FF1A7243E0C0557C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:23:b7:28:ce:db:3d:13:bd:c2:95:1b:e3:68:
cc:7a:55:cb:a0:4f:8d:21:55:18:14:ff:81:16:38:
10:50:6d:1c:5e:57:16:d1:c6:5c:9f:09:dd:fd:aa:
13:30:06:f2:ee:ed:56:56:11:91:9e:eb:68:bb:a9:
88:0e:c0:59:bd:77:08:9d:1d:59:c6:4b:ff:39:53:
42:84:d7:47:4a:bf:85:8b:0e:f8:9c:81:0b:e2:82:
60:ae:9e:fd:04:79:ef:d2:63:63:be:7c:02:9c:b8:
7c:16:a3:51:24:c5:6b:c4:7e:9b:1c:e1:19:54:bb:
02:51:05:2b:41:72:2b:c1:df:6e:d1:3e:a1:6e:ae:
35:72:7b:ff:d2:a6:29:39:ad:ba:3f:57:8e:5d:33:
de:25:aa:7d:b4:e1:66:77:51:12:dd:ae:34:ce:0c:
26:b3:51:ee:ed:b2:19:a2:21:b9:ed:e6:89:ae:db:
d0:e7:f2:bf:dd:74:36:5a:55:ae:e3:08:bb:78:67:
a7:0d:a2:9d:57:21:48:ec:c4:54:70:67:be:49:7b:
b0:21:8e:70:26:e4:74:1a:a1:23:e3:29:00:74:d4:
5c:29:a8:33:9e:48:cf:70:a2:25:89:ac:f2:78:1d:
b3:dc:5d:48:a5:a1:7a:c6:1c:7c:d8:43:a6:07:ad:
5e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:73:62:A0:53:72:26:46:5E:B2:3E:15:FF:1A:72:43:E0:C0:55:7C
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/03NioFNyJkZesj4V_xpyQ-DAVXw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.57.208.0/20
Signature Algorithm: sha256WithRSAEncryption
9f:02:5d:2a:a2:05:ef:ec:11:d9:c7:64:b2:38:64:0b:59:85:
a2:91:42:9f:72:51:35:c3:9c:f4:33:f9:02:ff:22:fd:55:08:
de:54:8c:91:dd:41:90:0d:0e:0a:8d:53:0f:f8:27:d3:2f:4f:
88:82:f7:c5:4b:e1:a6:c1:aa:2c:45:0b:7b:c8:b2:01:dd:2e:
fd:14:7a:48:93:78:3f:d0:17:91:48:05:ea:04:cb:49:6a:6b:
a7:9e:e4:1d:94:74:0a:8b:77:35:83:04:f6:30:9a:6f:99:fd:
3b:9f:91:0a:fd:bf:31:6d:de:4a:58:30:4f:82:67:54:ef:eb:
10:60:de:a0:0c:0f:ec:f8:60:64:87:7b:b3:39:fe:44:9f:70:
08:f2:5c:32:08:36:87:d8:07:cb:dd:2f:d2:86:22:02:1e:17:
f6:82:4d:46:91:27:c8:d2:8c:0c:2b:b2:09:77:d5:7c:54:23:
27:1d:a1:31:14:5b:3d:7b:58:66:b7:ce:16:29:19:22:ed:41:
4d:9b:af:86:93:9e:28:d5:7b:eb:b5:97:37:63:44:12:dc:11:
1c:5b:5e:f5:fb:47:67:b3:91:58:a3:09:37:3f:67:97:2e:ae:
b4:8c:e3:87:42:65:8d:95:34:97:3a:e9:e2:85:c9:2c:06:56:
06:f3:61:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:11 2024 by rpki-client on console-ams.rpki-client.org