Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa
File: eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa (raw, json)
Hash identifier: mX2wcwGNNhiw/CliU556cc4tkJLruUi/DhOnv18SsGs=
Subject key identifier: 79:1A:46:EF:17:4B:B7:68:DB:7F:B9:0D:9C:78:26:EF:16:2C:D5:C0
Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial: 0B45
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa
Signing time: Fri 01 Sep 2023 08:34:05 +0000
ROA not before: Fri 01 Sep 2023 08:34:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4780
IP address blocks: 61.58.16.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2885 (0xb45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Validity
Not Before: Sep 1 08:34:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=791A46EF174BB768DB7FB90D9C7826EF162CD5C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c1:50:9e:1f:99:87:f6:4f:4a:71:06:ab:49:
fe:16:84:a2:01:79:cf:4b:c4:ce:7e:e3:12:3f:17:
31:aa:7d:54:51:56:32:47:71:03:99:0c:17:36:f8:
ec:9d:51:1d:09:44:3b:d8:a2:a0:b1:a0:0e:bd:63:
53:3e:7a:c7:ca:f6:3c:b6:28:3f:46:e7:0c:4f:8a:
bd:e0:4b:be:fe:5c:37:e4:32:29:8b:1b:2a:2c:49:
55:77:4c:b0:0c:fa:da:9b:67:d5:b1:93:ea:78:ce:
50:93:7e:35:4c:56:dc:36:52:f8:21:db:0a:44:12:
e8:9a:c0:80:97:90:04:9e:48:77:6c:ee:e5:2c:b3:
3a:db:ce:50:15:8e:c4:10:d7:e6:ea:39:5a:a4:00:
c0:39:35:29:2f:a8:3c:f7:b4:cf:dc:f3:b6:6c:71:
47:76:16:ff:b3:93:9a:53:33:29:ed:b0:2e:93:7d:
d5:dd:0d:bf:c6:98:3b:44:f4:27:39:30:8a:52:55:
00:e0:ed:5e:83:59:81:3d:2c:5f:da:e8:20:60:06:
d4:63:fd:d0:f3:6a:0b:d2:75:87:c7:5e:fd:91:67:
89:eb:12:35:4d:97:8e:28:4f:87:bd:b3:df:c3:dd:
44:ba:c2:9f:01:29:52:7c:81:c6:b2:d3:ca:9d:68:
62:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:1A:46:EF:17:4B:B7:68:DB:7F:B9:0D:9C:78:26:EF:16:2C:D5:C0
X509v3 Authority Key Identifier:
keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/eRpG7xdLt2jbf7kNnHgm7xYs1cA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.58.16.0/20
Signature Algorithm: sha256WithRSAEncryption
aa:84:49:61:b0:4a:15:08:47:2b:56:44:90:81:d3:dd:7b:39:
c8:46:3d:e6:f4:a4:8a:3e:a3:6f:65:54:cd:34:76:04:b0:e0:
3d:0c:06:8b:36:7e:1b:f3:9d:fc:93:f3:59:e1:92:1f:87:17:
18:c0:dc:66:ff:b3:6d:28:ad:56:76:2f:f7:6a:51:34:95:f0:
c4:0d:af:e0:88:b0:32:b7:d3:bf:78:f3:70:6c:ec:85:27:1a:
95:2c:f1:7c:b5:67:06:7b:72:8e:28:d8:38:36:72:07:aa:73:
a9:2b:21:9e:68:7e:02:f3:f6:7e:b4:9a:7a:76:20:11:bc:05:
2a:d3:d7:23:44:1e:af:fa:a6:6b:8e:03:b0:c2:8c:c6:ea:3b:
6b:ce:58:70:8d:50:53:f5:bd:0c:e2:21:05:5e:9e:57:71:64:
cc:94:88:cd:7f:2e:d2:0e:b8:ef:fe:02:6c:39:9c:a8:73:25:
8a:6e:a3:f0:11:f5:f4:02:a9:7d:b5:6d:92:e1:64:e6:bc:0b:
11:79:6c:02:3d:0b:a7:36:23:6d:00:1c:ec:b0:39:8a:30:87:
22:97:ce:26:2d:96:9e:53:9f:fe:44:ae:e6:50:ec:20:c1:68:
f2:b3:82:2f:b0:ae:05:92:b5:79:df:dd:63:cc:b1:93:d5:7e:
80:26:50:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:18 2024 by rpki-client on console-fra.rpki-client.org