Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/eHlIerO5qbL5wy_P3OorN2Jurcs.roa
File: eHlIerO5qbL5wy_P3OorN2Jurcs.roa (raw, json)
Hash identifier: 2FSE8G2snXCylCsSjMMtIjriw+gcd9fsv29+ETfD4Yw=
Subject key identifier: 78:79:48:7A:B3:B9:A9:B2:F9:C3:2F:CF:DC:EA:2B:37:62:6E:AD:CB
Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Certificate serial: 0E04
Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/eHlIerO5qbL5wy_P3OorN2Jurcs.roa
Signing time: Fri 01 Sep 2023 08:36:23 +0000
ROA not before: Fri 01 Sep 2023 08:36:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18424
IP address blocks: 2404:8cc0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3588 (0xe04)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059
Validity
Not Before: Sep 1 08:36:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7879487AB3B9A9B2F9C32FCFDCEA2B37626EADCB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:05:b7:6d:8d:b7:62:ca:47:b2:d2:a9:d3:13:
d1:1b:67:ed:73:0f:e6:64:b6:e2:a1:80:33:e1:ce:
4b:c9:4c:91:c7:bd:87:55:e7:1d:74:8c:99:32:bc:
c9:5a:3f:89:23:91:04:34:75:1a:88:2d:ae:7a:cc:
6a:58:d0:c3:fc:36:f3:cc:da:fc:7a:5d:a1:f7:c6:
18:5c:6a:c1:e3:4e:f2:49:3f:af:2a:2f:00:e8:3c:
20:84:37:d0:de:6a:77:ad:85:0e:93:27:e7:11:d4:
65:45:41:42:27:d3:9b:3b:21:36:23:6b:56:c8:af:
e0:b4:b6:6a:b3:92:e1:11:c7:67:c4:ba:fd:de:ce:
d9:c5:d4:7a:9c:96:ff:f4:3f:94:a4:b1:54:72:69:
1f:38:ee:5b:ab:84:74:16:19:aa:45:6c:ee:2d:af:
83:34:a8:09:3b:7c:dc:3f:1f:10:a2:fd:c0:10:ec:
9f:fe:39:c5:20:4c:9c:cf:1c:2c:a7:73:fd:4b:7d:
1c:56:ab:2b:29:94:c4:13:90:58:b3:4a:58:34:a8:
6e:45:77:5b:18:dc:1c:b7:e9:c6:e0:81:7f:3d:5e:
50:dd:bf:e2:77:ed:1d:f6:c5:2b:c1:34:00:f9:fa:
a3:72:d5:8f:17:8e:ef:c8:60:04:59:ad:04:d4:e6:
63:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:79:48:7A:B3:B9:A9:B2:F9:C3:2F:CF:DC:EA:2B:37:62:6E:AD:CB
X509v3 Authority Key Identifier:
keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/eHlIerO5qbL5wy_P3OorN2Jurcs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:8cc0::/32
Signature Algorithm: sha256WithRSAEncryption
6b:20:27:73:ac:40:37:21:8f:ec:e3:84:aa:44:a7:f0:ce:4e:
df:55:fc:2c:da:16:f5:52:e2:ee:6d:6f:15:de:7f:f7:fe:4c:
58:2e:6f:67:3a:7c:b9:d8:13:9d:e3:d3:a4:72:37:35:55:a6:
f9:cc:68:54:86:9c:52:29:c9:0c:1f:ad:c9:ac:a8:55:c1:ba:
56:d5:e2:2c:c3:f0:ad:00:5b:aa:a7:1b:ac:c6:9d:44:89:78:
56:75:50:30:0b:e7:75:1d:23:73:75:04:de:37:5d:93:cd:e8:
66:4b:b6:da:79:86:51:ba:98:2a:3c:9f:64:06:3f:2d:75:db:
2d:14:43:c9:64:b2:f3:29:6c:7f:fb:69:bc:fd:6c:e6:df:69:
41:fe:79:9f:43:38:02:86:03:52:eb:f8:29:c1:79:2d:fb:d1:
ff:ff:ff:a7:f7:be:d3:32:58:3e:c3:d0:e6:07:e1:ff:cc:90:
3c:72:12:21:79:55:ad:06:7a:9a:d9:fd:8d:a9:2e:16:b0:a0:
f3:4b:c9:8e:52:1a:a0:1c:d7:d0:d3:0e:67:35:ae:8a:a6:a2:
f9:91:06:c7:b8:5c:3d:f2:49:25:4d:fd:28:21:82:6a:c5:ea:
87:19:78:86:18:b3:10:5d:8c:fa:b4:9d:1d:e4:3d:af:04:cd:
dc:2d:e4:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org