Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/92RGTo7w6gdeKN0wKTgMyqqZH7E.roa
File: 92RGTo7w6gdeKN0wKTgMyqqZH7E.roa (raw, json)
Hash identifier: 3wivtP2dvTmwwxNzl1MAO+SvD7lgLHWDqKSo81q5oh4=
Subject key identifier: F7:64:46:4E:8E:F0:EA:07:5E:28:DD:30:29:38:0C:CA:AA:99:1F:B1
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BC5
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/92RGTo7w6gdeKN0wKTgMyqqZH7E.roa
Signing time: Fri 01 Sep 2023 08:36:43 +0000
ROA not before: Fri 01 Sep 2023 08:36:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9244
IP address blocks: 61.56.72.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3013 (0xbc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=F764464E8EF0EA075E28DD3029380CCAAA991FB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7e:ec:a1:29:07:2d:39:28:2f:66:0b:89:50:
c0:4d:f8:2c:e6:21:9d:7e:43:1d:4c:3a:20:b7:2e:
1a:b0:4e:77:1e:a0:90:2a:a9:3a:65:f1:3f:2b:a3:
41:6e:c1:9c:bc:5f:68:14:6a:27:5f:0f:dc:5c:81:
72:41:26:c5:0e:ee:3e:2a:36:cc:ff:e9:92:d0:1d:
5b:15:40:e1:12:6c:d8:d1:44:6d:70:ed:f1:02:23:
87:11:c2:a9:7a:22:ad:ae:c8:49:ad:37:bb:9b:a5:
4c:a5:71:21:d1:d3:27:5a:34:99:b5:19:0e:4f:e2:
bc:fd:e3:54:60:b6:13:ed:58:d0:54:c2:8c:25:cd:
7d:97:98:c5:d8:73:6b:2c:0e:a0:b4:b9:9f:aa:dc:
fc:1f:b7:32:2e:04:d9:00:ce:bd:3c:bc:3a:21:12:
9e:7e:04:82:15:67:92:b5:56:8d:1c:0d:63:59:09:
d6:2f:3d:df:9d:bc:58:85:36:ea:4f:9f:c1:aa:6e:
35:4e:3b:5f:64:ba:09:36:fd:43:35:79:e2:1a:93:
a2:05:8f:41:6b:c8:34:a0:1c:09:4e:ec:81:11:03:
db:a0:7e:74:b6:49:53:79:62:11:a4:6a:35:2a:38:
39:96:fc:af:10:a3:7d:59:c0:7e:ac:98:43:a1:df:
b8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:64:46:4E:8E:F0:EA:07:5E:28:DD:30:29:38:0C:CA:AA:99:1F:B1
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/92RGTo7w6gdeKN0wKTgMyqqZH7E.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.72.0/21
Signature Algorithm: sha256WithRSAEncryption
64:70:8e:bb:1f:33:ae:b0:26:2f:f3:f2:4d:b8:56:fe:13:73:
c6:9a:38:60:42:80:69:d1:af:6f:1d:b9:f8:ba:a5:8b:81:b8:
75:74:9e:1e:6a:f3:6b:a4:f0:2a:ed:8c:96:be:f3:97:e3:6b:
81:99:e8:d1:9a:43:57:7c:11:c8:76:26:10:8b:1c:7e:81:b4:
9c:9e:23:9e:ad:84:55:98:70:0e:30:a8:da:03:af:5a:55:4b:
2b:f2:f4:06:94:f2:a1:39:ec:1c:31:95:0c:a5:9c:cf:6e:0f:
73:b5:2d:13:92:7d:00:68:28:6d:05:bb:6d:43:6f:31:6a:41:
16:9c:c4:16:ed:16:f0:a6:c9:dc:3c:11:80:f4:07:c4:e7:c1:
9a:0d:4d:c7:65:7a:cb:fb:83:ac:a3:71:5d:68:40:9f:c8:b7:
6f:cd:ca:78:41:6d:96:70:95:14:63:b4:04:86:51:18:6e:1d:
8a:6d:e2:06:8b:7e:4c:e4:77:2c:42:35:be:31:a9:f9:2c:a1:
76:57:da:cf:ed:f7:ac:28:e4:67:b4:49:df:a6:99:a4:6e:a3:
15:9a:28:98:47:c4:e0:eb:10:fc:b2:4e:9f:db:d8:ac:90:d0:
48:75:6e:89:bf:a4:6c:d1:79:6e:d3:8b:17:fc:1f:cc:0e:cb:
7f:4b:1f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org