Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa
File: L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa (raw, json)
Hash identifier: lECOB/DIwB6PMRVPad9oTJ4zi83/VdToF3otKpNjjgI=
Subject key identifier: 2F:54:C1:B5:F3:EA:1C:C3:C0:4B:F0:E3:C7:EE:C2:86:9E:46:87:76
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BC4
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa
Signing time: Fri 01 Sep 2023 08:36:43 +0000
ROA not before: Fri 01 Sep 2023 08:36:43 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9584
IP address blocks: 113.21.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3012 (0xbc4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:43 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=2F54C1B5F3EA1CC3C04BF0E3C7EEC2869E468776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b1:48:ee:07:44:6d:9f:b5:34:8c:04:e5:c5:
79:ae:ce:72:1a:2c:c4:f4:98:0a:3e:22:98:aa:22:
f5:eb:69:69:26:c6:2e:f6:e6:5a:63:d3:cc:53:c2:
75:43:9e:3a:08:82:58:23:99:a3:d0:9f:7b:e8:c3:
6c:4e:3d:84:37:2a:8d:cc:69:97:b0:04:08:37:cd:
aa:ff:d5:5f:62:10:33:76:13:e1:13:a2:9d:5a:00:
eb:c2:69:41:c3:ab:76:08:6f:85:be:f5:8b:2d:30:
a6:3f:cb:93:af:77:80:03:d3:0b:2b:68:bd:9f:0c:
8a:9c:58:db:53:f0:8c:86:f7:c1:b3:a4:e9:2f:bb:
d1:c1:83:38:65:53:d1:e2:52:7d:a8:50:05:4c:85:
52:f1:f3:13:e5:9d:7d:8f:a3:cb:3d:ef:5b:74:0a:
e5:d6:f5:fc:38:c5:2c:99:eb:0f:0e:fa:6e:3a:e5:
5d:58:0b:26:75:e5:02:2d:01:75:7d:e9:12:58:d8:
7f:38:26:b2:1f:5e:ad:f7:d4:4f:cf:a8:3a:34:79:
cf:41:68:4d:0f:2c:e5:96:ee:9a:ca:2e:de:87:27:
56:86:e5:33:c6:a8:e9:b9:81:15:95:44:30:03:eb:
76:ea:74:bf:ca:7d:55:2a:3b:cc:7a:68:02:90:aa:
0a:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:54:C1:B5:F3:EA:1C:C3:C0:4B:F0:E3:C7:EE:C2:86:9E:46:87:76
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/L1TBtfPqHMPAS_Djx-7Chp5Gh3Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.184.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:10:bf:7d:ca:c4:20:be:73:c8:b4:2d:26:ef:f7:d9:57:dd:
e2:41:8b:d8:3a:1d:02:32:00:22:56:15:61:9a:e5:a9:47:6c:
0f:16:6b:00:b9:91:53:17:9c:6f:9a:53:e0:3f:27:05:50:79:
24:23:06:96:10:41:2f:b2:33:47:45:bc:1b:44:55:65:9a:15:
e3:52:0e:20:5f:29:b8:ab:83:2e:e0:ad:97:be:df:1c:3c:68:
0e:d1:3b:56:4d:e3:7b:2b:10:28:3c:13:17:1e:22:ac:36:b9:
b1:0c:a0:f1:64:c3:45:75:05:7f:1d:03:b3:9d:66:b0:12:83:
21:6c:1f:a0:e7:e4:7f:1c:7e:0c:e5:7d:00:25:e8:f7:bd:c2:
69:e6:44:89:5f:93:cc:12:99:a1:f6:7b:6f:55:85:14:80:51:
78:a9:3a:05:b6:fe:0c:18:1d:38:b4:ad:a0:97:bd:f8:4b:6e:
a9:de:71:a6:3a:a3:d2:31:17:60:8b:64:1b:50:4e:13:92:25:
3e:cd:5b:66:da:73:16:5c:e8:02:92:a1:cf:1d:98:a5:d8:18:
06:8a:45:75:f9:9b:91:14:f6:17:b8:fd:9a:3b:66:30:58:9d:
45:53:02:b5:95:d2:bf:69:98:41:f4:17:7a:82:1d:d8:07:c4:
2d:7a:93:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org