Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa
File: W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa (raw, json)
Hash identifier: KZZ13rrHmWh0dKc3YOlcS/RcJAC+KbCONcfEaW4h7Xk=
Subject key identifier: 5B:F3:EC:37:47:DE:DE:71:F2:B8:1A:66:20:8C:39:10:BD:5E:D3:A4
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BCE
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa
Signing time: Fri 01 Sep 2023 08:36:47 +0000
ROA not before: Fri 01 Sep 2023 08:36:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9244
IP address blocks: 113.21.160.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3022 (0xbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5BF3EC3747DEDE71F2B81A66208C3910BD5ED3A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c8:e2:5e:95:7d:3b:cb:a3:4e:ad:8e:80:b9:
b5:25:11:c5:86:8a:48:a5:fc:9e:48:c9:30:a9:72:
39:a4:6c:35:85:1d:0b:52:97:b8:f2:4f:72:c1:f3:
d8:ca:5f:fb:d3:26:be:69:2b:1e:36:40:f1:e1:d7:
16:19:ed:a5:96:20:33:85:36:61:e9:59:cf:39:38:
ff:ab:9b:fa:ce:ec:e4:91:c5:b3:18:dc:ae:0c:64:
72:fa:64:1d:bf:e7:e6:31:6b:f5:84:ea:12:e1:51:
a1:cf:de:05:2a:78:e2:d1:24:e9:93:4f:7a:e1:b0:
bb:51:cf:33:61:f3:3a:5d:f3:7d:6d:23:df:56:77:
55:88:fd:d9:2f:65:c7:20:ac:fb:db:7f:fd:2c:b7:
ff:2f:c8:6d:46:c4:84:4c:a4:cc:b1:76:13:cb:66:
b7:1e:b3:7c:e8:1e:7b:45:e4:a3:ac:34:87:58:81:
87:32:10:da:a3:89:46:9b:66:ef:c5:bb:da:92:04:
dd:24:0a:4a:92:56:31:89:a6:95:fa:df:39:4a:35:
60:78:df:71:86:6c:a0:25:75:9b:57:28:56:ab:44:
7b:c5:d4:36:c5:d9:63:7f:d0:45:85:a5:6a:c2:95:
79:c2:de:99:60:d8:09:1f:cb:cf:c3:27:1f:b4:a9:
4d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:F3:EC:37:47:DE:DE:71:F2:B8:1A:66:20:8C:39:10:BD:5E:D3:A4
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/W_PsN0fe3nHyuBpmIIw5EL1e06Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.21.160.0/20
Signature Algorithm: sha256WithRSAEncryption
23:53:dc:e3:63:1c:76:8e:50:5b:b1:e8:5f:8f:46:7e:8a:b6:
31:0d:8a:71:38:f4:96:13:a3:a6:68:0d:86:0c:f1:b6:7d:93:
0c:99:86:bf:70:22:91:0f:0e:e7:d9:e7:f2:9e:4e:e9:17:0d:
7b:73:66:2c:b3:ff:f5:47:36:87:18:81:1b:11:a0:28:32:60:
fe:6a:ab:90:9f:29:27:d4:56:fd:e9:78:fa:64:02:e1:cf:62:
a3:cf:1e:3d:7d:0b:1a:1f:7c:0e:c6:19:aa:c7:13:b0:51:0f:
2c:b6:6b:5a:63:0a:32:1b:4f:48:1e:6c:1d:af:65:59:f5:c1:
11:4e:e0:8d:8e:f0:69:ae:93:7e:3e:a8:14:6b:e5:60:31:23:
72:09:1b:6b:84:8f:13:77:52:c1:6e:00:d4:f4:15:39:ea:ac:
44:0c:8a:46:88:6c:b2:b3:aa:d2:6e:75:32:5f:bc:f0:3d:66:
e8:7b:5d:67:5c:12:42:1d:a1:09:8e:36:2f:04:8d:51:7f:f6:
e7:a8:cb:57:4a:8a:3e:f9:df:c5:ea:11:3f:e9:a7:97:15:f4:
04:41:4a:f3:1f:48:db:76:01:0d:a8:28:f5:7f:2a:c5:b1:0c:
81:a0:42:27:0b:69:95:c7:4d:20:67:61:7a:aa:a0:66:b5:e5:
7b:92:7c:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org