Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/sESwSRR0ZTMxuj4BDgpxFsMILGk.roa
File: sESwSRR0ZTMxuj4BDgpxFsMILGk.roa (raw, json)
Hash identifier: sItv4JHVZq+/yJWIfGQ3VGeMM1xLCmLl2m4zz1MG0yM=
Subject key identifier: B0:44:B0:49:14:74:65:33:31:BA:3E:01:0E:0A:71:16:C3:08:2C:69
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BBE
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/sESwSRR0ZTMxuj4BDgpxFsMILGk.roa
Signing time: Fri 01 Sep 2023 08:36:41 +0000
ROA not before: Fri 01 Sep 2023 08:36:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9244
IP address blocks: 61.56.64.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3006 (0xbbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B044B0491474653331BA3E010E0A7116C3082C69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:57:4e:8b:f5:b0:44:af:cc:70:47:76:ca:05:
ae:ed:39:86:15:e8:21:66:6e:8b:97:71:78:ed:d6:
a7:45:70:a8:c6:73:a7:47:20:fd:f4:d8:e9:fa:c6:
5d:9a:f9:a4:48:7d:cd:cb:f9:ce:84:b1:d8:db:93:
b1:57:31:a8:90:e0:3d:00:dc:5e:80:4e:c4:c6:ff:
46:83:0b:70:58:f7:86:44:d7:e8:f9:77:07:c4:8c:
ac:14:df:17:eb:fb:00:c9:1e:84:96:d7:0b:21:89:
89:b5:dc:37:67:4b:aa:52:5b:64:ff:d5:ed:22:4a:
d2:79:6a:4e:b4:e7:a8:e1:4a:5c:cc:ca:60:36:11:
dd:0e:9f:91:2d:68:86:69:3f:c3:29:f8:cc:4c:17:
0a:3b:e7:9d:83:46:f3:c3:13:2b:5d:b9:f0:f1:3c:
1c:b7:e0:a9:17:36:7c:63:7d:d9:b8:b6:af:96:13:
64:35:47:8f:2c:26:73:38:c6:b0:3f:26:5c:bd:67:
07:08:21:ad:bb:90:79:73:92:34:85:96:fd:75:e6:
99:15:4d:57:ae:5e:3d:23:48:3a:76:eb:ac:ef:dd:
a1:a4:ec:79:01:bf:fb:d7:39:2d:af:02:38:84:be:
22:f4:c6:48:2a:d4:bc:db:34:22:cc:38:b5:b6:10:
db:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:44:B0:49:14:74:65:33:31:BA:3E:01:0E:0A:71:16:C3:08:2C:69
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/sESwSRR0ZTMxuj4BDgpxFsMILGk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.64.0/20
Signature Algorithm: sha256WithRSAEncryption
43:58:c9:bc:f1:ef:f8:ce:ff:63:c2:12:78:70:7f:a4:79:e6:
95:30:cf:92:ab:92:52:8b:5d:2c:c6:f0:b5:d9:5f:b9:a4:18:
01:f3:b4:a6:53:48:94:91:08:68:8f:b4:f2:e6:15:10:ca:c0:
bd:85:a8:91:d4:7d:66:b5:49:7c:43:8b:d0:a3:ce:c4:87:0d:
5e:09:33:9e:d4:35:83:fa:e2:f1:75:e9:d5:9d:3a:91:7b:00:
36:e0:0b:4d:f0:f4:fb:a2:15:b7:67:60:9d:9c:34:c8:32:45:
ac:0d:df:d3:f5:a1:f7:a0:b3:a8:2f:0a:54:1c:dc:9b:ec:d3:
0a:99:02:ea:72:20:b7:73:43:d0:11:7f:4c:ed:ec:32:63:1d:
bc:f1:89:7f:28:ab:56:fe:fc:89:b4:aa:6d:1b:ee:6a:23:e3:
9f:6b:0d:10:6e:87:b3:47:b8:e5:4f:bf:eb:10:ce:95:f9:c2:
cb:24:4a:74:14:0d:ed:84:0e:f8:b4:42:ac:64:28:d6:8e:ca:
79:9f:72:e6:55:3d:72:87:8a:3f:8c:7a:5c:49:e5:57:bc:58:
5f:3a:d0:47:1b:67:fb:61:0a:3d:73:8c:85:d7:54:de:24:ab:
47:55:63:24:b5:cb:78:57:4b:b1:d3:9c:49:36:b5:53:a5:58:
86:3b:2e:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org