Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/zGn9dPnybRTCRwECWGOs3aL4g8Y.roa
File: zGn9dPnybRTCRwECWGOs3aL4g8Y.roa (raw, json)
Hash identifier: r4Ra/qg1X70juEL0p5N1wudS5CDK1vU66T3eybFpjAE=
Subject key identifier: CC:69:FD:74:F9:F2:6D:14:C2:47:01:02:58:63:AC:DD:A2:F8:83:C6
Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial: 0BC0
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/zGn9dPnybRTCRwECWGOs3aL4g8Y.roa
Signing time: Fri 01 Sep 2023 08:36:41 +0000
ROA not before: Fri 01 Sep 2023 08:36:41 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9244
IP address blocks: 61.56.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3008 (0xbc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Validity
Not Before: Sep 1 08:36:41 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=CC69FD74F9F26D14C24701025863ACDDA2F883C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:24:65:1b:3f:ce:ab:de:46:88:47:51:c6:56:
a7:78:25:54:bf:00:22:19:73:22:23:81:31:d8:f6:
51:18:d6:08:bb:78:e4:7c:cb:2f:79:65:b8:1e:32:
e7:03:1b:bc:95:df:d0:11:41:2e:9c:6f:d7:be:75:
c8:b0:cd:7d:3c:0f:35:3a:dc:ce:f6:6f:c3:5d:5a:
fe:9c:0c:0d:87:f0:ae:0f:6a:d1:4e:5b:7d:f9:d5:
dc:8c:a5:38:c2:46:b5:b7:ef:8e:fa:df:db:cb:6d:
f8:1b:cc:69:1b:e7:f9:ee:67:b8:49:e5:e1:cd:cb:
57:dc:69:f0:db:2f:24:48:e7:a8:be:9a:d9:42:65:
5a:c2:5c:f0:fe:f9:66:d8:39:59:f6:ca:72:37:a1:
50:1f:d2:43:93:22:b9:60:31:63:59:25:58:f9:56:
c3:33:2a:c3:82:dc:9d:0e:35:2b:cf:ae:16:b0:84:
19:ed:8f:94:f5:13:6a:df:f6:78:cb:7c:db:0a:b7:
29:e4:05:35:64:49:9f:d3:8b:b4:5b:cc:fd:58:c8:
cd:5a:b8:a7:93:f3:25:67:d1:04:59:94:26:a9:d1:
50:82:d0:ab:b6:c5:f4:db:a5:3e:e6:39:f7:5d:3f:
df:a3:a2:f4:a3:81:6d:ce:d1:c3:65:86:02:c5:3d:
af:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:69:FD:74:F9:F2:6D:14:C2:47:01:02:58:63:AC:DD:A2:F8:83:C6
X509v3 Authority Key Identifier:
keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/zGn9dPnybRTCRwECWGOs3aL4g8Y.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.67.0/24
Signature Algorithm: sha256WithRSAEncryption
42:87:27:31:79:66:02:33:8b:be:0f:9a:a0:b5:54:c5:42:5a:
91:11:0e:e7:cf:38:b4:aa:94:1c:25:77:b7:0f:07:bf:77:ec:
74:ec:b4:a3:1a:d9:d5:57:8c:4f:b1:9a:17:bf:98:17:ca:61:
da:59:1d:d8:e3:1c:07:b1:d3:ca:6a:1b:4d:b8:3d:bb:f9:b7:
89:aa:38:a5:c3:2b:cb:43:2e:70:1e:7b:94:40:a6:30:47:7d:
3b:f5:b6:2e:e9:48:3b:d6:1f:5b:25:fb:74:f2:6f:24:b0:b2:
12:b6:96:24:76:3c:21:3f:06:cd:4e:92:e5:c4:f9:35:68:fb:
e7:0d:b2:cc:88:08:6d:53:5f:bd:87:74:60:b7:9f:05:f2:9f:
84:ef:ba:90:d2:79:d3:b5:73:ad:d7:4f:1d:50:51:dd:56:14:
db:fb:ee:67:34:0b:8c:06:18:18:c3:00:55:36:33:25:ef:38:
b4:16:b5:31:92:b7:cb:26:1c:45:08:84:17:e0:0e:ea:81:56:
21:28:a3:2a:91:c6:0b:bf:39:cb:d5:3a:26:b0:6b:08:a3:d6:
78:12:8a:ac:79:bb:a0:47:f9:51:f5:2e:94:e6:ad:2d:fe:6e:
57:dc:cd:33:3f:14:05:74:c4:50:a3:3a:88:e6:46:bc:b8:1e:
e7:6f:aa:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org