Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/fGnZ5eyaKKt7D1p4xJr_lKYhiM8.roa
File: fGnZ5eyaKKt7D1p4xJr_lKYhiM8.roa (raw, json)
Hash identifier: bqWBF30rqivXRcDt3IgY6ycPWlppVpLDZis/GIxO7MI=
Subject key identifier: 7C:69:D9:E5:EC:9A:28:AB:7B:0F:5A:78:C4:9A:FF:94:A6:21:88:CF
Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25
Certificate serial: 0B34
Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/fGnZ5eyaKKt7D1p4xJr_lKYhiM8.roa
Signing time: Fri 01 Sep 2023 08:38:51 +0000
ROA not before: Fri 01 Sep 2023 08:38:51 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 10135
IP address blocks: 61.64.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2868 (0xb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25
Validity
Not Before: Sep 1 08:38:51 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7C69D9E5EC9A28AB7B0F5A78C49AFF94A62188CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2b:f4:3a:3e:7a:5e:1b:12:96:35:79:91:e7:
ac:0e:55:cd:a8:d8:95:64:a1:f7:a6:57:f3:6e:db:
88:19:3b:70:9c:33:c1:bc:25:45:82:35:3e:d2:bc:
cc:41:35:3e:36:78:7b:68:5d:c4:cb:e6:37:f6:10:
4b:ac:cd:d4:de:c1:cd:68:02:ad:2f:d7:0a:79:eb:
67:f3:be:89:f2:65:ec:7c:2e:78:19:2c:37:0d:5d:
be:68:a7:1f:91:d7:ce:f5:7e:1a:12:24:8f:ee:7a:
9f:fe:a6:c8:27:4d:86:90:0e:76:1d:24:95:bb:2d:
4b:80:f7:77:8d:a2:90:cf:72:d4:45:1b:13:5d:7e:
bd:a0:68:37:b8:11:a8:74:ba:11:6a:56:45:f9:f4:
e5:c3:85:16:72:2a:d1:3d:1f:84:fd:72:47:b4:c1:
bd:72:72:7a:af:1a:63:92:a8:20:3d:23:54:88:d9:
cb:f0:b0:3c:fb:70:b4:21:e8:42:42:71:ef:20:79:
8a:fa:80:32:2b:58:31:ad:f9:dd:c6:82:03:4a:fa:
a2:2a:41:96:02:2b:71:d9:ea:55:2f:62:0e:88:82:
21:18:3b:f3:97:da:9c:95:97:84:b3:a0:35:93:8d:
32:04:93:65:d4:e9:9e:f8:e7:8f:a5:a3:6e:7d:fc:
6c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:69:D9:E5:EC:9A:28:AB:7B:0F:5A:78:C4:9A:FF:94:A6:21:88:CF
X509v3 Authority Key Identifier:
keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/fGnZ5eyaKKt7D1p4xJr_lKYhiM8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.64.48.0/20
Signature Algorithm: sha256WithRSAEncryption
31:cd:a8:96:09:3f:37:c6:a6:ff:29:fb:b9:6c:f5:f9:04:da:
96:eb:cf:e2:b1:2c:48:8b:7f:19:0e:e8:13:28:cf:4d:28:c3:
74:17:b1:1d:ca:4f:4e:a4:ec:41:dc:33:47:56:42:c9:34:09:
95:be:0e:5f:7f:4a:6b:7a:ff:2a:0e:75:0d:e1:5d:94:e6:d2:
7a:87:8a:69:21:30:00:56:b5:54:f9:c4:7f:a1:f1:64:bb:0d:
68:c0:8d:02:93:64:5f:ed:7d:12:7c:eb:1f:e1:e7:76:db:4a:
d8:c3:d4:08:d5:70:89:45:4a:33:50:a0:40:28:51:54:fa:3e:
a5:1f:72:93:33:fd:dc:f6:dc:67:0a:e5:97:70:82:c5:df:21:
d3:af:22:eb:17:e3:84:e7:1b:aa:8e:f1:9d:28:32:e6:8d:97:
cd:3e:ce:9a:26:73:56:2c:d1:9d:7e:59:8d:fe:35:e8:08:75:
49:97:2b:f8:e5:35:bd:33:eb:96:86:80:61:85:3a:7f:83:16:
8b:c6:93:49:c1:1f:2b:a0:93:71:ab:3e:7e:6f:fb:f6:d5:13:
5d:45:ce:65:32:1e:9b:8e:a4:c7:88:9a:9d:4e:99:0f:bf:1b:
cd:01:00:3b:90:5d:a3:37:6c:43:e7:bc:24:50:36:db:d8:7d:
4f:a1:46:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org