Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/3-mwiUbgxs6bUzFBwn43GJMzwf8.roa
File: 3-mwiUbgxs6bUzFBwn43GJMzwf8.roa (raw, json)
Hash identifier: zlIdhBR4RmvPJ9ih4PzV7gg8GYXV0+y28SFfGmT53uI=
Subject key identifier: DF:E9:B0:89:46:E0:C6:CE:9B:53:31:41:C2:7E:37:18:93:33:C1:FF
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 0A3F
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/3-mwiUbgxs6bUzFBwn43GJMzwf8.roa
Signing time: Thu 15 Sep 2022 02:44:31 +0000
ROA not before: Thu 15 Sep 2022 02:44:31 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 24154
IP address blocks: 211.76.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2623 (0xa3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Sep 15 02:44:31 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=DFE9B08946E0C6CE9B533141C27E37189333C1FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:da:05:a9:a1:10:e8:0a:34:ea:30:d2:be:67:
75:53:c9:21:33:7f:c4:97:73:57:5c:33:80:47:d1:
49:ae:d6:63:fc:c5:55:8a:11:bd:fa:d8:7f:83:5e:
04:5d:fd:82:2e:33:e4:0a:11:9d:80:a7:cc:66:36:
29:47:40:ba:27:6f:ce:b0:a0:ef:16:6f:3a:b5:54:
c3:ec:59:4e:7a:b7:d8:2a:fe:f3:74:58:90:e2:08:
2e:4b:54:cc:0e:82:f6:69:6e:e3:63:81:90:06:31:
92:55:a5:f0:c6:be:4d:6b:cc:d6:4b:5c:be:2e:ae:
77:81:26:1a:15:95:a0:96:02:13:de:9d:de:bf:80:
35:d9:9f:cc:6e:1c:74:56:15:4d:de:db:2e:6b:cc:
15:de:f8:c4:f6:4b:78:82:84:1d:5a:d7:ac:2c:b6:
40:0b:1f:25:7f:f2:ff:ea:ae:34:f5:d5:16:fb:38:
93:8b:08:1e:d6:09:cb:76:87:73:e1:0a:be:44:59:
6e:34:9c:8b:21:b0:67:37:aa:be:c7:8b:a1:df:a9:
89:d0:58:81:3d:5b:40:92:73:3d:f3:8f:b1:95:39:
31:87:c3:3a:55:c4:e1:be:39:f8:70:ec:7c:34:99:
91:a5:f4:2a:2a:ac:c5:bd:c2:2e:93:70:7e:e5:2c:
08:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E9:B0:89:46:E0:C6:CE:9B:53:31:41:C2:7E:37:18:93:33:C1:FF
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/3-mwiUbgxs6bUzFBwn43GJMzwf8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.106.0/24
Signature Algorithm: sha256WithRSAEncryption
94:25:57:d0:9d:ca:a8:db:88:60:6a:15:04:bf:d6:86:9d:36:
2e:fe:65:ea:07:ed:a8:d2:3b:7a:3c:71:76:7f:91:4e:93:50:
c5:5b:c9:9f:d1:b8:71:c3:65:f9:6f:21:99:36:06:0a:14:bb:
84:8b:9f:85:d3:e3:2a:98:1a:0d:a7:9e:8d:ab:c0:19:f3:3b:
fe:02:1c:77:c3:9a:3e:e6:b5:63:fe:ab:08:bd:69:30:b1:7b:
b5:6a:ae:b7:89:e4:4e:51:fa:36:c1:bf:fb:ee:c5:23:14:73:
77:79:fb:75:cd:f4:03:7e:c5:9a:42:e8:25:e6:15:46:5c:b4:
53:bf:c7:6e:20:f6:34:f3:13:74:d2:f8:1f:b1:d0:a1:d6:cb:
75:8b:6c:24:2f:0a:e4:d2:5c:54:ea:98:9a:64:75:e2:64:4f:
9b:6c:b4:2c:80:88:c5:80:55:63:20:12:1c:d9:b9:1f:24:c3:
2b:27:95:7a:4b:31:bc:1a:9d:a7:04:e6:4d:24:5b:d6:38:45:
13:03:6a:1f:68:59:b7:31:c6:e3:30:ef:a2:41:b5:20:d4:b7:
46:7d:7c:a0:5d:b3:13:6a:0b:3a:90:ac:12:e9:a8:28:1d:65:
97:38:27:a5:a1:b4:0c:8e:bf:9d:54:e6:ff:c9:56:31:fd:68:
1c:44:b2:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org