Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EBT/oX0Z-z6YB6FHY1PbCy01UMlVuNA.roa
File: oX0Z-z6YB6FHY1PbCy01UMlVuNA.roa (raw, json)
Hash identifier: XuRSPfdzYeECHiahleXAfYFspYfWz0InEHP3e8S/n3g=
Subject key identifier: A1:7D:19:FB:3E:98:07:A1:47:63:53:DB:0B:2D:35:50:C9:55:B8:D0
Certificate issuer: /CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Certificate serial: 0B31
Authority key identifier: 2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/oX0Z-z6YB6FHY1PbCy01UMlVuNA.roa
Signing time: Fri 01 Sep 2023 08:39:05 +0000
ROA not before: Fri 01 Sep 2023 08:39:05 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 24154
IP address blocks: 211.76.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2865 (0xb31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D84CA269320E256216A2DEE2EA381A304526AB4
Validity
Not Before: Sep 1 08:39:05 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A17D19FB3E9807A1476353DB0B2D3550C955B8D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:23:58:b2:be:fe:28:46:43:e2:66:a4:c4:43:
33:b4:44:8f:7f:6c:2d:41:d8:c1:95:9a:0f:91:3c:
8d:80:1a:8b:76:88:88:4c:44:a3:69:8b:b7:7f:6d:
c0:16:8a:3d:08:41:1d:3e:3c:f0:c9:95:5e:ec:d4:
b5:aa:6e:72:7f:66:44:86:fc:eb:c0:9e:fa:5b:8d:
61:9f:62:28:b5:34:97:2b:25:21:99:85:0b:55:0c:
50:83:1f:fe:8f:52:52:89:27:4e:ac:0c:c5:88:1a:
52:97:f0:ed:63:eb:8f:9d:ee:b6:a4:bc:21:08:d9:
8f:3d:f2:45:5d:c8:9e:53:ca:1d:e9:e3:3f:02:73:
c2:89:b6:b7:e6:de:13:07:85:1a:55:21:e0:2d:47:
38:db:ad:f5:4e:2d:db:8a:93:46:28:2a:93:54:f4:
39:4a:ea:62:b6:3e:42:c3:c2:99:8f:22:45:38:57:
fb:04:a7:92:66:15:61:94:de:94:d2:e9:d1:6d:b9:
db:96:5d:33:61:ff:19:c0:38:3a:ee:34:d3:bb:db:
1e:ef:f4:e3:d2:a8:d3:70:3e:f5:a0:49:26:e7:7a:
98:7c:b1:e2:ed:7b:d8:1a:77:da:76:5f:8b:40:bb:
dd:3f:92:96:0e:05:64:34:7d:a3:18:9e:29:b0:db:
5b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:7D:19:FB:3E:98:07:A1:47:63:53:DB:0B:2D:35:50:C9:55:B8:D0
X509v3 Authority Key Identifier:
keyid:2D:84:CA:26:93:20:E2:56:21:6A:2D:EE:2E:A3:81:A3:04:52:6A:B4
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/LYTKJpMg4lYhai3uLqOBowRSarQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LYTKJpMg4lYhai3uLqOBowRSarQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EBT/oX0Z-z6YB6FHY1PbCy01UMlVuNA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.106.0/24
Signature Algorithm: sha256WithRSAEncryption
38:01:32:94:80:c9:5a:96:c1:33:b9:06:fc:09:70:78:f8:67:
98:2a:e1:b7:e3:06:d3:fd:f3:65:fd:63:34:f0:85:46:0b:5d:
18:78:1f:3e:7e:94:ec:e9:77:81:72:1f:3a:7b:1d:7a:82:b6:
d1:4b:2e:67:1b:45:55:04:b6:97:cc:9c:49:14:cb:2e:0b:ee:
f7:06:44:f6:8a:24:fe:af:d4:d1:90:8e:cf:aa:43:c7:12:5c:
21:37:16:40:a8:0b:0c:47:ae:2f:77:00:7e:cd:63:a7:da:7a:
2e:7d:f0:68:ac:d5:a6:28:27:12:af:83:bc:c7:03:15:2c:28:
7e:56:69:ef:4b:e6:82:35:8f:ff:b3:87:0d:c0:c8:e6:09:2e:
b9:82:71:b3:3a:bc:8a:6d:49:e4:2d:dd:70:da:c3:7b:1f:16:
8d:24:96:f6:2b:59:b1:3d:63:76:86:f2:b5:a8:14:11:96:bd:
81:87:8a:ff:90:76:39:85:41:90:c9:76:c1:52:f5:4e:c8:7d:
86:59:e0:06:c9:3a:7d:d0:14:04:01:73:51:c6:2c:ee:31:d5:
26:b3:3f:df:86:e3:1d:59:a0:5d:72:c2:c1:69:76:ac:4d:a5:
e5:3d:f7:54:75:68:a4:69:c0:a5:68:51:5e:e1:e9:68:a7:8b:
c5:05:0d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org