Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/5Gc2mlVKjnak2-8CmQmg7XEEXUI.roa
File: 5Gc2mlVKjnak2-8CmQmg7XEEXUI.roa (raw, json)
Hash identifier: D9LFDl7ZZeLIIx3f1jUVKOH1+U1ZIy0Vgn2PJDEwUE0=
Subject key identifier: E4:67:36:9A:55:4A:8E:76:A4:DB:EF:02:99:09:A0:ED:71:04:5D:42
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0B49
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/5Gc2mlVKjnak2-8CmQmg7XEEXUI.roa
Signing time: Fri 01 Sep 2023 08:48:47 +0000
ROA not before: Fri 01 Sep 2023 08:48:47 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18411
IP address blocks: 61.56.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2889 (0xb49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 1 08:48:47 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E467369A554A8E76A4DBEF029909A0ED71045D42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a4:6d:50:e5:a6:2c:b1:5e:2a:00:f9:42:cb:
e1:18:d2:ed:c7:d0:44:e3:74:b9:fb:03:d4:62:35:
f8:87:60:86:b5:f2:49:38:e0:00:b3:e2:2c:a6:95:
53:20:94:1f:11:f8:50:00:f1:50:ee:46:34:bc:7b:
8c:2e:82:ee:56:c3:21:bb:f4:63:70:b0:de:9b:4a:
67:50:19:a9:b8:33:c9:ac:1b:7a:1e:52:d3:1c:25:
1d:b5:07:7d:38:4f:a8:65:41:64:73:11:ad:4c:15:
9d:7b:ec:5a:3e:a4:c6:f8:ae:dd:3d:60:df:3d:18:
1a:d9:91:62:4e:1d:d1:78:15:54:7d:d2:17:bb:f6:
c8:8d:9b:e7:a5:8c:8a:bf:09:a7:a3:6c:45:8d:51:
6d:94:65:5d:4d:78:d4:fe:db:57:84:4e:dc:b5:25:
e9:2c:27:ff:90:44:5f:36:72:3f:b7:a1:31:bd:d6:
08:b7:60:43:20:ee:53:8c:c8:4b:d8:1c:81:e2:81:
fe:4f:2f:83:cc:0e:dc:be:02:a0:27:c6:c5:93:c8:
3d:0a:59:c0:da:41:f7:7a:80:5a:99:a1:88:6f:f5:
a0:ff:ee:85:cc:59:f0:11:ae:c7:35:9a:08:0c:aa:
2b:fd:77:5c:e2:8b:22:86:38:16:8c:b2:43:ba:d5:
5c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:67:36:9A:55:4A:8E:76:A4:DB:EF:02:99:09:A0:ED:71:04:5D:42
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/5Gc2mlVKjnak2-8CmQmg7XEEXUI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.24.0/24
Signature Algorithm: sha256WithRSAEncryption
28:4d:e3:62:30:ae:8c:5d:cf:b5:de:1c:fd:4f:9a:d8:b4:cd:
ba:7c:43:3a:d4:5b:b6:9c:0c:c0:0a:aa:7f:35:a6:65:fb:ee:
3d:3a:87:74:d7:52:6e:a2:af:f9:de:ac:9d:46:20:d3:2c:15:
61:89:01:85:4d:7b:61:77:32:3b:0a:8b:48:c4:63:15:e3:90:
42:3d:ff:35:73:b9:a4:64:19:77:58:47:c9:06:ef:64:bd:7e:
85:b5:cd:3a:55:4a:dd:98:f4:1b:95:ef:e2:03:d4:cb:96:40:
a5:31:00:72:d1:b7:60:d3:3d:d7:0c:97:c9:3f:77:aa:1a:c4:
5a:6a:99:bb:fb:7c:85:a7:02:bd:58:a1:68:00:b1:38:0a:62:
95:55:f8:ff:48:d0:c1:da:fd:ff:37:9e:e4:e0:36:ee:6b:a5:
7b:71:c8:f0:05:a6:ac:08:bf:c1:af:02:6a:01:7f:01:dc:00:
c4:f3:b9:70:3a:59:9f:2d:36:d0:77:6d:d5:b5:1c:cf:a4:5f:
84:8d:06:85:04:eb:18:37:26:49:8b:8f:65:0e:bb:a1:45:1a:
d1:a6:65:5b:81:18:4f:89:f4:3b:2c:f4:29:e9:20:a8:0e:8e:
58:38:63:7b:c1:7b:65:c4:e0:bc:c1:b4:85:29:c6:50:4d:5b:
e4:02:51:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org