Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/XCDgB1IYiqYk7O7x2ErUQlOgHqg.roa
File: XCDgB1IYiqYk7O7x2ErUQlOgHqg.roa (raw, json)
Hash identifier: sAGV/adjuxiPLKSUe7ZloWDkhnKdlmce4qCHvlDpNcc=
Subject key identifier: 5C:20:E0:07:52:18:8A:A6:24:EC:EE:F1:D8:4A:D4:42:53:A0:1E:A8
Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Certificate serial: 0B4C
Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/XCDgB1IYiqYk7O7x2ErUQlOgHqg.roa
Signing time: Fri 01 Sep 2023 08:48:48 +0000
ROA not before: Fri 01 Sep 2023 08:48:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18411
IP address blocks: 61.56.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2892 (0xb4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E
Validity
Not Before: Sep 1 08:48:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5C20E00752188AA624ECEEF1D84AD44253A01EA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:50:dd:98:b6:19:a0:83:71:9a:43:ab:d8:d1:
79:79:a0:c7:46:84:e3:2c:54:b4:2f:8b:7a:88:e4:
2e:79:95:3d:b9:4f:56:b9:c1:b9:79:be:d1:2c:f2:
72:6c:5a:a4:fc:31:0e:27:fb:e2:30:2d:bf:5b:72:
c6:5b:ed:57:c6:79:95:c1:f5:8d:74:41:91:40:d1:
d1:46:29:f2:b4:5d:93:cd:7d:14:a2:f3:c8:90:94:
4c:bf:93:73:a8:cb:f7:62:25:11:8a:15:5c:b8:6f:
f7:3a:d2:c2:3b:c9:b6:3b:80:49:4f:b9:db:15:11:
fd:c3:2d:a6:6b:49:12:41:ee:48:24:1e:ed:1a:42:
85:13:27:7a:14:63:7a:4b:1b:b6:70:29:a5:a0:fe:
c6:c9:8a:b9:ee:70:dd:6f:ce:9d:4f:f2:0b:eb:4a:
6c:db:2b:e0:ca:fa:31:75:11:bf:c8:15:b4:a8:b7:
68:6c:f7:16:d0:49:34:05:1e:ba:6f:8d:c1:a7:f3:
6d:91:0d:22:b7:b1:62:df:b3:53:34:f4:e6:02:0f:
57:43:3b:41:a1:e8:be:a0:1c:94:78:c5:9c:61:8f:
6e:d7:13:75:3d:13:43:94:7b:3d:7b:63:66:cc:05:
9d:8c:dc:99:5c:90:c7:67:0d:8a:ea:30:3b:5a:d7:
83:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:20:E0:07:52:18:8A:A6:24:EC:EE:F1:D8:4A:D4:42:53:A0:1E:A8
X509v3 Authority Key Identifier:
keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/XCDgB1IYiqYk7O7x2ErUQlOgHqg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.56.26.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:ba:fd:4b:22:ce:63:9c:25:5e:30:11:bd:3d:f0:bc:87:52:
6d:56:ce:8d:4d:06:59:99:7e:91:64:a9:25:85:f4:c7:0b:20:
16:f1:38:7a:68:76:a8:36:2b:d5:55:10:31:ce:4b:a3:c5:2a:
18:c2:2a:54:37:63:c9:6b:b6:25:42:17:a7:8b:66:39:b0:3f:
26:92:33:ff:cb:6b:69:33:15:7a:a6:bc:d1:f6:7f:5e:5f:fe:
72:93:da:10:55:25:04:19:d8:d2:1d:29:db:16:cc:74:8d:61:
c5:a0:d0:75:da:79:8e:47:1f:41:c8:42:2c:dd:2a:e8:92:ec:
40:2f:ab:30:0d:63:5b:91:27:0b:dc:69:4d:a4:1c:5d:40:3f:
7c:be:2b:c9:1b:db:ef:d4:ef:44:c4:10:ef:ec:bb:26:7a:b8:
f2:b2:cb:2b:5a:1f:19:ec:94:1c:77:16:b0:0d:13:a3:9f:fd:
f3:75:cf:7a:06:be:a2:de:a0:98:69:ff:87:5b:30:a5:d5:2f:
01:a7:34:0e:e7:bb:38:f9:5a:9f:d8:23:48:ab:f8:f5:40:45:
34:2e:88:dc:ba:a6:7e:7d:fb:d6:19:f6:41:48:99:4b:f7:66:
13:e4:5d:35:34:d7:d9:f0:0e:65:9a:98:a3:c2:b5:9c:80:46:
5a:a5:be:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org