Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/1m_z10H1JBlXKnb_6SlKymPy6Rk.roa
File: 1m_z10H1JBlXKnb_6SlKymPy6Rk.roa (raw, json)
Hash identifier: tuJ+DZ5PNPlUayJwFKktGqVbRsx8br0KWKfoEIcZl/U=
Subject key identifier: D6:6F:F3:D7:41:F5:24:19:57:2A:76:FF:E9:29:4A:CA:63:F2:E9:19
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E2A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1m_z10H1JBlXKnb_6SlKymPy6Rk.roa
Signing time: Fri 01 Sep 2023 08:49:22 +0000
ROA not before: Fri 01 Sep 2023 08:49:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 27.96.224.0/19 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3626 (0xe2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=D66FF3D741F52419572A76FFE9294ACA63F2E919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b5:50:f1:0b:35:33:cc:31:fd:a1:c0:fb:bf:
ce:42:e2:19:e9:55:e9:e8:e5:5a:96:0e:48:3a:7e:
f6:4b:d5:0e:41:d9:24:bb:28:c9:f7:83:84:79:58:
c8:b8:a8:07:52:9c:89:5b:08:d8:4d:15:f1:74:f7:
b0:b0:50:59:78:29:bf:be:48:a3:b5:75:45:5d:cc:
96:3d:e1:43:3a:9c:b8:29:0d:28:98:8a:a1:98:83:
42:f2:6e:26:50:2d:fd:16:fd:c4:77:c8:71:37:a9:
4f:f9:c0:21:1e:e4:c7:e8:50:61:c5:fc:4b:49:11:
34:63:94:f0:16:e3:02:fa:83:e4:67:11:f6:2e:1d:
f4:47:17:b5:5d:7f:72:f3:e7:c6:91:59:53:3d:a9:
3d:0c:31:e7:f4:c4:74:a3:9d:cd:2c:d0:79:9d:b7:
74:49:e1:a5:ff:ea:b2:45:17:6d:da:47:2c:a8:d3:
bd:e2:fc:45:e9:b3:8f:00:61:5f:31:08:cd:fb:2c:
b4:7c:65:8d:a0:64:dc:13:23:b7:a9:b8:b9:81:8d:
5f:f9:6c:a4:2a:f0:23:7d:18:ad:5a:b4:f0:f5:10:
69:7c:e8:bb:c4:21:df:22:f4:83:a5:36:b4:9d:ba:
25:ce:46:0a:b6:57:2d:41:6c:94:e1:60:f1:56:15:
7a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:6F:F3:D7:41:F5:24:19:57:2A:76:FF:E9:29:4A:CA:63:F2:E9:19
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1m_z10H1JBlXKnb_6SlKymPy6Rk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/19
Signature Algorithm: sha256WithRSAEncryption
99:60:c7:48:19:93:39:b3:18:ed:0b:cf:7d:6b:1b:b6:e3:1b:
4d:49:de:22:dd:cd:8c:0b:bb:a0:9d:c1:e4:f8:70:13:c2:c2:
e0:e6:a0:dc:26:55:e9:a3:94:87:21:cf:91:29:dc:8a:a5:c2:
5e:21:0c:d5:a6:b6:3f:4c:d5:c1:87:ad:63:a7:6f:90:25:51:
e5:34:11:d3:ae:cf:4e:71:31:cb:57:b6:93:e1:75:bc:26:0f:
6c:03:af:84:94:79:76:e3:5b:a0:5c:70:9f:92:10:73:11:ee:
0e:a6:59:f9:bc:5b:e0:a1:dc:61:fa:e7:95:ab:9d:9f:b7:24:
8c:43:c3:8f:f0:88:42:0d:a8:1e:a4:d4:d4:48:39:f9:ba:3f:
98:11:02:7e:1e:1e:0b:f6:7a:64:a7:30:41:22:c5:26:9d:9e:
5d:de:8d:f5:86:14:d8:6c:b2:a9:c1:76:dc:ad:cb:df:30:8c:
76:45:17:75:db:3a:b0:56:2f:a4:dc:35:8e:d2:cd:9d:05:91:
6b:13:b3:c4:79:e4:38:1e:95:09:55:a9:99:38:8e:47:21:bb:
0b:31:24:0d:a5:8c:ea:e5:3c:1b:3a:43:22:de:2b:1c:71:2a:
97:ea:37:7d:3a:e7:82:f7:74:ca:44:3b:e9:d3:f2:71:6d:3a:
f1:0e:65:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org