Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/B35EtUBbYoQZTr2PtRpzp7kV4fc.roa
File: B35EtUBbYoQZTr2PtRpzp7kV4fc.roa (raw, json)
Hash identifier: g/bD1pGuzPdFpuyfWDl+shpX6+64HXUvCJng5JZHp60=
Subject key identifier: 07:7E:44:B5:40:5B:62:84:19:4E:BD:8F:B5:1A:73:A7:B9:15:E1:F7
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E41
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/B35EtUBbYoQZTr2PtRpzp7kV4fc.roa
Signing time: Fri 01 Sep 2023 08:49:28 +0000
ROA not before: Fri 01 Sep 2023 08:49:28 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 203.222.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3649 (0xe41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:28 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=077E44B5405B6284194EBD8FB51A73A7B915E1F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:29:39:e7:a2:64:38:67:c4:2a:4f:74:9f:22:
dd:a2:a4:f3:17:94:46:a1:4e:72:11:7a:6e:b8:1e:
1b:a1:e0:40:5f:34:e0:e4:a0:60:3f:ba:a2:25:68:
43:bc:f0:49:4f:e5:e0:40:81:ba:c7:29:d8:0c:d6:
87:09:aa:b6:3b:8c:2b:a8:a7:c2:05:1b:9a:09:11:
f1:b3:5e:97:cc:0e:3c:f7:50:65:cf:1c:27:95:46:
b8:f8:7e:7b:ca:9f:07:13:44:5b:f6:a2:ef:d7:fb:
e5:f6:8e:40:6c:0b:de:58:3c:ac:fa:d9:aa:4d:51:
da:9b:7b:14:82:98:04:3d:ce:cb:67:e2:94:3c:fa:
d8:89:b1:85:0f:4c:cb:6f:28:99:4a:3e:59:25:f7:
dc:7b:55:93:63:20:cf:d1:b6:b8:3d:89:b4:f9:74:
45:e9:6d:e8:c0:e7:98:5b:b6:74:9d:90:33:04:74:
f4:da:8f:0d:bd:d8:09:8d:1a:ae:f8:26:05:be:fc:
fa:dc:2a:d7:d3:74:e4:d5:6e:cc:74:89:ab:30:8b:
52:6a:60:fb:5f:a9:4a:f0:78:b0:8a:32:2b:a3:98:
3f:d2:85:59:c2:48:fc:d2:a9:af:ce:f5:bb:7b:43:
e4:fc:1b:60:3e:ae:d7:d2:df:d3:e2:c9:36:79:6d:
41:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:7E:44:B5:40:5B:62:84:19:4E:BD:8F:B5:1A:73:A7:B9:15:E1:F7
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/B35EtUBbYoQZTr2PtRpzp7kV4fc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.16.0/22
Signature Algorithm: sha256WithRSAEncryption
45:cc:cd:47:e2:87:0a:ff:a7:3b:8d:7f:7e:84:a6:0b:b7:b9:
b3:bc:d7:03:07:ee:18:22:80:4a:a8:26:ec:bf:fe:4a:1b:a5:
97:cc:8f:67:cb:c6:c0:e1:a1:06:1f:10:ef:68:9b:94:84:68:
59:db:7b:f6:18:d2:0e:5e:e7:b1:48:75:6c:f2:6e:0c:25:92:
5c:b6:90:b6:77:9f:fc:29:9d:1d:17:78:aa:9b:39:d7:92:f6:
c6:d4:26:b8:23:d5:2e:bd:2c:a9:16:55:8c:e7:ef:9d:98:25:
9c:3b:4a:b9:a5:b2:c6:b6:97:d8:1f:c0:51:95:64:63:eb:ed:
c6:27:e9:30:05:19:06:6b:70:36:fb:5d:c7:57:c0:8c:a0:89:
d7:f6:d0:1f:49:d0:5a:85:b1:0d:18:6d:e7:07:a3:a5:9d:73:
63:7a:92:16:4a:23:a0:2c:5a:7a:86:b7:38:8c:6b:f7:f2:28:
8e:df:58:c9:9f:aa:f6:82:af:c6:3b:33:8a:89:17:98:ad:da:
20:84:f2:00:85:b0:b1:42:80:a8:26:9d:5b:3d:25:cb:5f:79:
99:70:db:c1:6f:1b:89:10:ff:b5:8e:26:43:4a:a1:b4:0f:dc:
b9:92:a9:dc:e0:cf:e2:09:05:15:52:69:de:02:11:94:f0:7c:
27:0d:76:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org