Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa
File: DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa (raw, json)
Hash identifier: pbM1gbUBhL8khYlr0Wa3oKN4b2AO/bEUvDaWLXVa6Hc=
Subject key identifier: 0C:81:5B:80:5E:EF:76:C9:B6:2A:4F:03:45:78:27:15:B2:7C:01:6D
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E27
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa
Signing time: Fri 01 Sep 2023 08:49:21 +0000
ROA not before: Fri 01 Sep 2023 08:49:21 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.160.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3623 (0xe27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:21 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=0C815B805EEF76C9B62A4F0345782715B27C016D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2c:52:6c:f7:93:94:07:1d:00:25:cb:94:43:
40:6d:25:23:48:c8:2e:53:03:51:98:9c:2d:8d:70:
68:2f:97:b3:5c:a3:0b:a4:8c:e4:69:b2:7c:5a:c5:
58:bd:73:e1:d4:c6:e8:16:58:5d:d2:10:e0:7b:d7:
67:14:c4:5f:24:db:12:97:e4:c6:81:cf:31:dc:2f:
65:7f:1b:8a:46:7f:51:59:71:d7:25:2d:21:da:ac:
a6:05:0e:1d:3e:e3:56:6e:f7:f8:9b:32:a6:23:ef:
8f:44:98:da:36:73:1d:8b:66:0c:b2:db:d7:3d:ec:
cb:64:fa:c2:d6:3e:50:f9:b3:4e:9d:e6:e7:d8:4b:
14:c2:71:da:ec:d6:da:23:5e:cd:21:8c:65:72:0e:
5c:1b:47:c6:f4:c7:50:6e:a4:62:b2:ba:e5:66:82:
99:f9:c6:2b:95:cd:2a:df:63:f3:b3:99:1b:01:b0:
90:07:00:6a:e1:68:88:cf:27:22:01:9b:64:d9:94:
04:ec:7e:15:50:44:4d:16:04:32:e4:c2:9c:15:08:
b4:b6:3a:89:7d:cc:33:17:e4:29:3c:a8:e5:57:a3:
d7:82:bb:dd:d9:56:3f:91:43:d5:cf:08:90:24:62:
e8:0f:41:b7:9e:84:31:1f:8a:6b:29:3e:93:a1:b0:
0c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:81:5B:80:5E:EF:76:C9:B6:2A:4F:03:45:78:27:15:B2:7C:01:6D
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/DIFbgF7vdsm2Kk8DRXgnFbJ8AW0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.160.0/19
Signature Algorithm: sha256WithRSAEncryption
3a:6a:95:9d:c3:00:79:34:03:ed:da:ce:f2:53:ea:bf:cf:9b:
0b:ca:c7:ec:05:e0:75:d5:42:31:a8:37:56:1f:47:6a:0a:ee:
a4:ef:91:68:98:19:96:d8:a9:c1:35:8b:ca:c9:cd:10:0f:13:
5a:86:6e:58:fd:12:4b:82:72:f3:08:39:bb:7b:29:3a:e2:e9:
58:f7:92:ab:85:04:e5:46:dc:e1:08:f5:57:af:1b:2e:80:86:
2a:14:65:a4:80:9c:98:15:1d:f6:85:61:eb:93:17:7a:af:5e:
20:4a:f8:f3:45:37:c3:7d:8a:0b:c6:ad:f6:dd:27:47:5e:2d:
9a:6c:e6:67:85:13:e4:32:4c:b6:17:0d:fd:b9:d0:df:1c:5f:
9e:e5:e1:02:21:5b:aa:d4:71:17:77:b3:e1:4e:23:5a:c7:a0:
64:58:bc:72:5b:5c:1a:06:01:6b:d3:bb:fe:88:78:d2:f6:7f:
fa:bc:79:f0:a1:41:a8:f1:96:bd:ff:00:f4:47:4f:a2:14:c4:
00:c7:61:9c:cf:a5:45:2e:b0:bc:54:4f:90:bf:be:b6:10:a7:
2f:65:6e:79:be:3a:6d:c2:85:c0:9b:a5:05:f6:8f:13:e7:e6:
bc:65:4c:c1:4f:6a:46:ec:fa:3f:43:d4:63:93:7c:89:ef:10:
da:23:c2:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org