Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa
File: Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa (raw, json)
Hash identifier: SsrS7l2gL378hBJqoeBuzz8eB26Vb1IDIUxlbVjgQVE=
Subject key identifier: 42:CE:2D:1B:01:BD:71:DA:EF:75:BF:9D:F1:94:85:BC:B9:D2:61:C2
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E52
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa
Signing time: Fri 01 Sep 2023 08:49:33 +0000
ROA not before: Fri 01 Sep 2023 08:49:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 2401:ab00::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3666 (0xe52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=42CE2D1B01BD71DAEF75BF9DF19485BCB9D261C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a1:f8:fe:a8:bc:77:a3:79:8a:80:b5:cf:7b:
c5:ad:bb:fd:9c:55:61:24:8f:1f:f4:17:88:39:e1:
e7:d6:f2:b2:3b:f2:8b:4f:df:1e:a4:39:ca:7f:66:
ee:22:6b:17:19:83:b5:1f:5a:6c:ea:ed:15:3e:50:
0e:86:64:03:91:ca:ce:83:bc:6d:9e:fd:8b:25:66:
54:be:f0:57:59:fb:20:7b:07:b5:62:f2:e9:05:27:
55:64:3c:21:09:1b:b7:c1:7c:6b:30:d4:87:7f:f9:
59:33:d0:65:c0:1a:69:2d:b4:ec:26:77:f0:67:0e:
4a:fb:9b:97:5d:a1:4e:ce:5d:ff:84:f5:08:38:23:
a5:1f:74:0e:8b:da:71:75:ec:18:08:6c:e2:f7:42:
37:ad:e1:b1:6a:ea:6f:9a:29:47:5c:98:dd:7b:6f:
4b:d7:62:53:bc:34:b7:74:98:22:76:69:3f:91:50:
fa:23:de:a2:1a:45:0c:f3:ac:b0:22:d0:0b:35:a2:
36:bb:3c:b9:7e:37:e7:cf:59:86:cb:e9:db:88:e2:
c2:bb:f8:a0:f1:aa:3b:dc:7f:6c:5b:c1:9e:f1:e8:
6c:d1:91:6d:47:82:5a:04:f5:4b:62:78:5c:77:75:
21:b9:21:1e:5e:c5:cb:98:89:91:1a:3f:f0:89:74:
6d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:CE:2D:1B:01:BD:71:DA:EF:75:BF:9D:F1:94:85:BC:B9:D2:61:C2
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/Qs4tGwG9cdrvdb-d8ZSFvLnSYcI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:ab00::/32
Signature Algorithm: sha256WithRSAEncryption
71:39:5f:ad:64:f5:cd:f2:47:d2:e1:4c:73:46:e5:90:76:58:
4b:68:b7:0f:60:e4:b6:7f:5b:97:d1:4a:77:2f:a3:4a:08:ee:
e4:73:fd:2f:98:04:4c:44:74:11:5a:eb:fa:5a:89:32:67:c0:
04:b8:75:bc:a6:8a:76:1d:d9:b9:9d:66:28:60:d7:fc:8b:38:
a4:65:b7:df:a8:a1:13:0a:0b:52:af:46:ba:b4:f3:43:66:63:
de:88:b2:70:94:b4:ea:ee:5f:b2:ae:12:65:8b:6d:8f:2a:72:
af:09:50:08:c5:e0:10:cb:84:cc:66:c7:6a:77:f9:85:21:2e:
e1:25:82:77:be:82:6f:a5:f4:3e:0d:8f:10:f6:fc:cf:94:52:
ac:c3:79:50:ea:b0:77:28:ff:2a:a3:85:44:86:cb:55:17:2f:
dc:53:8a:ca:ad:ba:dc:52:b9:97:de:9e:a3:96:d4:79:82:ee:
3d:4e:cd:3f:41:53:71:da:f4:1d:b4:29:4f:12:1e:f5:d7:ce:
66:0f:dd:86:af:d8:c0:cf:4b:49:fc:8c:85:e1:7a:21:07:ad:
00:cd:0a:7b:70:6d:c0:c6:4b:a3:60:53:ce:23:74:67:d5:5f:
d5:c4:cb:e9:6b:12:71:52:4c:f6:f2:3c:2e:01:91:76:46:fb:
02:ff:f9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org