Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/RwdrIdWBDiIvAWmL-0_OJFlw-Pc.roa
File: RwdrIdWBDiIvAWmL-0_OJFlw-Pc.roa (raw, json)
Hash identifier: XM1RQXtCUdnYTmtztVqPvB/by7FzRXD2s2a1likMcVE=
Subject key identifier: 47:07:6B:21:D5:81:0E:22:2F:01:69:8B:FB:4F:CE:24:59:70:F8:F7
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E4A
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RwdrIdWBDiIvAWmL-0_OJFlw-Pc.roa
Signing time: Fri 01 Sep 2023 08:49:31 +0000
ROA not before: Fri 01 Sep 2023 08:49:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 119.15.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3658 (0xe4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=47076B21D5810E222F01698BFB4FCE245970F8F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3e:77:6e:09:a3:58:c8:c0:4f:85:62:88:e6:
6a:0b:57:10:52:14:cb:9b:fb:7f:37:49:54:39:0a:
b3:49:86:63:50:7b:b0:dd:3c:50:2c:07:4e:7c:30:
d1:5a:9c:83:01:a0:d3:cc:05:70:fc:c4:57:ca:18:
fe:21:f0:72:be:63:03:34:71:0c:27:13:9a:eb:4c:
23:86:cf:2d:06:fa:23:36:1c:55:32:22:57:e7:17:
e9:cf:08:35:49:2e:89:6a:56:c8:2a:b5:fb:99:e7:
c2:3b:40:25:11:11:83:ce:80:a6:4b:1d:03:4c:05:
43:c4:3d:98:4f:1f:f7:48:a0:88:19:10:2f:9c:65:
44:73:df:44:69:f6:ac:41:65:54:c4:41:c7:a0:60:
36:6d:3d:e0:bb:8f:1e:cd:0b:ac:f0:75:4f:4a:a8:
8a:97:7e:3c:f3:1e:ae:b4:2f:a9:a5:87:60:ec:1f:
dd:40:c8:b9:be:f1:1c:4d:4a:71:e8:a9:8e:94:6a:
62:05:39:89:98:17:d1:4a:6f:4c:84:94:35:5b:f5:
58:e0:62:07:e7:61:42:34:02:1c:78:88:0e:50:bf:
66:16:8a:56:b3:1a:52:a3:5c:f9:d0:6a:d7:d7:17:
1f:a7:7f:dd:d2:c1:48:48:1a:7b:05:ef:c2:f3:1f:
36:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:07:6B:21:D5:81:0E:22:2F:01:69:8B:FB:4F:CE:24:59:70:F8:F7
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RwdrIdWBDiIvAWmL-0_OJFlw-Pc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.15.224.0/19
Signature Algorithm: sha256WithRSAEncryption
38:c8:34:57:68:9d:41:45:03:fc:99:ad:30:44:ce:58:41:09:
8c:4f:fc:9e:6c:2b:37:dd:82:03:d5:97:9c:f5:e8:3d:35:80:
83:5d:9a:23:ee:99:5f:e9:fa:49:95:14:fe:a5:cd:5f:ba:4f:
49:0a:1c:54:dd:ab:42:37:bd:c3:61:ea:66:97:ec:d0:09:82:
82:b2:d1:da:19:ae:c8:22:84:b2:6b:14:78:f0:80:1c:f5:aa:
32:51:b9:0f:b1:84:90:bf:82:f9:99:1a:ae:a7:46:14:7a:20:
67:fb:44:c6:dd:4e:b2:dc:5a:92:94:f9:8b:5b:73:87:69:f9:
6f:dc:bf:a7:7a:52:ae:a1:8e:22:3f:76:e1:15:aa:f1:0c:c1:
07:ff:ec:c4:5c:fa:07:c1:19:b1:d4:6c:e5:31:6c:e1:25:0d:
29:f4:08:95:b0:f3:d7:c8:8f:41:42:51:83:d8:ee:8a:a5:da:
b3:e9:62:e8:04:c2:cb:b4:d3:68:f0:60:d1:f1:fe:e9:e9:eb:
72:32:5e:bc:e5:32:ff:20:e4:40:fd:70:7e:f0:a1:8c:5c:53:
78:bd:2e:6b:6b:cc:c6:1b:16:2c:01:19:40:87:4c:1a:5f:7b:
7d:00:e7:06:df:0d:96:17:bf:dd:2c:68:b1:67:fa:f3:b3:79:
8c:2f:2c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org