Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/gvfH665FoJdBI77YdlfrOHy6zpI.roa
File: gvfH665FoJdBI77YdlfrOHy6zpI.roa (raw, json)
Hash identifier: 3YcSNPGm+Hlra1Ee5/TIH+w4XpLlM1fsvDfOD3Por3c=
Subject key identifier: 82:F7:C7:EB:AE:45:A0:97:41:23:BE:D8:76:57:EB:38:7C:BA:CE:92
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E2F
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gvfH665FoJdBI77YdlfrOHy6zpI.roa
Signing time: Fri 01 Sep 2023 08:49:23 +0000
ROA not before: Fri 01 Sep 2023 08:49:23 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 27.96.224.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3631 (0xe2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:23 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=82F7C7EBAE45A0974123BED87657EB387CBACE92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:14:82:1c:08:f5:54:e3:16:2f:ec:7a:39:84:
71:2d:84:6c:de:c3:27:18:6b:c5:73:93:fc:96:2e:
6e:db:44:e6:ef:8e:d0:3f:e3:a0:80:50:2b:70:6a:
0b:9c:b8:98:ee:55:35:d7:1e:ce:1d:d1:da:bf:a0:
0e:e6:56:98:e5:59:cd:f6:ce:23:89:1b:91:f7:50:
8e:b6:4e:a7:4a:a8:d9:e4:4d:5e:a4:40:dc:e2:1b:
54:d7:2d:aa:72:fc:11:83:85:a1:c7:2d:15:ac:f9:
3f:aa:a2:5c:4c:37:a8:9c:22:16:55:a7:cd:3d:af:
29:9b:26:98:aa:38:93:1c:bb:ae:ea:93:a6:9a:b7:
7c:58:22:97:43:06:0f:c6:d3:e0:54:a1:9f:95:37:
57:2f:3e:dc:6b:40:d8:6b:e3:41:32:1d:3a:62:f5:
55:d3:2c:b7:a1:83:ce:96:c0:d3:93:8c:3b:0c:7f:
8a:73:af:b0:21:3d:06:2e:13:90:0d:2b:ae:95:60:
f2:f1:1a:fd:e4:d3:f8:fe:06:61:a4:d6:e7:05:25:
31:00:91:ec:28:be:eb:5d:b6:db:d8:b8:f8:8a:e5:
52:65:59:6f:5a:c2:85:87:75:bd:ef:1b:aa:7d:e7:
9e:01:61:ed:5e:8d:ee:14:4b:a3:e2:ac:8b:47:1e:
d2:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:F7:C7:EB:AE:45:A0:97:41:23:BE:D8:76:57:EB:38:7C:BA:CE:92
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/gvfH665FoJdBI77YdlfrOHy6zpI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
27.96.224.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:50:f0:8e:dd:1c:4c:f7:2a:a5:c6:33:70:6e:f6:3c:86:36:
09:13:6a:06:d0:82:90:fb:a9:d4:e6:1e:b1:bf:fc:b7:62:34:
7b:71:8c:5c:60:f9:56:a7:40:81:ef:a3:92:a7:a1:53:dc:46:
88:92:33:08:09:ed:7e:a1:dd:c8:00:1a:7a:f0:c7:b5:cf:15:
e5:60:65:c0:ff:79:72:6d:b3:b6:42:1e:b2:ca:9d:76:5e:5c:
02:9e:76:2f:c9:c3:72:83:76:3f:66:44:ea:71:4e:04:d5:ed:
c4:f5:6b:4d:05:2d:78:79:82:aa:b2:3f:37:10:d7:2d:e8:02:
02:50:a3:6f:43:ab:fe:b5:8b:a2:c5:0c:f5:8d:d8:e5:d7:6e:
89:2a:05:bb:bc:e9:7b:34:70:1d:d6:ca:6e:eb:98:85:85:b8:
9e:e8:9e:2f:08:8f:2e:6d:73:32:0d:16:b0:0d:d9:24:2b:9d:
68:ee:f6:5c:83:38:0a:1d:78:8f:32:51:35:93:15:cc:f0:9b:
f3:29:05:40:b2:71:8d:15:1f:76:91:e9:5b:21:2a:52:83:f7:
e7:36:30:f6:49:7a:15:ce:94:a5:a3:bb:a7:6b:a0:fc:e1:83:
af:d7:41:cf:90:34:ed:6d:86:6e:17:ab:18:63:8e:60:83:b0:
bc:c9:17:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org