Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/icTZsRO--Jc5uisvWmLY4kCAzo8.roa
File: icTZsRO--Jc5uisvWmLY4kCAzo8.roa (raw, json)
Hash identifier: dEBfxBq/VzVRcDlOB9INvKeS8RgSbzCkApDcVvrkHB0=
Subject key identifier: 89:C4:D9:B1:13:BE:F8:97:39:BA:2B:2F:5A:62:D8:E2:40:80:CE:8F
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E66
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/icTZsRO--Jc5uisvWmLY4kCAzo8.roa
Signing time: Fri 01 Sep 2023 08:49:39 +0000
ROA not before: Fri 01 Sep 2023 08:49:39 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 182.155.128.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3686 (0xe66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:39 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=89C4D9B113BEF89739BA2B2F5A62D8E24080CE8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d9:b5:3e:e7:b0:17:42:17:1f:50:95:76:c2:
11:c1:95:d7:16:82:59:ca:4d:1a:b0:fd:cb:95:43:
0a:8b:4d:c1:2c:51:b1:88:59:58:9f:d3:76:e2:68:
3b:fc:6c:ac:9a:a2:5e:e8:1b:5a:c0:82:96:78:cd:
54:23:38:00:fc:cc:64:1c:fe:66:0c:0d:63:34:b8:
63:62:f4:80:f4:cf:d9:cd:0c:c5:62:46:ab:f5:a0:
eb:53:28:c2:5c:8e:6b:66:ef:b1:dc:54:c0:61:2c:
e5:e6:b8:a6:bb:32:36:2a:f1:cc:d0:ce:50:02:4a:
e6:03:d5:18:63:6a:ca:27:09:15:64:d9:52:63:c1:
f6:0c:75:d2:df:8a:4e:d1:5c:43:9c:dd:ed:8a:0c:
b9:91:ff:32:d3:e3:65:f6:f5:b4:51:21:9a:cc:10:
3a:74:3c:4b:32:b7:a2:dd:10:15:ae:a4:19:9b:09:
f3:77:aa:87:e6:97:e6:1c:1d:f9:c4:27:cc:63:08:
a3:b2:a6:3b:b7:e6:32:85:1e:74:ca:aa:6b:0d:e9:
e5:bb:49:f8:31:48:06:78:86:42:83:b1:fc:75:cf:
36:f5:68:4f:34:0c:14:3c:89:ba:0f:79:71:7e:61:
02:90:8c:96:49:96:48:4b:48:a5:3b:5c:80:2c:a4:
5f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C4:D9:B1:13:BE:F8:97:39:BA:2B:2F:5A:62:D8:E2:40:80:CE:8F
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/icTZsRO--Jc5uisvWmLY4kCAzo8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.128.0/18
Signature Algorithm: sha256WithRSAEncryption
a5:86:35:21:8f:fc:49:8f:a5:ae:fe:d2:f8:6a:00:cc:2d:b4:
9d:f0:f8:4e:6b:7a:fb:1c:cf:88:b1:43:90:18:75:e9:39:39:
d2:7d:ab:99:b6:91:a9:39:9c:9c:09:92:ed:50:28:c8:98:9d:
2c:2b:6c:94:4c:7e:c8:5b:19:3b:b0:d4:c7:13:17:c8:ce:97:
24:93:37:d5:5e:6f:63:c4:db:1f:82:de:00:b4:63:03:c8:fb:
9a:f3:a3:bb:73:3a:d2:30:17:26:b7:5f:02:f6:05:ae:71:04:
c5:ad:5d:f9:c3:09:2d:47:4b:a8:e9:ca:56:dc:09:32:85:b7:
35:2e:95:35:b2:dd:3d:81:c5:38:81:b2:e2:4c:be:f2:ee:6c:
b1:7d:42:ae:33:99:d5:2b:2d:77:fa:4a:fa:d9:b8:6b:cc:3e:
12:83:65:47:c2:4f:1a:f3:32:ed:fa:8c:f1:2d:d2:bc:94:6b:
f7:20:07:63:96:5c:11:33:ff:ac:32:e2:fa:45:b3:d1:3d:c8:
d0:81:08:69:38:b0:e8:fa:4b:66:cb:bf:66:a1:fb:52:76:7b:
b2:56:64:d3:70:c3:31:4d:0f:e7:ec:4d:cc:30:42:98:c5:2e:
7c:a1:f0:fe:99:95:91:95:d7:de:ec:f6:cd:2d:39:2f:55:53:
cd:ba:39:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org