Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/lVaAHcxdUaG_Ib8S5xjPV0CnMvA.roa
File: lVaAHcxdUaG_Ib8S5xjPV0CnMvA.roa (raw, json)
Hash identifier: uG8fSBVZWTXrBJaayemHh49kPQN6w6vReiq2IFBUBJs=
Subject key identifier: 95:56:80:1D:CC:5D:51:A1:BF:21:BF:12:E7:18:CF:57:40:A7:32:F0
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E35
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lVaAHcxdUaG_Ib8S5xjPV0CnMvA.roa
Signing time: Fri 01 Sep 2023 08:49:25 +0000
ROA not before: Fri 01 Sep 2023 08:49:25 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.192.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3637 (0xe35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:25 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9556801DCC5D51A1BF21BF12E718CF5740A732F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:42:9f:3b:06:1c:a1:52:a0:41:53:6e:16:e8:
3c:77:89:2e:b6:71:01:26:f9:9b:5d:d0:69:f8:ad:
29:4e:73:d7:f7:db:e9:e5:cf:48:76:0f:f5:a1:7a:
16:fc:f5:4f:1d:9d:5d:ca:45:ba:22:93:35:15:d9:
90:c5:82:a2:c8:0c:93:4c:42:48:5f:43:34:ef:e6:
65:47:f1:d0:f4:c5:e8:a6:94:22:04:1a:a8:95:1e:
2a:26:b0:24:b6:35:be:67:1a:c4:69:eb:e2:9a:d8:
dd:cb:ee:28:5b:29:cb:a0:7a:e6:c4:25:b2:07:c2:
c3:7f:3d:58:90:b2:ef:db:f5:18:fe:66:6f:48:26:
1a:3e:17:94:16:7d:a3:8b:59:ac:69:b4:cd:ef:fa:
e2:ca:96:20:d3:84:18:1f:b2:92:3b:54:1e:75:9e:
f8:09:5d:29:66:50:af:24:ea:c7:83:85:d1:84:43:
80:cf:e1:5d:df:f8:2d:f9:bc:3a:4e:10:a6:84:60:
3b:fe:77:2e:ad:cb:70:36:46:a4:1e:32:77:8a:b3:
6b:68:96:bd:e7:98:ca:66:3d:5f:f9:3b:da:c3:7c:
b9:1f:43:f6:b9:ba:ed:8c:0a:02:2d:73:59:19:c8:
2e:94:77:e5:0b:98:1a:2d:97:f5:46:78:af:ee:46:
06:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:56:80:1D:CC:5D:51:A1:BF:21:BF:12:E7:18:CF:57:40:A7:32:F0
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lVaAHcxdUaG_Ib8S5xjPV0CnMvA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.192.0/20
Signature Algorithm: sha256WithRSAEncryption
6d:73:e7:f3:2e:88:ef:9e:5a:68:d0:65:fe:d1:af:db:9c:cf:
84:9c:1c:d1:0a:cd:ab:fd:9a:e2:fb:17:dc:82:e5:01:1b:4f:
36:2f:62:41:ef:0d:27:37:39:38:7a:ea:23:58:ef:66:1d:ff:
0a:ec:95:2f:5f:7d:e6:f0:84:52:5f:43:b5:c8:02:3b:bb:e8:
33:01:e3:08:99:d2:68:5e:33:38:4a:5d:4a:8c:3d:4e:00:a9:
56:a9:8f:4a:d7:64:18:c7:54:37:94:39:96:cf:df:e5:9d:c0:
43:37:ab:41:06:58:ad:14:12:2a:12:ef:43:88:1f:43:15:a3:
4d:10:42:7b:f1:55:9d:71:a7:e4:62:e8:2d:dd:83:25:8f:9a:
db:f6:9b:15:65:e3:31:62:4e:06:e1:c8:f8:a6:30:28:5a:84:
2a:90:6f:01:28:2d:46:b0:c7:b6:cb:20:af:70:dd:3f:f5:13:
18:4d:25:80:9e:b4:2a:c0:5c:77:55:20:6e:b1:5a:78:5e:a1:
a2:d5:69:05:43:33:20:08:e7:96:97:a4:33:ae:0e:88:81:91:
78:1c:10:a0:03:8a:7f:65:86:1e:f8:cf:3c:91:86:a1:1c:4d:
ce:63:39:6f:a9:cc:dc:ae:7d:42:d9:37:cb:8b:55:08:22:ff:
6c:f8:91:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org