Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/pM7w39h7tLztW-Ogh5WOEOJwm7M.roa
File: pM7w39h7tLztW-Ogh5WOEOJwm7M.roa (raw, json)
Hash identifier: u0/9S8UV/rRlx+DJbmqeEvrRJ+fvBsWi4n2Q6Gq5vU4=
Subject key identifier: A4:CE:F0:DF:D8:7B:B4:BC:ED:5B:E3:A0:87:95:8E:10:E2:70:9B:B3
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E3C
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pM7w39h7tLztW-Ogh5WOEOJwm7M.roa
Signing time: Fri 01 Sep 2023 08:49:27 +0000
ROA not before: Fri 01 Sep 2023 08:49:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 121.254.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3644 (0xe3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A4CEF0DFD87BB4BCED5BE3A087958E10E2709BB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f3:47:14:e7:a2:35:1a:72:b7:ee:b0:22:7d:
13:0d:b1:e2:67:54:ba:e5:b7:39:78:37:b3:03:ff:
f5:83:7a:8f:0f:ca:ae:0f:d4:53:37:d9:de:cd:25:
cf:7d:1d:c8:10:e3:93:a9:7e:64:5f:2d:48:65:80:
cf:f8:3a:72:58:57:71:a9:cf:b8:c5:56:5b:df:d3:
fb:03:a4:f5:17:96:a8:dc:26:d6:70:ad:6e:d8:c4:
14:76:fb:71:e6:96:dd:fb:9d:9a:87:65:66:c4:8b:
f1:9e:da:19:cb:15:5e:fb:9c:18:1d:39:c5:39:53:
f3:1b:e9:ae:f3:88:97:3d:38:15:c3:72:63:40:6f:
a0:de:27:bf:d1:53:ff:e8:76:47:e3:21:f3:2c:d7:
ee:04:db:fa:51:82:bb:6a:77:12:b4:a2:62:29:9f:
12:93:cb:72:78:51:7c:5a:af:0a:0d:5c:8f:13:3a:
55:b9:eb:ac:93:c9:b1:f2:3a:47:c0:df:1d:0a:09:
6c:67:1f:e5:05:1f:b2:3d:09:03:f9:4c:16:6a:45:
dd:ad:88:05:13:43:b7:c0:fb:97:75:3f:06:47:64:
2d:09:1e:7d:15:76:02:38:a3:da:23:6d:cc:bd:d5:
e7:f6:19:48:a5:5b:08:98:68:a0:95:24:3b:cd:1e:
08:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:CE:F0:DF:D8:7B:B4:BC:ED:5B:E3:A0:87:95:8E:10:E2:70:9B:B3
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pM7w39h7tLztW-Ogh5WOEOJwm7M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
121.254.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1b:ce:e6:d4:3b:35:2d:32:fa:30:fe:6b:88:35:68:8f:df:23:
fd:0a:43:c9:1c:7e:37:ff:30:86:95:90:b9:8f:d6:2c:4e:5c:
58:58:ed:e3:64:f9:b1:4d:a5:5d:74:5e:e9:60:c0:05:41:33:
49:2e:c6:03:3e:55:e5:30:3d:fb:a4:7d:3a:25:45:6c:89:98:
e1:40:53:32:02:f8:6d:19:db:aa:f4:24:5f:7c:04:e0:da:54:
a6:72:36:ec:35:95:70:a1:b5:8b:58:81:c0:9e:c1:d6:b0:ff:
b5:b4:7c:e9:ad:69:b0:f4:40:64:53:77:67:52:6a:0f:37:df:
7e:65:7e:55:bc:c8:b6:23:fb:83:3b:46:63:fa:35:a4:4c:74:
a5:8b:95:72:48:20:0b:84:e3:f8:20:67:e1:7b:8e:c7:20:1f:
c0:68:e2:ca:68:ea:1d:27:2e:08:53:8d:81:de:74:e2:88:f5:
ed:9e:31:bc:bd:b8:0e:9f:fc:d2:a0:14:a2:78:95:38:ab:b1:
a0:5c:d1:20:ab:6c:18:05:fd:ba:80:8a:fd:15:1e:fa:e7:96:
80:96:4e:ac:ad:4a:03:ea:ce:27:50:cd:f2:93:de:0d:60:38:
d1:f2:e2:5d:d3:10:fb:b0:cf:19:fc:ff:bf:d4:35:92:f4:e4:
16:4d:12:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org