Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/pOn-87YYGIPniXlr5mXBswUK0t4.roa
File: pOn-87YYGIPniXlr5mXBswUK0t4.roa (raw, json)
Hash identifier: 7iUX/4x7EeM3lFugiBx7E9SFf3yYzaXV+u5hj/j+deA=
Subject key identifier: A4:E9:FE:F3:B6:18:18:83:E7:89:79:6B:E6:65:C1:B3:05:0A:D2:DE
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E4F
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pOn-87YYGIPniXlr5mXBswUK0t4.roa
Signing time: Fri 01 Sep 2023 08:49:32 +0000
ROA not before: Fri 01 Sep 2023 08:49:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 203.222.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3663 (0xe4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A4E9FEF3B6181883E789796BE665C1B3050AD2DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f0:18:03:0c:b4:4e:40:d1:c1:88:ef:a4:5b:
f0:5a:d6:dc:d9:a8:dc:78:79:d6:78:37:57:f4:78:
a6:ff:d7:bc:e5:e7:70:e7:7d:1c:46:34:99:50:e0:
eb:c4:43:2a:dd:64:bb:44:52:80:e7:c1:46:f2:e6:
19:c8:78:a9:b9:02:6c:cc:c3:8b:c5:8d:84:4d:e9:
5f:15:a3:17:87:34:4c:78:16:3d:ed:04:fc:69:fc:
37:ee:7a:4f:19:cd:58:48:14:56:33:26:d7:01:d9:
80:79:4e:13:7f:d0:fa:17:7a:14:39:d8:50:69:1e:
a9:6d:58:51:1d:92:34:47:c8:57:10:e6:8d:06:28:
ae:fd:55:82:0b:e7:80:2a:40:40:36:a8:ea:e2:a4:
f5:da:da:74:ba:52:67:55:09:72:1f:7f:ea:9f:23:
4b:b0:6b:d9:2f:17:a4:75:63:4e:86:0d:f7:1f:e4:
bb:a9:a5:8c:7f:9a:55:f2:1d:bd:47:b7:75:94:83:
f7:92:68:36:4c:b4:ed:05:53:5a:f2:b2:b1:60:cb:
5e:09:9e:1d:44:9c:4b:c4:01:50:e7:32:2b:ec:6e:
2f:c5:27:2f:de:d8:a7:07:ac:3a:39:54:70:86:e3:
f6:8e:c1:ee:b7:2c:70:09:de:e4:f9:cf:5e:dc:66:
15:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E9:FE:F3:B6:18:18:83:E7:89:79:6B:E6:65:C1:B3:05:0A:D2:DE
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/pOn-87YYGIPniXlr5mXBswUK0t4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.12.0/22
Signature Algorithm: sha256WithRSAEncryption
18:37:13:1e:f8:1f:6c:9a:30:ce:d4:c1:10:ae:de:1c:2a:33:
b4:9b:3a:a1:8e:0a:53:31:61:44:51:6a:4c:a5:53:25:cc:c9:
25:ee:50:ff:20:ef:5c:fc:42:91:25:16:08:01:9c:59:a9:45:
22:15:73:50:f2:52:81:14:21:7a:8c:75:e7:7a:67:07:cd:05:
21:b8:1d:f9:04:d4:7c:23:bc:69:c9:4a:6d:8e:ce:9f:17:9a:
78:0a:ae:2a:e9:b4:d2:59:4b:ca:af:3d:d5:a6:ee:5d:9f:c1:
7e:0b:03:ac:29:f4:f3:7c:d6:8a:77:49:54:7e:be:c7:72:3c:
52:dd:bc:2e:ed:ec:fd:5f:ad:4d:3d:4e:40:ee:ed:2f:79:9e:
4f:94:dc:59:7b:76:9f:74:51:fd:f2:61:50:b8:21:57:2d:3d:
0e:d7:38:8c:46:04:77:a4:3e:c1:10:02:ec:8b:61:eb:f2:b4:
04:56:db:e6:23:02:bd:e7:9a:74:0f:1f:57:58:4d:be:ba:cf:
bc:0d:2e:6f:43:56:b9:22:66:f6:81:f7:4b:9b:52:04:35:0b:
f9:39:47:4e:5e:4d:8e:10:75:75:fb:63:71:28:99:4d:27:26:
ae:3a:3b:7b:26:49:7c:4a:e7:41:d4:e3:99:f7:9b:fe:e5:43:
d9:0d:b4:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org