Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa
File: qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa (raw, json)
Hash identifier: W4h3ivxspaPAoQXH5CE4+dIptRucf9hZ/Ynxk8LP7Og=
Subject key identifier: AA:81:DB:8E:F8:35:6F:0A:89:F2:6D:AB:CC:54:3B:1E:1A:B2:F8:BD
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E2B
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa
Signing time: Fri 01 Sep 2023 08:49:22 +0000
ROA not before: Fri 01 Sep 2023 08:49:22 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.128.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3627 (0xe2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:22 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AA81DB8EF8356F0A89F26DABCC543B1E1AB2F8BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e8:3c:f9:21:b3:c7:82:1c:a6:ff:af:49:e0:
6b:c9:36:91:45:0e:16:5f:69:95:29:a4:76:1b:b3:
69:12:7d:e1:b6:77:04:c7:7b:7b:f3:b1:12:6a:1c:
ad:ed:ea:54:04:59:5e:db:8b:a0:0a:d6:f5:fa:76:
69:8c:cb:c7:cc:54:e9:a8:55:d0:70:0d:08:15:c2:
75:2f:35:12:eb:0a:82:14:50:7a:4a:67:46:fb:b3:
fc:c0:6c:b0:d7:16:56:bd:c5:c8:88:2f:74:f4:2a:
0c:98:b3:b4:bb:ad:23:c9:a4:31:24:2b:bf:a3:ea:
c5:cf:19:7b:f9:f4:54:62:6e:d7:d3:1e:56:f6:53:
f4:36:dc:8b:83:e2:53:bd:16:7b:96:97:8c:5b:19:
11:62:d3:ea:42:97:51:ee:d3:85:a1:44:67:34:14:
77:6c:d8:76:0c:56:d4:d3:3f:dc:45:08:fe:44:20:
4b:78:f6:c1:e2:0d:4c:43:88:6e:82:ee:ad:c9:14:
36:8c:b8:12:43:80:92:bc:68:81:e9:7d:a7:84:cf:
5a:2c:65:d2:58:45:e0:40:01:1f:41:1a:5f:e3:1d:
5f:ac:72:36:4e:d8:13:1c:5b:74:6f:c4:38:f7:36:
39:f9:c6:55:03:78:3e:aa:af:d5:c5:ea:0c:ca:be:
be:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:81:DB:8E:F8:35:6F:0A:89:F2:6D:AB:CC:54:3B:1E:1A:B2:F8:BD
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/qoHbjvg1bwqJ8m2rzFQ7Hhqy-L0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.128.0/19
Signature Algorithm: sha256WithRSAEncryption
0b:c1:e8:4f:38:b7:08:1c:b0:7b:f0:1e:55:bb:27:e9:37:be:
48:ba:78:f9:bc:0a:e5:bf:a0:36:f6:28:21:00:ca:6a:bb:60:
be:12:08:e9:81:01:81:dd:e8:6c:d0:5b:08:55:4a:9d:5b:1a:
f0:fb:7d:0d:33:06:c9:2f:7c:4a:f4:54:4b:23:0d:33:64:97:
d0:02:49:df:7b:40:73:2f:cf:d0:d7:40:13:16:f4:d3:27:a1:
bb:da:d2:a7:73:24:9c:15:d5:c1:c7:ba:58:1d:e7:bf:f3:32:
4c:7e:01:3b:30:12:de:ce:91:91:30:44:00:b0:fb:3f:75:f0:
ba:c1:df:b7:1a:ae:d0:5f:6d:26:92:62:e1:b2:2e:bc:a3:85:
4c:23:da:d1:bc:fe:cb:38:f2:d4:a1:8e:5a:d8:49:50:4e:f3:
6b:a6:7b:22:01:19:ae:c8:42:e0:49:52:9d:94:01:65:f9:56:
b0:f1:42:e5:61:b2:88:be:7e:35:37:15:9e:bd:c7:48:9d:99:
69:69:1d:69:88:0e:fb:86:d6:3d:32:e4:7f:62:ea:de:53:5e:
0e:a7:cf:bc:22:e7:c8:e1:0b:24:9c:35:de:85:6b:f6:12:b8:
12:aa:66:19:ee:a9:ef:1b:04:46:8d:11:e6:68:c5:66:4d:fd:
43:b8:6e:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org