Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/ro-ifZEeEPa3n1jETW2qaKC3G68.roa
File: ro-ifZEeEPa3n1jETW2qaKC3G68.roa (raw, json)
Hash identifier: Q4mPvMiymFC64ZWuaeglcsKezBBLVI9iY6vY0yHwDiU=
Subject key identifier: AE:8F:A2:7D:91:1E:10:F6:B7:9F:58:C4:4D:6D:AA:68:A0:B7:1B:AF
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E4D
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ro-ifZEeEPa3n1jETW2qaKC3G68.roa
Signing time: Fri 01 Sep 2023 08:49:31 +0000
ROA not before: Fri 01 Sep 2023 08:49:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 113.61.240.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3661 (0xe4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AE8FA27D911E10F6B79F58C44D6DAA68A0B71BAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:95:bc:af:51:1f:49:b4:f1:ac:36:f0:97:8f:
0c:db:c3:ac:53:bd:69:c5:c5:52:d5:40:a5:3d:eb:
34:14:9f:46:e9:eb:24:e8:48:40:cf:42:f6:82:5a:
a7:ec:9a:93:de:da:b8:f7:89:04:f6:29:20:67:dc:
86:f3:65:98:f9:ee:dd:f0:3b:27:51:4f:02:b4:7d:
5c:c0:65:00:00:10:f1:90:13:6a:29:71:85:60:dd:
13:0f:ad:0c:d7:b1:fe:2e:c5:e6:e7:6b:15:7a:b8:
a3:eb:e4:12:bb:84:cb:74:9e:b3:fd:db:94:72:9f:
20:33:54:be:3e:6e:3f:96:d4:11:b1:26:cd:b4:c1:
a0:19:88:e4:7f:68:03:5e:64:10:0b:db:8b:79:e3:
df:69:10:f1:d1:42:ea:f2:bb:ef:6f:5a:4a:57:4a:
35:da:eb:36:b8:d1:13:9c:cb:c3:88:1f:4a:d8:58:
ae:2d:2b:ad:4f:f4:49:ef:ef:cc:b1:2a:fd:92:d9:
b6:15:32:e4:5b:43:7c:f6:5d:0e:e1:ea:87:bb:b9:
66:f9:2d:88:7c:e0:5d:2a:bb:a3:a5:08:54:bf:44:
7b:38:4d:ae:5c:b8:8e:db:26:4c:83:d7:89:fe:b1:
e8:3f:f0:d3:57:6b:15:e2:3e:fe:dc:1e:8a:65:82:
26:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8F:A2:7D:91:1E:10:F6:B7:9F:58:C4:4D:6D:AA:68:A0:B7:1B:AF
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/ro-ifZEeEPa3n1jETW2qaKC3G68.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
113.61.240.0/20
Signature Algorithm: sha256WithRSAEncryption
7c:6c:9f:37:62:04:6c:1a:9a:a5:66:14:f9:3a:4f:32:56:05:
55:24:47:e7:34:e1:76:3a:48:f6:ad:af:da:37:9c:20:00:0a:
df:e8:ed:27:21:4b:41:e8:4d:a9:40:9b:52:d0:51:40:8c:33:
c8:32:24:78:6d:09:89:e1:f0:dd:82:0c:ce:ad:eb:a7:38:48:
34:e7:f6:2f:39:b3:58:91:6f:25:e7:80:33:12:3b:de:7e:d8:
b2:43:c6:85:5b:04:25:16:2a:3b:da:fd:24:cd:28:bf:e9:1e:
de:ae:ef:8c:b0:85:0c:20:aa:14:cc:34:2f:49:36:bb:ab:74:
9e:b6:9e:1c:a7:cc:44:5b:73:b3:ce:e3:fe:8e:49:8b:ab:7c:
0c:33:71:2a:12:7c:ad:c5:21:df:bb:d5:31:1f:8a:b2:42:99:
ce:87:e1:37:91:22:97:1f:e3:f1:01:e1:1e:51:d2:f0:b1:47:
c0:e2:19:dd:dc:88:c8:77:53:55:3d:3f:a1:48:df:78:78:b9:
6e:51:e4:ff:e8:16:11:bf:87:37:6e:48:19:7d:91:6b:c6:c5:
20:8c:0c:4b:0e:93:6d:d6:ab:f6:f2:f6:4f:bf:7b:38:bb:e9:
6f:24:58:d4:80:33:5c:34:7d:78:94:96:87:ef:46:7c:5b:df:
93:b7:d9:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org