Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/sNkv6N3A975bTXJyiAwW3wPBPNI.roa
File: sNkv6N3A975bTXJyiAwW3wPBPNI.roa (raw, json)
Hash identifier: FF87Rwv7+DkGnR8ApcEOSj2yh/VPFhzZ+r7WDX95ZNI=
Subject key identifier: B0:D9:2F:E8:DD:C0:F7:BE:5B:4D:72:72:88:0C:16:DF:03:C1:3C:D2
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 0E23
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sNkv6N3A975bTXJyiAwW3wPBPNI.roa
Signing time: Fri 01 Sep 2023 08:49:19 +0000
ROA not before: Fri 01 Sep 2023 08:49:19 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17809
IP address blocks: 203.222.4.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3619 (0xe23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Sep 1 08:49:19 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=B0D92FE8DDC0F7BE5B4D7272880C16DF03C13CD2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:40:8a:9b:53:42:0a:29:4a:1f:14:99:6f:
79:05:22:f2:03:e5:0f:74:81:c3:fa:6d:ba:de:fe:
1f:2c:af:5d:cc:5a:3f:68:f4:bf:c2:72:b3:67:56:
97:8e:2e:9d:f9:a9:96:8c:5e:61:90:b6:ac:2d:52:
33:db:3a:93:38:ce:28:95:7e:03:97:14:39:fa:29:
37:df:37:81:b0:20:36:f3:3f:fd:b5:3a:24:74:db:
9f:85:53:c2:87:fe:68:13:dd:18:7d:97:ca:2b:b7:
ae:59:ac:31:c5:af:61:c4:b2:a3:0b:17:1f:b8:3b:
aa:03:1c:c6:9a:4c:a1:f2:d2:41:f7:4d:38:97:ac:
fb:f2:c7:82:b5:30:ad:13:f7:ab:b2:d2:00:7e:35:
d4:b3:23:6d:62:c6:57:a0:44:c4:60:dc:3b:10:10:
c8:aa:62:bb:c3:17:8e:31:7b:71:20:cb:24:a7:eb:
2d:6d:fc:12:c2:05:ed:e5:b5:57:24:10:9e:ea:a3:
3d:02:ef:fc:ba:41:77:a1:12:f5:05:dc:8e:b1:90:
f3:51:8a:6b:37:c1:e5:be:cc:ab:ea:8a:0c:05:30:
6c:95:22:9b:b9:8e:4d:cd:5c:af:75:06:78:13:5f:
aa:7f:d3:7a:de:87:2d:1c:4d:d9:63:6a:62:85:b8:
12:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D9:2F:E8:DD:C0:F7:BE:5B:4D:72:72:88:0C:16:DF:03:C1:3C:D2
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/sNkv6N3A975bTXJyiAwW3wPBPNI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.222.4.0/22
Signature Algorithm: sha256WithRSAEncryption
12:24:94:72:4f:8f:79:a1:49:00:8d:55:e8:92:19:4c:ac:a1:
41:43:a4:91:62:bd:7e:e3:f6:46:b7:1e:02:9e:19:32:2b:61:
d9:c8:80:a5:c7:59:12:7a:da:47:f6:ff:0f:ab:c3:e6:d1:e3:
40:ca:7d:b7:66:ab:33:3c:d0:c3:5f:e4:d1:2e:dd:65:27:b5:
8d:aa:0e:ff:85:da:15:35:51:88:18:97:d2:39:b6:d5:5e:73:
69:3e:f9:47:c2:d9:02:05:e3:13:d3:b9:be:c1:21:0f:5c:ad:
78:f1:f2:65:41:ea:c8:85:23:7b:f8:54:06:b2:c2:64:87:9b:
23:f8:7d:55:c1:96:bf:59:cc:f6:1c:36:07:49:da:26:6f:e8:
05:28:d6:e0:dc:24:f6:35:12:d2:29:9f:95:97:7d:3d:bb:ac:
47:f6:eb:50:9c:6b:b1:6b:bb:1b:3e:45:ef:a4:86:b0:a8:3f:
5a:88:a0:2d:0b:00:87:4b:68:98:7f:5c:c4:e3:03:b8:e7:51:
ec:9b:50:a1:ac:f0:4a:c5:74:f0:72:5c:45:e3:40:43:5e:8d:
e9:38:68:2e:c9:0c:b9:27:e2:1a:ed:d0:06:1f:4b:5c:c1:fc:
71:a5:62:ce:5b:1d:b6:53:65:b0:a2:a6:26:48:eb:92:74:6a:
e8:10:e6:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:12 2024 by rpki-client on console-ams.rpki-client.org