Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/rShx_NE4FZ3vH3mgHjyork1yBGM.roa
File: rShx_NE4FZ3vH3mgHjyork1yBGM.roa (raw, json)
Hash identifier: BIAqPyHw7I6UXN22eqF9cnEnjOT+V6wBjKqbkEqHVFU=
Subject key identifier: AD:28:71:FC:D1:38:15:9D:EF:1F:79:A0:1E:3C:A8:AE:4D:72:04:63
Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F
Certificate serial: 114A
Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/rShx_NE4FZ3vH3mgHjyork1yBGM.roa
Signing time: Fri 01 Sep 2023 08:54:04 +0000
ROA not before: Fri 01 Sep 2023 08:54:04 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 131663
IP address blocks: 2403:b7c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4426 (0x114a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F
Validity
Not Before: Sep 1 08:54:04 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=AD2871FCD138159DEF1F79A01E3CA8AE4D720463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f3:f0:f7:99:fb:2e:e7:84:ce:3a:e6:b9:26:
08:96:0e:83:f4:fb:88:2a:1a:fb:2b:26:a6:08:f6:
af:db:00:5b:38:97:65:15:db:ad:4a:6f:54:83:3a:
09:88:52:ca:27:64:82:bf:9f:3e:1c:38:7c:5f:f2:
10:80:b1:10:27:53:39:0e:2d:37:e7:84:ab:34:50:
45:2f:2e:4a:37:be:b2:f1:7d:c4:c6:dc:05:79:be:
da:af:5e:4d:f4:e5:04:50:0f:6e:94:7f:25:ae:9c:
71:1e:1d:02:a4:1f:05:2c:8d:d7:5d:c7:7e:6f:a8:
2a:27:2c:9b:74:3f:9e:a9:43:e5:fb:89:a2:e3:05:
eb:47:04:ff:e0:3f:69:6b:a6:e2:d1:5f:a0:a2:0d:
bc:e5:d1:69:04:12:62:c0:18:82:55:4e:26:d1:7a:
be:71:cc:13:91:93:90:4c:0a:ca:29:1a:8f:bb:12:
80:64:d9:84:97:a8:8d:31:ab:33:11:4e:72:33:42:
55:d0:9b:bd:a2:91:4b:19:b7:e0:57:94:a1:c9:5c:
2a:65:2d:f5:3f:a1:79:9a:f6:db:e6:2a:b5:0c:ab:
f4:43:1c:b7:59:33:3e:3f:84:69:72:d8:d5:16:28:
6b:aa:c7:f0:d9:2f:54:b8:41:22:55:2b:98:14:c1:
e1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:28:71:FC:D1:38:15:9D:EF:1F:79:A0:1E:3C:A8:AE:4D:72:04:63
X509v3 Authority Key Identifier:
keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/rShx_NE4FZ3vH3mgHjyork1yBGM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:b7c0::/32
Signature Algorithm: sha256WithRSAEncryption
93:8a:59:66:bf:dc:d8:ef:48:b4:e2:9c:d5:29:92:72:e4:43:
21:ce:2a:7d:23:3c:bc:a5:e8:f4:ca:1a:53:dc:41:9d:c0:75:
e6:5a:bc:f7:1c:de:46:cb:8e:6d:37:ce:da:ea:23:c0:cd:33:
01:de:79:50:24:c9:de:3a:f6:47:a6:0a:32:3b:79:23:a7:0a:
c3:23:93:ce:08:3d:d2:79:ed:dd:39:ac:24:ca:fb:58:8a:39:
f8:5b:0a:4b:14:a0:0f:a4:93:bc:30:8b:c0:6f:0a:7b:9b:67:
5e:54:16:ef:9c:b1:11:d7:d5:9b:dd:f4:0a:4e:3a:7b:2d:c6:
fb:3f:a3:01:2d:7c:c3:40:af:f7:51:a4:27:5c:34:2b:fd:59:
35:16:8b:d6:56:e0:a0:25:14:4c:30:b6:e0:8d:6d:5f:b3:d3:
41:a4:de:7f:77:65:22:6b:7a:d9:21:70:df:55:9a:ec:49:72:
c9:d5:73:9a:d9:9a:41:81:37:57:d6:79:2e:6f:a7:8a:44:f6:
cc:1e:5b:64:7f:dc:c9:b6:3d:35:74:32:85:62:e6:f4:2b:41:
98:87:46:37:74:1f:ef:9a:44:d3:ac:30:d3:c2:a2:55:87:2e:
af:71:46:06:45:4e:35:49:c3:c0:84:8f:c4:f6:cc:1e:d8:ef:
2f:67:45:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org