Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/Ee_SHdvs9kG_BOUdsBmXEKjy3Mk.roa
File: Ee_SHdvs9kG_BOUdsBmXEKjy3Mk.roa (raw, json)
Hash identifier: ZAHh/b6626CHwfL3AqSjcf+23+tHVrhahGHG+Bm9sgE=
Subject key identifier: 11:EF:D2:1D:DB:EC:F6:41:BF:04:E5:1D:B0:19:97:10:A8:F2:DC:C9
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0B8F
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Ee_SHdvs9kG_BOUdsBmXEKjy3Mk.roa
Signing time: Fri 01 Sep 2023 08:54:48 +0000
ROA not before: Fri 01 Sep 2023 08:54:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4782
IP address blocks: 223.200.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2959 (0xb8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 1 08:54:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=11EFD21DDBECF641BF04E51DB0199710A8F2DCC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:67:f9:9f:64:c7:af:09:ba:ee:f4:5c:6b:a2:
a2:a5:b3:89:22:42:83:da:30:73:1f:35:a7:cf:b8:
26:b8:4f:8c:54:94:c1:ab:d9:24:db:1b:81:e0:96:
54:98:e9:0d:ea:b0:70:35:05:73:d6:6a:dd:1e:67:
ae:7d:81:fc:2c:23:50:9c:e9:de:2e:56:18:8d:c1:
d7:90:9f:21:cb:33:f0:b8:dd:55:37:59:d1:f8:52:
23:99:77:88:26:8a:81:6e:4b:6f:14:34:60:02:49:
6b:95:29:62:a7:a3:a3:83:a2:60:5e:49:d7:46:2e:
64:88:e7:ea:fe:0b:c1:e6:69:7b:58:b3:9e:8c:64:
28:f7:1c:8f:1d:2f:80:67:01:fb:47:52:a7:be:ba:
2e:13:f7:c5:6e:7f:b9:5e:f1:17:5b:02:05:f5:4a:
57:e5:2d:3a:fc:9e:76:c8:31:a5:b1:88:69:eb:89:
d4:39:d2:e6:19:0c:52:03:6e:d0:9e:bc:18:51:28:
53:ba:4f:c7:9d:96:70:a7:0c:66:9e:23:ee:59:28:
b3:83:ab:ec:11:33:84:98:0d:28:d1:9b:25:c7:27:
ac:e5:58:a0:76:c2:15:b8:19:c5:ad:c8:ba:48:ce:
f2:3c:99:7b:93:d6:1b:ca:ac:ea:2a:cb:8d:50:f8:
89:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:EF:D2:1D:DB:EC:F6:41:BF:04:E5:1D:B0:19:97:10:A8:F2:DC:C9
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Ee_SHdvs9kG_BOUdsBmXEKjy3Mk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.200.0.0/16
Signature Algorithm: sha256WithRSAEncryption
21:45:64:2b:51:45:42:6e:20:77:57:75:1e:67:38:f7:92:10:
70:ce:16:71:98:b4:6a:eb:59:c7:a1:5c:56:03:5e:1b:99:8c:
d6:1d:d0:4e:ea:df:32:2d:2a:dc:4a:46:d2:09:bd:8a:3f:b1:
30:d2:c8:72:fd:d0:2a:38:31:7a:0e:67:5b:24:7b:80:21:aa:
d9:ce:31:17:28:09:c2:37:93:ae:7d:37:5e:96:ff:25:91:cd:
b0:73:30:70:48:a7:ab:ca:30:36:30:b1:43:06:33:d1:50:fd:
c1:f2:4d:17:36:e4:f5:51:e3:d3:f7:40:6e:17:06:89:8a:7c:
ba:cc:de:6f:cd:f6:c9:e8:a8:5f:b9:57:16:7b:0d:d3:dc:2d:
ca:3e:41:58:c9:5c:47:f8:86:10:fc:44:e0:70:5d:89:89:95:
01:e8:73:be:2f:14:60:c9:2f:37:ec:8e:2c:32:67:92:00:ea:
7f:f1:87:f3:69:b9:18:fd:32:41:f5:c7:67:d2:b4:51:3a:77:
e7:f6:c6:fa:45:7c:d9:a2:fb:07:d9:53:41:3c:7e:b8:a2:3a:
d4:3e:e3:d5:6c:3c:af:c6:aa:1c:1e:61:14:d0:b9:79:35:10:
98:66:df:4a:00:81:50:e4:dc:fc:30:cf:a7:e7:17:1c:f9:fc:
7d:d3:2d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org