Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/Gai37rtSOsKbd6UKJuFBLqsTTmk.roa
File: Gai37rtSOsKbd6UKJuFBLqsTTmk.roa (raw, json)
Hash identifier: zZ5VYeZAXqCVjev8yYAgMUYlelZngcEMz+aotfSVJfU=
Subject key identifier: 19:A8:B7:EE:BB:52:3A:C2:9B:77:A5:0A:26:E1:41:2E:AB:13:4E:69
Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Certificate serial: 0B8E
Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Gai37rtSOsKbd6UKJuFBLqsTTmk.roa
Signing time: Fri 01 Sep 2023 08:54:48 +0000
ROA not before: Fri 01 Sep 2023 08:54:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 4782
IP address blocks: 210.241.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2958 (0xb8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9
Validity
Not Before: Sep 1 08:54:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=19A8B7EEBB523AC29B77A50A26E1412EAB134E69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:43:d5:9f:3d:08:d9:31:f1:79:6b:6a:86:40:
44:ba:d8:4f:a7:64:c2:ad:98:c9:61:40:d4:30:7d:
f0:40:97:7e:11:83:e9:2e:d4:b2:58:45:34:ea:bd:
d0:b4:3d:89:be:c1:b9:2e:ab:9d:7b:03:e3:a1:28:
51:5a:4b:68:29:50:bb:bc:b0:7e:33:77:14:6f:8f:
cd:0c:4d:44:15:47:f1:f1:a8:4e:b8:57:4b:69:d3:
15:0a:6d:a0:84:cd:90:7c:c3:88:00:f4:18:c3:31:
73:0b:f2:6e:e6:dc:84:0f:50:6f:39:c1:01:08:0e:
91:1a:4a:62:03:2b:c2:43:f6:4d:da:77:f6:05:a0:
67:3a:18:65:d9:fe:96:83:c4:04:2e:71:d4:55:ea:
d7:9c:05:7a:1d:c7:56:a2:06:90:a2:07:dd:94:e6:
c4:2d:90:33:e0:e6:56:48:93:6b:03:f1:fb:77:13:
60:16:0b:a1:6c:63:45:78:72:56:61:f5:d8:c1:ae:
2c:66:0b:68:92:63:09:2c:d9:b2:f7:dc:99:80:94:
d1:ee:fe:88:c9:4b:40:8d:42:cc:23:8a:dc:76:23:
a2:e2:c9:b2:bd:61:f0:24:cf:52:58:5f:b9:a4:a9:
95:ba:47:b2:79:18:ea:41:69:e0:d8:4e:48:24:73:
bb:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:A8:B7:EE:BB:52:3A:C2:9B:77:A5:0A:26:E1:41:2E:AB:13:4E:69
X509v3 Authority Key Identifier:
keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/Gai37rtSOsKbd6UKJuFBLqsTTmk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.241.0.0/17
Signature Algorithm: sha256WithRSAEncryption
53:fe:77:36:bf:27:6f:c1:2c:a1:8c:c7:e5:13:b2:8d:a7:3e:
39:54:48:d5:37:93:42:ec:ca:9c:0a:5b:8a:21:d7:ed:b5:5d:
ee:da:cf:29:02:e7:91:69:d6:c9:73:97:ab:b6:b5:93:b6:cf:
ec:54:ab:48:fb:ae:2f:d3:fa:65:fa:3d:7f:2c:5c:e3:f5:54:
76:85:4c:37:c3:a9:f0:ce:27:bd:48:60:aa:40:cf:c6:f6:85:
53:39:bc:2e:aa:5a:a5:a7:35:7f:ef:ab:35:7d:e8:73:7e:eb:
bb:43:21:ea:ea:7e:f3:90:58:6d:f7:29:1c:9f:a0:1b:80:7a:
06:84:14:61:aa:94:5e:5d:4f:64:89:4c:b5:e8:ba:d2:4a:c8:
d5:2c:40:40:c1:c9:c4:53:3f:15:3d:18:dc:ad:fb:5d:e4:11:
95:49:f0:a0:89:91:a7:81:b7:cc:8e:b8:3e:2c:83:04:39:d3:
dd:3d:70:7c:d5:bc:f6:32:d0:50:1c:f9:9c:02:89:ac:54:ad:
96:a0:48:71:00:b6:21:85:70:8a:96:06:11:b8:82:64:88:e4:
0a:ac:4d:22:8e:c6:e8:57:cb:13:1d:ac:f5:da:3e:82:c7:72:
81:b5:08:f7:1f:09:41:6a:ce:cd:8a:1b:a8:30:c5:86:dd:7c:
dc:27:2c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org