Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa
File: 5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa (raw, json)
Hash identifier: YBDNf75NDFJaLpTUw+LnNLJD/n+/ssrycGFOmxvw8E8=
Subject key identifier: E5:B8:46:4D:0E:FC:4B:08:89:62:ED:10:DD:CC:3F:35:36:CE:B0:25
Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739
Certificate serial: 0B25
Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa
Signing time: Fri 01 Sep 2023 08:55:15 +0000
ROA not before: Fri 01 Sep 2023 08:55:15 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18413
IP address blocks: 61.65.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2853 (0xb25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739
Validity
Not Before: Sep 1 08:55:15 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=E5B8464D0EFC4B088962ED10DDCC3F3536CEB025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:79:02:45:6b:7f:a4:f9:e7:68:60:8e:17:c7:
47:c5:69:02:19:de:c4:cd:1f:57:7d:46:ca:c9:27:
ab:c6:b5:94:e0:8f:78:f7:9d:ec:10:1f:9f:cd:69:
87:44:97:19:ee:17:fe:d2:3e:7c:ff:be:6a:ba:e9:
44:d2:43:87:2a:dd:a9:2e:fb:99:f6:08:cf:6f:07:
d4:9c:64:d8:09:58:39:73:79:c1:f6:fd:7f:b8:ed:
10:62:d5:e5:85:ad:01:02:02:75:96:73:65:cc:69:
70:f9:d4:9f:4f:fa:36:28:5c:99:16:08:54:5b:a4:
4a:dc:3b:de:31:0c:7d:02:39:88:5b:46:14:9f:29:
bf:f2:5a:1c:85:64:76:8d:19:a9:cd:01:48:3e:35:
e4:a3:b4:f5:cc:0f:a3:97:84:a9:ee:51:c6:1d:18:
33:9b:2a:6f:a4:3b:22:46:d9:60:89:51:5d:b5:8d:
62:bd:aa:4e:5a:94:e3:6c:14:d3:44:f4:c7:aa:b5:
44:4a:e7:c3:3f:6b:3f:60:c6:40:97:1a:c9:d9:dd:
47:e3:dd:df:95:2b:71:ae:1c:fb:3f:da:0e:43:c5:
31:ec:9f:67:06:26:b9:fe:19:ad:ee:cd:bd:96:8b:
2c:21:9a:f2:1a:af:c1:a8:e7:84:ae:45:9a:09:ce:
dd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B8:46:4D:0E:FC:4B:08:89:62:ED:10:DD:CC:3F:35:36:CE:B0:25
X509v3 Authority Key Identifier:
keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/5bhGTQ78SwiJYu0Q3cw_NTbOsCU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.65.192.0/19
Signature Algorithm: sha256WithRSAEncryption
09:ce:af:d8:0a:c5:8e:a0:8c:70:53:56:38:60:66:4f:b4:72:
1c:c2:37:d1:7f:2a:01:66:c8:2f:33:29:d8:78:74:4e:40:29:
4c:e1:13:9e:66:52:3c:81:16:ff:66:fe:61:12:ec:34:ee:75:
1d:fe:2e:d4:7f:e6:eb:7f:ba:02:60:e3:36:86:b8:08:ae:7d:
ca:c1:ce:e5:89:41:96:64:ac:d5:9d:be:7b:00:b4:c7:33:34:
db:39:cc:69:fe:2a:c8:af:a4:b4:ef:69:86:e5:55:6c:6d:8c:
70:25:8b:7f:f8:af:c5:ca:33:bf:b5:2d:fa:49:ab:23:a7:b1:
a5:bc:18:25:77:98:cf:01:d2:52:26:ca:a9:bb:99:12:7e:fb:
92:81:9e:cd:68:e9:5d:4d:06:79:1c:a0:5f:d2:bf:79:32:50:
0f:83:de:24:cb:65:14:74:55:e9:6d:75:19:5d:d0:b9:c2:da:
b4:2f:7b:81:e3:82:3c:ad:87:15:69:34:60:d7:22:91:38:0f:
ca:57:99:bf:7b:b5:6f:ea:ab:36:7b:ac:93:67:4d:a5:9b:6c:
3b:20:9d:59:1d:8d:43:00:d6:07:35:08:a4:3a:5e:94:0f:cf:
ed:ab:7d:f8:12:a9:8b:02:f6:ad:21:50:41:d2:79:25:1a:fd:
a5:1d:5e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org