Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa
File: GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa (raw, json)
Hash identifier: 2O2+LwzybWth3ZtfsJyPtjTZ839ACIVx6hhRxOYTxmA=
Subject key identifier: 19:1D:D0:36:63:56:D5:5C:1A:9F:4B:44:0B:C9:D8:1D:3E:0F:F8:7E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F36
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa
Signing time: Fri 01 Sep 2023 08:56:45 +0000
ROA not before: Fri 01 Sep 2023 08:56:45 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 17421
IP address blocks: 2001:b400::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3894 (0xf36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:45 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=191DD0366356D55C1A9F4B440BC9D81D3E0FF87E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:10:bc:b2:72:75:c1:97:57:4f:8a:95:b1:11:
12:c2:83:9b:e3:66:14:7f:0e:b7:b8:30:57:0c:19:
bb:7f:fb:e1:65:a7:f4:35:e4:75:e7:8a:0b:30:79:
69:59:95:54:93:76:16:a6:03:9c:b4:ee:24:2b:71:
cb:39:49:e9:57:ac:4f:76:3d:30:6e:38:66:14:ba:
31:c6:a6:64:91:da:92:2a:cb:ca:27:c1:1c:a8:8b:
db:8f:a1:1f:1b:8e:06:9b:33:61:82:90:c8:a5:03:
4f:84:3a:a7:75:3b:7d:8b:c3:b2:8d:12:85:a6:b5:
66:ea:c7:c5:eb:9e:d5:ff:9e:c5:e3:95:ec:9c:ee:
ab:c1:da:a7:89:7f:10:d1:ba:47:b7:4e:28:d8:79:
84:77:d9:d3:60:fa:f8:cd:83:a5:14:d6:87:5d:94:
16:87:7d:48:c4:c5:ac:b9:d5:d7:66:be:31:3d:8a:
03:2e:64:1b:c9:c8:1b:10:f5:14:65:5f:b3:b8:de:
81:cf:fd:7a:d3:56:de:36:5c:0e:34:67:98:68:ca:
ee:d1:b4:43:d6:4f:07:23:21:1c:16:e1:01:51:19:
c6:7d:77:59:01:68:43:95:8f:6b:60:af:3c:00:f6:
90:99:bd:d6:a9:c8:44:ef:76:46:46:c6:e8:f7:63:
dc:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:1D:D0:36:63:56:D5:5C:1A:9F:4B:44:0B:C9:D8:1D:3E:0F:F8:7E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:b400::/32
Signature Algorithm: sha256WithRSAEncryption
45:12:13:67:43:40:82:1e:a7:51:36:dd:57:69:b4:8f:aa:33:
ab:e0:b9:63:25:ae:26:02:68:2a:19:e2:f8:b4:39:58:a7:43:
32:92:50:b7:90:36:8b:b3:cb:e1:c3:7e:6a:26:be:80:71:85:
f5:92:c4:b2:a2:f7:a6:6f:4a:91:01:ea:78:44:93:e4:0b:32:
c6:36:61:a8:38:35:84:2e:49:e9:ee:de:a5:c5:84:e6:c4:14:
da:36:7a:67:65:05:65:06:9d:dd:3d:2c:68:ff:73:e6:ca:24:
62:e2:a4:d9:84:38:cb:a9:53:a8:51:47:a2:ca:b0:08:a9:cb:
5d:c9:59:d1:9b:bb:4b:76:39:65:9b:57:d9:a5:6f:c9:37:e6:
a3:f3:f2:17:cd:b2:86:4a:71:3e:68:92:1b:fa:19:e7:56:00:
cf:2a:99:3d:4e:87:15:3a:40:43:73:78:6e:ac:84:40:e1:67:
7f:88:f6:d2:fc:e2:87:61:8a:f2:6f:fd:a1:10:9e:50:36:65:
7c:db:c2:e8:43:9f:81:2d:72:8c:da:63:3a:6b:a6:88:fd:c6:
05:74:0f:de:f7:54:6c:19:12:99:33:7e:a8:52:3a:9f:27:ed:
ff:59:64:f4:67:bf:ed:6b:8e:58:64:7c:ba:ed:c3:e1:98:ab:
3b:d1:41:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org