Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XlMkvOD8yZS36wF26AVzNvwb8wU.roa
File: XlMkvOD8yZS36wF26AVzNvwb8wU.roa (raw, json)
Hash identifier: nD4EZOhHCiJobw1f4iyYQg5EVP1WfQzJaUBrOO71nYc=
Subject key identifier: 5E:53:24:BC:E0:FC:C9:94:B7:EB:01:76:E8:05:73:36:FC:1B:F3:05
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0F5A
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XlMkvOD8yZS36wF26AVzNvwb8wU.roa
Signing time: Fri 01 Sep 2023 08:56:58 +0000
ROA not before: Fri 01 Sep 2023 08:56:58 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 15133
IP address blocks: 203.74.4.64/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3930 (0xf5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:56:58 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=5E5324BCE0FCC994B7EB0176E8057336FC1BF305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:93:3e:2d:d4:80:7e:0e:c7:ed:63:d7:d8:21:
c8:5e:12:ed:20:fa:cb:28:e0:48:fa:30:36:56:a2:
67:9b:d2:43:37:ad:93:17:40:41:39:71:7c:75:38:
02:f3:26:d1:30:35:ec:81:4d:31:87:e5:7f:f2:8e:
2d:1b:df:e6:f7:d7:26:08:65:af:70:2e:0d:0e:53:
f3:8e:76:3c:85:a7:bf:92:ce:56:f8:3c:cb:dd:79:
da:a1:d5:eb:b4:79:80:92:9a:4b:0d:df:6c:ad:71:
c1:52:2b:7c:e3:72:2b:3b:3c:c1:5e:34:e3:7c:08:
0a:5a:0e:6c:55:48:7f:d4:c1:f7:c2:51:06:08:4f:
db:9f:be:a3:92:b9:54:a0:b2:0f:b3:2b:e1:97:b1:
38:de:ee:1a:57:0f:39:a7:10:f0:ea:59:ec:49:21:
e0:04:2e:7e:c9:14:d6:b8:c5:18:bc:55:69:9d:0d:
31:5e:9d:b6:29:a3:7b:44:69:9d:db:ce:8d:fe:5b:
c5:81:15:90:15:2e:1e:48:a3:50:52:80:fa:e1:4d:
58:01:d0:8d:a0:e1:c8:2d:ec:02:a4:73:92:19:d2:
21:fb:05:46:bd:8c:d4:b9:78:c2:0e:bb:f2:19:c5:
4f:6e:14:31:b4:d4:fb:96:a0:8a:b1:90:1f:9a:e3:
3b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:53:24:BC:E0:FC:C9:94:B7:EB:01:76:E8:05:73:36:FC:1B:F3:05
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XlMkvOD8yZS36wF26AVzNvwb8wU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.74.4.64/26
Signature Algorithm: sha256WithRSAEncryption
21:77:3f:d0:4a:d0:57:a4:96:7b:f6:26:9d:f1:71:b0:5d:31:
04:eb:a0:79:13:ba:86:f8:8b:ad:9c:e3:e4:61:73:83:5e:f6:
2d:ea:4d:5e:b8:de:4a:bb:fc:99:c7:2d:a6:f0:ef:55:23:31:
ed:8b:8f:63:12:00:ab:e7:f9:4f:84:46:c9:25:6f:5e:ef:c0:
4d:0a:f3:3f:8f:9a:74:ab:95:fe:9d:9a:c8:b3:69:21:dd:8c:
8f:d8:cc:c3:ab:5e:f9:a0:85:35:e7:92:c6:ec:05:d5:0d:32:
2a:c1:c5:c5:df:4e:f5:73:ed:b6:23:0a:36:d1:c0:6d:fc:12:
5b:bb:c1:95:b2:4a:3f:98:4c:bc:f5:51:0c:d9:a0:ca:0f:91:
a9:d9:d9:c6:43:d9:c9:0d:90:02:a1:bb:4d:e8:2d:7b:de:d2:
ae:59:92:8f:f4:50:d4:d5:96:09:6d:04:75:90:4a:8e:d7:9a:
49:9c:40:12:46:ce:14:13:66:98:e3:81:fc:00:44:a4:81:78:
d5:5b:3e:f2:32:10:f5:46:02:15:9e:cf:a0:d5:0e:f7:5b:a4:
be:c4:de:c7:6c:db:ff:e0:5f:7c:38:5c:cb:b5:8d:23:7a:32:
a2:6c:fc:6e:83:9f:5b:14:fd:b9:d3:64:8d:30:46:34:3e:7c:
f6:ea:30:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org