Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/eEAWsMCMrLltDjL2nss8gItZfb0.roa
File: eEAWsMCMrLltDjL2nss8gItZfb0.roa (raw, json)
Hash identifier: Yjoz5IqSeUWs07d0aVKdPNMd+HgeZnN2Du60H10z6pg=
Subject key identifier: 78:40:16:B0:C0:8C:AC:B9:6D:0E:32:F6:9E:CB:3C:80:8B:59:7D:BD
Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E
Certificate serial: 0C3B
Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eEAWsMCMrLltDjL2nss8gItZfb0.roa
Signing time: Fri 01 Sep 2023 08:56:48 +0000
ROA not before: Fri 01 Sep 2023 08:56:48 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7481
IP address blocks: 2001:7fa:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3131 (0xc3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E
Validity
Not Before: Sep 1 08:56:48 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=784016B0C08CACB96D0E32F69ECB3C808B597DBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:9b:00:10:35:4e:d9:66:34:b4:86:9e:6d:4d:
ae:78:60:cf:c8:26:2c:03:8f:82:5a:89:31:74:4c:
f3:99:96:0e:7c:bf:86:95:c5:1e:15:83:99:6b:b6:
5d:57:a9:6e:63:56:a3:ba:dd:38:a2:58:f7:cc:54:
02:fa:73:0c:ae:c4:92:96:b0:18:00:ba:24:22:ca:
6a:b2:03:e9:67:5e:a9:4c:d2:09:49:0f:8b:ea:72:
3f:22:7a:30:91:05:71:39:81:c1:cd:2c:91:0d:7f:
2b:b7:16:11:cd:b3:cc:3d:a9:73:db:6a:5e:c7:d8:
31:7a:de:45:15:06:fc:8c:c2:be:a9:5e:35:fd:61:
e8:ec:7d:2b:2c:84:5f:9d:c8:07:89:ec:5c:b2:b4:
4a:d5:3e:4c:d7:62:3c:86:f8:01:89:05:bb:ce:b8:
86:d5:40:34:45:21:b4:5e:71:4b:3f:30:ab:64:7e:
02:80:ce:64:a1:45:10:18:d3:8b:63:92:cf:72:69:
c0:74:1f:9f:cd:12:b1:03:c2:c6:f4:fa:86:4a:8c:
03:d6:5e:c1:d9:9d:bd:93:07:db:ad:cd:2d:5d:86:
75:3d:2a:91:25:e9:d7:ad:31:71:74:6d:ac:5f:6b:
02:2b:07:06:51:88:3f:e0:93:04:75:cb:73:b1:f6:
87:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:40:16:B0:C0:8C:AC:B9:6D:0E:32:F6:9E:CB:3C:80:8B:59:7D:BD
X509v3 Authority Key Identifier:
keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eEAWsMCMrLltDjL2nss8gItZfb0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:7fa:1::/48
Signature Algorithm: sha256WithRSAEncryption
b6:99:c9:a9:61:59:4c:ac:16:22:9f:a6:b0:0f:9c:56:09:63:
72:a5:18:58:78:11:ff:6c:a9:fc:93:a8:9b:7a:05:57:85:9f:
ae:18:ba:f1:16:50:42:df:ca:3a:7f:f0:c5:7f:f3:d1:8d:79:
b0:1f:d7:fc:f7:9a:d3:a9:f2:83:f3:6b:43:14:89:74:bc:a4:
2e:53:6f:74:53:e8:f5:4d:36:8d:d3:e1:17:c7:cf:3d:78:c8:
ae:91:c9:ed:6b:1e:78:01:98:01:46:ae:d2:13:00:56:a2:3c:
bf:ba:c8:20:e3:4e:77:1d:64:d0:9c:bf:16:f6:8b:2a:50:3c:
3d:21:e8:95:07:f9:3a:00:d4:8e:32:fa:68:11:07:7d:5f:60:
7b:0d:63:70:c2:c4:9c:b3:69:59:2d:ed:97:19:d0:27:b9:a5:
88:97:5e:21:b5:e2:86:af:d4:79:40:a7:be:f0:2d:23:9d:2e:
fe:8d:fb:19:ba:eb:ba:77:07:b7:40:f4:c4:ad:98:57:e9:ef:
d9:0f:fb:68:5a:7a:21:4c:c7:14:9f:06:a4:7f:c8:9a:ce:ce:
74:94:56:ee:df:f0:d1:ed:be:3f:fe:fe:4c:6e:b1:a7:23:2b:
4b:6d:48:0b:3e:09:d8:2f:48:2a:3f:8b:27:c5:ff:45:43:1d:
a8:9a:b7:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org