Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wPA3oJBPM8W7fXoDdGZSAwhd3do.roa
File: wPA3oJBPM8W7fXoDdGZSAwhd3do.roa (raw, json)
Hash identifier: /cX6SHFjWixnnXgnZaieMIkPaJ8F44rmkhsC1F4p/jk=
Subject key identifier: C0:F0:37:A0:90:4F:33:C5:BB:7D:7A:03:74:66:52:03:08:5D:DD:DA
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 0FBF
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wPA3oJBPM8W7fXoDdGZSAwhd3do.roa
Signing time: Fri 01 Sep 2023 08:57:27 +0000
ROA not before: Fri 01 Sep 2023 08:57:27 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 3462
IP address blocks: 211.23.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4031 (0xfbf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Sep 1 08:57:27 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C0F037A0904F33C5BB7D7A0374665203085DDDDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:f8:b2:af:23:f3:85:5c:17:6e:3e:d3:3f:
b7:b2:6f:91:52:31:8e:3e:d1:c7:1c:f2:9c:55:61:
e9:48:1b:a4:dc:17:8b:1d:89:30:51:55:7d:e4:15:
11:31:6a:da:9c:4a:e6:27:a0:a5:26:1c:0a:0b:52:
af:4a:9c:3f:29:14:9f:8e:70:7e:6b:43:7a:98:c2:
46:89:34:c7:f9:e5:84:f2:8a:78:17:e3:5c:92:33:
70:fc:5e:29:4b:b1:96:54:b6:a4:52:52:ca:34:5e:
e7:eb:ab:9f:8b:ad:92:91:88:3f:02:e4:95:47:27:
40:7e:ca:6c:23:be:71:9d:79:95:4b:25:32:d2:1c:
c8:78:94:13:41:60:9c:c9:82:95:4d:e6:9c:07:e5:
91:11:b8:af:e7:ce:df:e1:7f:b2:60:2c:9d:38:c0:
62:dc:c5:06:a5:5d:91:be:32:38:a4:98:d4:65:bb:
fe:17:17:09:51:16:1f:c8:a4:bf:12:5f:39:4c:5c:
94:f6:e5:d9:e5:c7:cb:c9:60:b8:2b:b9:8f:50:ca:
d0:7a:1b:20:bc:84:bf:6b:34:31:6e:6b:9a:9f:13:
e2:1b:26:7e:d8:1c:30:d0:8d:4b:51:8d:e9:3d:be:
2b:5a:4a:74:4c:05:dd:79:ea:bd:8a:2b:66:1f:81:
e3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:F0:37:A0:90:4F:33:C5:BB:7D:7A:03:74:66:52:03:08:5D:DD:DA
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wPA3oJBPM8W7fXoDdGZSAwhd3do.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.23.0.0/16
Signature Algorithm: sha256WithRSAEncryption
5e:e7:a7:57:dc:9b:f4:fe:ce:4b:ef:4b:dd:bf:3e:47:cf:8c:
6e:af:d7:f3:aa:b0:a5:75:f4:d0:00:1f:6d:4f:59:80:e1:36:
8c:4a:06:e2:57:99:63:4f:e4:14:97:b0:bb:e9:6b:32:7c:53:
a2:0b:6d:8e:d5:29:b0:2c:ac:60:87:52:1b:3b:19:8a:4f:d7:
80:bc:cd:ea:23:6e:e6:bf:3f:3e:d2:4c:98:d6:d2:91:06:50:
a7:bd:1c:e3:67:4d:9c:87:11:71:30:3d:99:62:3f:4d:f4:29:
f5:e6:92:07:b6:14:41:8a:3f:7c:da:9a:f1:cc:95:67:5f:db:
4f:66:fb:0e:e2:66:8b:f1:4e:3c:d7:d0:3d:bf:91:53:4c:05:
d2:1d:6a:2f:48:ee:ca:a2:d5:8c:e2:4a:22:14:60:de:f2:97:
fd:d3:50:ab:dc:88:0d:15:71:d9:1e:3b:59:27:17:ee:6b:c3:
4b:80:a9:57:5f:c4:3d:90:ce:74:72:3b:46:2a:3a:07:56:65:
97:0c:c5:45:bb:56:01:2f:66:a6:4d:72:69:08:69:e9:80:c8:
06:1f:c5:eb:56:56:af:a8:20:b7:cf:c3:d0:42:28:6e:31:70:
d7:ae:72:54:a2:86:58:92:98:71:80:b8:9a:08:ae:f2:37:d9:
25:36:78:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org