Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HLCATV/qF--QhO1t8oN0iDW1fCwWfY1-Mc.roa
File: qF--QhO1t8oN0iDW1fCwWfY1-Mc.roa (raw, json)
Hash identifier: ExvtnDP9pEJGmmXRGMFe9C8n9U3bXnptvcav7msmYvY=
Subject key identifier: A8:5F:BE:42:13:B5:B7:CA:0D:D2:20:D6:D5:F0:B0:59:F6:35:F8:C7
Certificate issuer: /CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA
Certificate serial: 0AC4
Authority key identifier: 28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/qF--QhO1t8oN0iDW1fCwWfY1-Mc.roa
Signing time: Fri 01 Sep 2023 08:59:34 +0000
ROA not before: Fri 01 Sep 2023 08:59:34 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9676
IP address blocks: 211.76.80.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2756 (0xac4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA
Validity
Not Before: Sep 1 08:59:34 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A85FBE4213B5B7CA0DD220D6D5F0B059F635F8C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:44:36:02:13:6e:c5:5a:7c:b4:7a:2f:2b:f1:
f2:43:db:68:fe:7c:02:99:5e:19:03:6e:04:d0:b7:
7e:2f:6e:a3:99:7e:7d:cc:1f:03:e7:98:46:00:1a:
ea:cf:29:3f:eb:41:77:04:69:85:bb:43:85:17:37:
23:3a:93:d8:b4:f8:78:ee:d0:e9:88:3b:89:63:b5:
a1:4d:e0:04:7e:2b:8d:2c:54:e1:6c:80:31:f2:ab:
45:02:64:d7:ce:80:b5:69:14:9d:62:d0:8f:7a:57:
19:b7:3f:4d:96:25:67:5b:ed:a5:a8:bc:c1:8e:dd:
10:f3:dd:14:e4:d9:77:a5:92:23:04:05:26:f8:1e:
67:db:31:25:b9:72:4e:3a:9e:54:42:12:41:a5:c1:
ff:0f:c5:17:57:d2:54:2b:e7:48:3c:18:b8:6c:62:
99:cd:2c:82:86:77:aa:cb:f6:0a:01:6d:76:47:bb:
d4:56:01:bf:5d:98:9f:a5:ad:71:9f:9e:af:ed:8c:
c5:90:cf:fb:1a:c7:ab:06:7f:14:4f:f2:bc:93:f8:
55:6e:e2:40:c0:99:ad:6a:f5:0a:bb:b6:67:b8:c1:
c7:1a:85:e9:a0:0b:d8:c4:07:c1:ea:fe:35:bf:9b:
b6:ea:62:8d:c6:32:4d:a9:19:89:e4:8e:36:70:f1:
1a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:5F:BE:42:13:B5:B7:CA:0D:D2:20:D6:D5:F0:B0:59:F6:35:F8:C7
X509v3 Authority Key Identifier:
keyid:28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/qF--QhO1t8oN0iDW1fCwWfY1-Mc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.80.0/20
Signature Algorithm: sha256WithRSAEncryption
90:fc:8c:40:33:1c:85:ce:c3:33:19:94:96:54:c1:bf:a1:8c:
43:20:c7:8d:f0:5b:ac:96:11:0f:6d:09:cd:38:5a:2d:91:aa:
e7:d2:58:1e:61:c9:3e:12:f5:8b:d6:63:1e:fd:c9:a9:77:27:
de:04:e4:50:e5:4d:95:e2:2a:8b:d4:52:9c:67:43:1c:f4:ae:
ed:ce:0d:70:1b:2a:9f:a4:e4:0d:a6:74:06:f9:8b:d2:d2:d3:
15:c9:1a:3c:b6:c1:83:b2:73:b7:31:e2:c8:ad:43:de:7e:00:
9c:33:26:79:69:71:33:36:57:41:30:72:b4:2d:f1:5b:82:39:
48:9e:75:d5:d3:fd:83:b7:b6:01:36:9a:99:da:38:9f:59:a5:
73:4e:2d:4e:ee:fc:1a:24:78:fa:57:d4:1c:61:36:97:e9:9d:
14:59:da:70:5f:db:8c:bb:ec:dd:e7:9d:39:d4:e6:0f:f0:8b:
e9:5a:a9:60:da:30:ee:5d:32:d4:c5:cf:02:05:48:cb:d3:25:
a9:03:71:53:40:a3:b0:ca:ea:00:61:30:6b:87:88:c2:bb:da:
06:00:ee:63:98:48:17:c0:3c:b9:91:df:96:13:1c:97:b5:85:
61:8c:fe:c8:2d:8f:1c:a2:33:25:02:0f:61:f3:06:96:1e:38:
6d:b9:c0:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org