Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PyXS-QDFEFy58BgpN0JdQRYOIcc.roa
File: PyXS-QDFEFy58BgpN0JdQRYOIcc.roa (raw, json)
Hash identifier: 55vJQfYoo1ES3HdonDNbYIrMZu0O+w7NDiXEa6G0Yeo=
Subject key identifier: 3F:25:D2:F9:00:C5:10:5C:B9:F0:18:29:37:42:5D:41:16:0E:21:C7
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 056D
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PyXS-QDFEFy58BgpN0JdQRYOIcc.roa
Signing time: Fri 01 Sep 2023 09:00:33 +0000
ROA not before: Fri 01 Sep 2023 09:00:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 134522
IP address blocks: 2401:95c0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1389 (0x56d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Sep 1 09:00:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3F25D2F900C5105CB9F0182937425D41160E21C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7d:13:c1:65:4b:fa:7b:6d:05:08:25:fa:50:
b5:d0:69:e0:50:5f:1b:99:f7:25:cc:44:e4:04:51:
80:fd:5a:2e:64:13:6e:46:f2:8b:32:d7:4b:e9:2f:
ba:fd:33:7c:98:b2:59:6d:96:a5:21:91:1b:34:2a:
f3:4a:1e:2a:76:0b:c9:28:91:f5:d9:b4:f6:9e:ed:
92:70:d7:79:e6:29:fe:61:25:bc:3f:f5:13:3a:21:
c7:7e:c7:1c:24:0a:f8:6c:d1:c5:14:bd:c9:8e:b0:
67:86:92:1a:1b:bd:63:b2:51:93:d2:27:b8:69:78:
ad:20:59:32:4b:ff:77:32:ff:a1:ab:63:69:ea:09:
2d:8d:ac:8a:bd:27:da:14:60:20:8c:70:89:98:8a:
87:9c:bc:14:88:1b:52:70:9b:60:16:14:6d:cf:04:
98:27:e2:14:cc:26:60:27:6c:f2:d4:e3:95:7b:54:
ca:2b:59:04:01:c2:46:e1:db:0e:cb:d0:20:38:21:
5b:7d:a6:c0:a5:f8:1c:4a:dd:1e:ae:24:8b:ff:51:
91:e2:25:ca:dd:74:59:32:d3:76:58:fe:3a:43:09:
e6:c9:08:12:36:5e:66:a7:75:44:a4:ac:95:7d:b6:
0b:96:18:4a:17:83:50:c4:aa:0a:f1:c4:39:78:12:
89:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:25:D2:F9:00:C5:10:5C:B9:F0:18:29:37:42:5D:41:16:0E:21:C7
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/PyXS-QDFEFy58BgpN0JdQRYOIcc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:95c0::/32
Signature Algorithm: sha256WithRSAEncryption
19:74:5b:0f:9f:15:ff:bc:47:c7:62:aa:d3:42:ec:64:21:03:
70:d9:63:53:0a:e4:a7:51:45:2f:98:dd:b3:aa:e1:ee:83:95:
6b:7a:53:11:4e:95:d4:a0:ff:9f:d6:0e:d6:48:21:dc:e9:c2:
22:ec:78:a6:10:61:96:3c:37:5a:20:82:1d:0e:c1:0e:ba:f1:
ba:6e:9e:96:e6:02:c7:93:d5:a1:40:ad:e5:9c:67:3e:da:12:
08:81:83:07:88:f4:e5:3a:8a:f3:63:66:7c:bc:fb:be:5d:4e:
e7:f0:16:b8:ef:15:42:a6:c9:ab:10:8d:33:f3:af:27:e9:80:
32:72:e8:48:88:af:30:40:37:cb:31:f3:3f:55:fb:02:7f:d0:
af:48:0a:c4:e9:94:e0:55:a8:13:94:10:04:76:66:92:11:97:
4e:d8:7d:43:d2:90:bf:44:94:fc:10:4b:de:87:3a:12:0d:1e:
a7:87:93:3e:13:63:48:09:f0:93:72:1b:3c:93:88:66:81:73:
ed:fc:3e:b9:b9:e3:b9:8f:24:ca:a2:8b:22:0c:23:a2:da:ff:
40:38:e0:4f:58:3e:94:2d:8a:d4:26:ba:df:a8:b4:d3:eb:b7:
97:40:a2:fc:bb:2e:b5:b9:70:8c:22:67:72:02:63:df:ea:7e:
8f:e9:2c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:13 2024 by rpki-client on console-ams.rpki-client.org