Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/yDs8RgPH8_vmh8ZzbQN6mGtL7Gs.roa
File: yDs8RgPH8_vmh8ZzbQN6mGtL7Gs.roa (raw, json)
Hash identifier: zHzrlllnw1yr+zVETBRocfJmK+vzGSRDXum1In+oT4E=
Subject key identifier: C8:3B:3C:46:03:C7:F3:FB:E6:87:C6:73:6D:03:7A:98:6B:4B:EC:6B
Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B
Certificate serial: 01B9
Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/yDs8RgPH8_vmh8ZzbQN6mGtL7Gs.roa
Signing time: Fri 01 Sep 2023 09:03:52 +0000
ROA not before: Fri 01 Sep 2023 09:03:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 38042
IP address blocks: 2400:37a0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441 (0x1b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B
Validity
Not Before: Sep 1 09:03:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C83B3C4603C7F3FBE687C6736D037A986B4BEC6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8b:7c:e8:75:62:07:95:d7:0f:f8:a6:81:ca:
0d:a3:ac:13:ef:ea:d8:56:78:bf:2e:87:24:00:d4:
df:0e:39:69:46:a3:cd:de:9e:44:58:7e:03:ef:f5:
89:2d:b7:85:64:d5:c4:77:3f:8f:0f:44:e5:f8:fe:
d1:5f:cd:d9:a4:c1:4e:02:99:6e:36:9a:79:aa:53:
b9:6b:32:0b:30:de:0f:ca:4f:5e:e8:c5:b2:c7:8d:
c1:bf:80:49:20:dc:a9:2f:9d:cd:ee:1b:87:d4:f2:
46:6e:a3:a3:dc:aa:17:99:17:6c:4d:95:38:12:be:
5c:a6:8b:df:19:bc:81:f6:b8:03:1d:f0:c8:cc:bd:
11:47:ea:9e:7f:f3:b6:84:4e:d1:00:84:12:8d:0c:
44:d8:0a:02:3e:f5:a0:1c:f7:5f:07:e9:21:4f:fd:
8a:4e:c4:80:eb:bd:2d:ed:47:60:62:62:c9:7d:d1:
e2:55:75:e9:41:09:86:70:bf:0d:6b:c6:ec:95:b1:
62:df:5c:14:e1:96:02:da:e8:3e:75:bc:2f:76:7a:
14:cf:d0:20:1d:dd:14:66:0d:45:8d:01:1a:9f:6e:
fd:e8:b5:25:55:ee:d3:b1:a6:b1:4b:0c:80:ee:90:
c9:af:5f:8f:e7:18:dc:fa:3d:e1:66:38:3c:5e:d3:
3f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3B:3C:46:03:C7:F3:FB:E6:87:C6:73:6D:03:7A:98:6B:4B:EC:6B
X509v3 Authority Key Identifier:
keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/yDs8RgPH8_vmh8ZzbQN6mGtL7Gs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:37a0::/32
Signature Algorithm: sha256WithRSAEncryption
b9:06:da:d5:25:a2:5b:ed:63:bf:16:23:c6:04:97:cd:40:fe:
6b:a0:0f:ff:2f:a4:16:4c:5e:3c:72:3b:96:62:e5:a3:ae:03:
7a:38:81:58:2a:95:83:2e:d6:fb:c6:60:6f:ff:ad:fc:62:a5:
6e:61:76:a7:ab:da:bf:63:71:28:44:34:84:8d:0f:2d:2f:d5:
6c:b9:69:f6:53:ad:fb:9a:74:b0:e1:f1:78:ef:1b:3b:76:8a:
bb:05:f2:81:29:fb:db:65:d6:2b:cd:03:08:bd:4d:3e:b3:cf:
4b:8e:01:71:3f:c5:70:da:b2:02:45:d6:e1:bf:1f:1d:3c:7c:
41:03:ba:b3:4d:3b:c0:2d:3d:45:d7:e2:95:80:67:c4:9a:83:
91:44:6a:80:75:57:c4:1c:20:d7:ff:69:1a:ea:e5:6e:ec:02:
87:97:55:02:5c:f6:88:f2:e2:a8:dc:15:af:24:fd:76:e0:72:
fe:d4:d3:ed:d4:5a:cb:b7:96:95:23:ce:a7:de:9d:33:18:56:
e1:ef:df:c4:c0:dd:2d:0a:19:1e:c5:3d:4f:93:ba:2f:41:59:
17:c3:bd:47:33:b9:8c:cc:5b:12:60:76:81:a3:a2:61:e0:bf:
d9:6a:fd:da:e4:76:33:d2:44:15:e1:a0:9c:de:27:8a:d8:fb:
f9:43:a1:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org