Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/PS9KhWDHs-kU6lojGU5VWDd851M.roa
File: PS9KhWDHs-kU6lojGU5VWDd851M.roa (raw, json)
Hash identifier: 19PA8gUWE32HHKJWuPfxx11l4JMKTYEZqSyqE9L8OoI=
Subject key identifier: 3D:2F:4A:85:60:C7:B3:E9:14:EA:5A:23:19:4E:55:58:37:7C:E7:53
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0BA9
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/PS9KhWDHs-kU6lojGU5VWDd851M.roa
Signing time: Fri 01 Sep 2023 09:11:33 +0000
ROA not before: Fri 01 Sep 2023 09:11:33 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 61.67.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 1 09:11:33 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3D2F4A8560C7B3E914EA5A23194E5558377CE753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6a:c4:65:ce:80:61:73:72:e8:41:cb:93:f3:
05:40:ae:92:47:5d:08:53:ba:b8:d5:ea:5f:eb:1d:
37:bc:83:56:57:d8:08:48:fe:d0:46:9d:b6:7b:df:
4d:ab:fe:f6:78:37:d0:49:1a:37:48:d0:a7:60:3b:
ce:5f:03:3d:70:d1:78:b9:59:cb:96:98:3c:24:19:
25:fa:dc:df:70:67:6a:33:90:f8:f4:b7:51:4e:7d:
5c:26:56:f2:87:6a:bd:1a:92:ff:86:b9:25:88:f1:
39:d2:cb:ac:66:f9:8c:f0:86:79:23:a1:0a:23:ac:
1f:f4:1b:c9:3b:13:64:a1:10:5d:85:6f:61:db:53:
66:c5:66:3b:f3:f9:66:c9:17:38:60:6b:7a:ec:46:
07:24:55:1f:67:a9:ce:9c:8a:e3:0a:31:4a:a2:be:
8f:c1:f6:cb:fe:e1:f4:e8:8a:15:38:48:e0:b3:53:
65:32:f7:e8:02:40:a1:c8:49:94:46:cf:75:b8:7c:
ec:52:8c:de:ec:e5:7e:7e:5f:60:65:9f:a6:8a:a9:
35:ee:3e:5d:30:0e:c4:a9:b5:da:6b:61:dd:e1:69:
2c:73:b6:cf:ef:b3:07:ea:97:76:ad:61:25:02:7a:
c8:34:1b:3d:0e:be:27:0a:06:e4:76:9a:db:13:18:
df:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:2F:4A:85:60:C7:B3:E9:14:EA:5A:23:19:4E:55:58:37:7C:E7:53
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/PS9KhWDHs-kU6lojGU5VWDd851M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
61.67.128.0/17
Signature Algorithm: sha256WithRSAEncryption
55:e7:d4:87:0d:41:04:de:ea:9c:4c:37:fd:f3:52:fa:dc:d6:
65:4c:17:03:4b:b7:9c:4f:6a:8f:0a:41:04:d4:f1:af:b3:19:
c9:17:32:0c:88:92:1c:62:12:5f:b4:0a:8e:32:97:0a:1d:28:
aa:18:78:a7:e4:83:52:b0:21:a6:e5:98:1c:06:0d:ee:3a:ce:
1a:25:ca:c3:3a:fb:46:e3:3d:7a:df:1c:81:12:f7:93:38:22:
e8:3b:12:90:41:03:b7:6a:4a:0f:a7:b3:80:c8:05:62:57:ce:
d3:50:3d:ac:1a:80:26:62:e5:23:82:41:98:91:33:c4:ce:2c:
1c:6f:e3:14:b8:c4:17:47:be:3e:a8:77:15:87:a2:f1:f5:2a:
09:15:18:70:5e:df:72:16:aa:ca:61:61:92:c2:00:3c:da:3d:
e7:fa:69:70:24:39:d8:65:ca:0e:ab:05:89:b8:fe:5b:38:a2:
1f:1c:62:0c:09:5a:d6:07:f1:86:6a:44:71:6e:04:3b:6a:84:
93:a8:92:27:ac:d6:00:87:68:cc:09:bd:d9:ea:fb:9e:96:09:
ad:24:55:27:2c:19:cf:93:31:40:94:b7:a7:5d:38:1c:8b:b8:
99:f1:3b:a2:18:d2:95:12:1f:94:51:5e:ba:8d:9f:ba:2e:c3:
6b:ab:87:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org