Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/eZZLjGoZoWwyctKPJh54z3k9qQ8.roa
File: eZZLjGoZoWwyctKPJh54z3k9qQ8.roa (raw, json)
Hash identifier: zU3YiPEvUNeT5r7FcJr9ziYM6poigEGeMkLog3ejtjo=
Subject key identifier: 79:96:4B:8C:6A:19:A1:6C:32:72:D2:8F:26:1E:78:CF:79:3D:A9:0F
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0BA6
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/eZZLjGoZoWwyctKPJh54z3k9qQ8.roa
Signing time: Fri 01 Sep 2023 09:11:32 +0000
ROA not before: Fri 01 Sep 2023 09:11:32 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 58.86.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2982 (0xba6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 1 09:11:32 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=79964B8C6A19A16C3272D28F261E78CF793DA90F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:28:57:d3:0d:5f:73:5b:e3:18:50:f5:d1:83:
f7:2c:63:11:00:22:96:ed:62:e9:30:4c:fe:cb:0d:
4f:1e:5d:a6:29:42:b5:22:f9:e0:dc:01:17:0f:17:
e0:1d:fd:b8:b4:d4:46:40:27:62:26:89:7f:54:d3:
41:13:e3:83:1b:c2:f2:27:5a:5d:32:b7:96:d1:fc:
70:ad:97:fc:c5:0e:3a:9a:25:c0:97:c1:d4:a3:b8:
5b:44:ef:c4:99:7b:16:3f:f6:5a:d5:71:3d:9d:11:
89:99:5b:2d:48:73:f0:6f:1c:11:94:56:4d:6c:3f:
cd:9f:94:25:ce:79:8d:5e:f4:dd:ea:94:4d:01:28:
df:a9:a5:a6:85:15:92:2f:14:3f:2e:53:f4:a5:cf:
cc:50:0f:34:42:43:f9:93:eb:56:67:a6:ec:ed:0f:
85:dd:42:3f:74:4b:af:60:a8:be:69:95:75:63:70:
ce:62:c0:61:f5:ae:5a:fd:c6:7d:21:af:a1:79:ae:
71:1b:20:5d:b9:84:5a:c2:0b:59:44:e7:48:fa:b6:
88:4b:aa:8c:8d:81:81:e5:0b:23:ec:e7:01:be:b4:
64:be:5e:50:fe:a0:61:f3:9c:bf:3e:a3:09:92:06:
a0:b0:de:72:64:22:8e:15:3d:42:bb:f4:31:60:ce:
93:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:96:4B:8C:6A:19:A1:6C:32:72:D2:8F:26:1E:78:CF:79:3D:A9:0F
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/eZZLjGoZoWwyctKPJh54z3k9qQ8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.46.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d1:27:6f:6e:11:e2:9f:9f:a7:5c:11:b8:6b:a3:d6:17:a5:
d5:a0:3f:c0:95:7e:5d:57:5d:68:e3:bd:81:24:e6:5f:ca:73:
d0:dc:03:ed:47:7f:78:e8:27:cc:ce:1e:67:28:c7:f0:7a:e6:
1f:ab:2e:a2:ed:8c:c5:2d:ca:59:60:f0:6d:9b:a4:9d:91:a2:
6e:70:83:08:55:0a:70:68:48:bd:5f:12:08:80:f4:e5:9e:98:
10:27:54:5e:71:07:38:1f:5f:02:9d:87:bc:e1:fb:c6:7e:38:
3c:79:a8:63:cd:f9:ed:e3:84:d4:12:f2:0c:f3:7b:f1:19:00:
45:4b:f7:66:d1:18:f6:c3:d8:70:65:88:04:55:79:ab:26:39:
7c:a1:ad:9c:54:04:38:44:bf:8f:b0:36:84:b3:29:74:08:b9:
a1:85:4c:2f:70:74:e0:f8:ea:23:57:c0:60:a1:cf:47:35:6d:
65:82:04:47:5f:d5:70:68:6d:8b:eb:18:20:b8:84:61:40:d3:
b2:84:6f:61:fd:db:f0:f6:1d:a7:b2:85:41:d0:ec:7d:eb:04:
ab:a4:de:37:3c:fb:fc:c7:2f:61:25:c8:8b:64:68:27:e6:5e:
ee:97:6d:86:f5:9f:97:be:6c:53:f8:aa:e0:49:cb:9f:e7:5b:
ab:7f:37:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org