Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/ehCgeBpNW4hMplbhnAXlQknL3bQ.roa
File: ehCgeBpNW4hMplbhnAXlQknL3bQ.roa (raw, json)
Hash identifier: QXCdwXshLlvPBYCqf2MdkxJNXigrcBQAS1nu+gz9aqc=
Subject key identifier: 7A:10:A0:78:1A:4D:5B:88:4C:A6:56:E1:9C:05:E5:42:49:CB:DD:B4
Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Certificate serial: 0BA4
Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/ehCgeBpNW4hMplbhnAXlQknL3bQ.roa
Signing time: Fri 01 Sep 2023 09:11:31 +0000
ROA not before: Fri 01 Sep 2023 09:11:31 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 58.86.0.0/16 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2980 (0xba4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C
Validity
Not Before: Sep 1 09:11:31 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=7A10A0781A4D5B884CA656E19C05E54249CBDDB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7b:93:05:7c:19:21:83:20:18:23:d0:5a:2b:
4f:a7:12:bd:8a:11:39:b4:15:6c:34:a1:d1:7c:01:
78:95:dc:40:52:a9:49:7b:5e:ef:47:ed:91:7a:ba:
be:e8:95:56:d0:3e:b8:96:a6:ee:0c:6b:60:00:a7:
ce:80:e5:ff:cd:b0:3d:d7:59:5b:52:98:e7:5a:f6:
a8:ed:d6:49:41:43:b4:d4:f3:c7:60:23:78:de:af:
76:bd:4b:2f:66:86:a6:36:2b:d0:4c:22:56:a0:40:
83:6c:7a:51:1b:0f:6d:81:f0:3e:a4:df:a2:19:2e:
d9:88:f4:9f:1c:40:c8:f7:17:49:df:21:f6:27:b0:
fc:16:e5:9b:93:f7:08:bc:5f:e7:78:96:98:97:46:
6e:f2:bb:5f:69:88:16:6e:f3:1d:8f:a5:68:9b:bd:
ea:97:12:29:31:a7:a6:50:34:f4:52:5e:77:05:81:
36:fe:19:df:e5:23:d4:81:0c:12:6a:61:4e:c5:56:
b0:8e:4c:88:33:84:62:2f:21:15:14:7d:f3:dc:70:
3a:b3:58:c5:83:c5:d7:c3:46:0f:fc:07:51:24:f6:
f1:06:70:9c:3c:bb:6f:5e:1b:ef:05:1d:ab:84:ba:
13:61:e1:fc:32:3d:c0:2a:11:b6:ce:22:f6:c2:03:
c9:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:10:A0:78:1A:4D:5B:88:4C:A6:56:E1:9C:05:E5:42:49:CB:DD:B4
X509v3 Authority Key Identifier:
keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/ehCgeBpNW4hMplbhnAXlQknL3bQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
58.86.0.0/16
Signature Algorithm: sha256WithRSAEncryption
19:5a:e4:a2:92:f5:d8:8b:4f:2d:c3:ee:51:4b:bb:ea:ea:ea:
d1:08:e7:4e:2f:78:ef:1d:4d:56:87:34:ff:99:92:34:ee:3d:
e9:fe:14:fb:78:b4:71:49:4c:d0:c0:65:e2:8c:50:97:b2:01:
ee:fd:50:9f:22:38:c8:29:45:35:01:e1:20:dd:20:4e:6a:4e:
6f:d7:83:a3:65:45:d8:77:0b:a2:43:fe:3e:44:b0:e4:d7:1a:
46:e9:af:ed:0a:55:1b:ec:69:86:2a:7c:2b:64:1f:5d:37:28:
a2:48:61:9e:d5:80:36:02:e7:a8:45:10:86:3a:c3:2e:58:4e:
5b:9e:71:ed:06:17:e0:e3:d8:9a:6f:c9:1e:79:a5:aa:50:f7:
32:03:55:f9:2b:b6:8a:db:81:b6:48:0f:d2:4e:96:bc:2c:dc:
6e:30:fc:98:35:46:61:8f:32:d1:52:6b:84:c6:3a:7a:6d:c6:
ab:85:9e:65:ae:b6:03:da:9d:ac:b2:10:47:6d:84:1b:44:ee:
d7:e7:82:97:1d:bc:47:22:67:3f:cd:5e:46:43:f2:af:c1:de:
21:1f:33:2d:6b:c9:9c:f3:81:84:40:6b:36:1c:29:c2:53:eb:
4a:a0:e2:0c:10:ca:8e:5d:e9:b2:fd:99:c8:f2:9f:08:2a:94:
fd:48:04:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org