Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/OjIUIQTkaRBNVYUSRmFPFKxEZ34.roa
File: OjIUIQTkaRBNVYUSRmFPFKxEZ34.roa (raw, json)
Hash identifier: uPTd2VBMXChkO9FxvOMLhipFoACOxzwtbsvG0UA+rJg=
Subject key identifier: 3A:32:14:21:04:E4:69:10:4D:55:85:12:46:61:4F:14:AC:44:67:7E
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BEF
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/OjIUIQTkaRBNVYUSRmFPFKxEZ34.roa
Signing time: Fri 01 Sep 2023 09:11:46 +0000
ROA not before: Fri 01 Sep 2023 09:11:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 115.43.128.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3055 (0xbef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=3A32142104E469104D55851246614F14AC44677E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ce:f4:1e:fd:01:bd:8c:05:6d:87:f7:55:7a:
77:0a:13:1f:28:59:2e:01:f1:d4:b0:b5:59:03:63:
bc:06:4b:a1:07:60:f8:05:44:f8:5b:fa:69:7b:91:
c3:7d:83:23:1c:cf:e2:b5:2c:0e:ca:c4:a5:80:b6:
5e:66:ec:d2:73:d1:0a:0c:ef:95:95:23:5e:f5:05:
16:4f:0c:4a:a7:3f:36:75:93:1a:49:41:c9:a9:ee:
1c:9e:1e:58:cd:c1:6c:89:70:1d:90:f9:14:34:0b:
fe:35:58:45:39:aa:a3:a2:3e:01:fc:1e:57:f7:95:
db:28:34:d2:3b:be:dd:d5:0b:4b:73:6e:4c:fd:e1:
c2:93:bf:31:54:59:59:8f:e8:60:af:7f:01:4d:b9:
92:b5:0d:17:fb:76:51:92:d7:2d:37:10:a9:75:d8:
09:b5:c1:e8:28:13:4c:0d:c4:95:8f:8c:8a:fe:8b:
d3:97:83:2c:3b:c1:f4:c8:3c:02:f5:bc:5a:e6:0b:
59:ea:00:7f:99:69:ce:04:d1:08:1b:ab:f0:9b:55:
05:2c:53:24:a1:76:2a:ce:0a:e4:92:03:7f:3a:94:
b1:af:e6:91:77:fd:03:bb:77:88:a9:ac:f5:e4:82:
f5:32:cc:1b:9c:6f:d2:13:a7:51:7e:3f:d5:e7:41:
4a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:32:14:21:04:E4:69:10:4D:55:85:12:46:61:4F:14:AC:44:67:7E
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/OjIUIQTkaRBNVYUSRmFPFKxEZ34.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.128.0/17
Signature Algorithm: sha256WithRSAEncryption
36:dd:d2:b1:10:be:e7:5d:73:a4:c9:c5:46:25:39:11:5a:a1:
64:d3:9f:aa:3a:9e:ea:a4:73:74:10:61:eb:1b:cf:19:c9:51:
00:18:99:4b:f2:83:b5:13:26:61:a8:59:47:3a:fa:a7:b7:d9:
b5:d7:b6:6e:78:4b:fc:eb:d9:81:d4:bb:6e:b8:3a:78:26:26:
e9:8f:9f:37:e8:60:b7:9d:00:8f:66:97:02:8a:63:07:fc:84:
ba:25:96:5a:96:f6:e4:55:df:32:89:57:5d:46:c4:80:06:0e:
34:67:9c:cb:85:79:e6:1f:15:4d:25:fe:b8:1d:43:f5:88:28:
69:9a:9e:35:eb:f6:0d:91:9f:89:d6:60:df:6d:c5:03:12:ec:
7c:a5:95:f4:8f:be:93:0d:a3:cd:8d:02:1e:e5:72:ea:c1:76:
c7:30:71:0a:2b:d5:bb:f4:4b:31:48:5e:2e:ac:ca:ba:d3:15:
c7:ea:33:03:a6:e5:c5:0c:37:48:51:4b:05:bd:13:d2:de:c3:
42:dd:fc:9b:66:0d:b4:5b:e9:0d:e0:4c:b6:18:42:5c:29:2c:
fe:72:1b:86:9d:2d:24:4e:4c:3a:bf:21:c4:80:7d:1f:47:b3:
57:da:be:d6:de:b0:2a:8a:c8:5e:78:5b:0a:16:c6:8a:37:37:
aa:e7:b4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:20 2024 by rpki-client on console-fra.rpki-client.org