Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa
File: _mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa (raw, json)
Hash identifier: R/0ZJAv+/uXvG44f2RH5j5cuekmyRL0AglDpFWfJx4Y=
Subject key identifier: FE:64:1A:00:A2:BC:7A:B3:64:E6:54:39:FD:76:FC:B3:D0:84:5B:90
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0C01
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa
Signing time: Fri 01 Sep 2023 09:11:52 +0000
ROA not before: Fri 01 Sep 2023 09:11:52 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9416
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3073 (0xc01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:52 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FE641A00A2BC7AB364E65439FD76FCB3D0845B90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:99:b0:ad:81:d6:5c:a0:59:fc:9c:47:a9:48:
47:34:c4:c6:2b:d9:2a:33:a3:08:41:71:ec:59:78:
a7:16:65:f0:a6:a8:b8:9c:ae:88:b0:d5:0d:a4:09:
00:5e:3d:76:d1:28:35:40:d4:ec:4b:47:7f:d8:ed:
7e:53:b5:20:4c:20:ed:96:43:6e:45:3a:e5:5c:20:
02:c5:4b:cc:5e:85:30:d5:ec:2a:a8:8c:ba:ea:89:
65:ff:0f:e0:2d:f4:99:e0:a7:8b:7f:83:2f:e0:fb:
a4:b2:d0:f4:f6:9b:6a:cb:46:c4:07:6a:02:b2:a5:
e8:37:9e:12:ee:80:ae:c6:f6:74:87:f9:30:2a:34:
a9:1b:32:fe:74:da:97:e4:90:27:ec:0c:66:e4:5f:
4d:8f:b1:73:df:0c:1f:76:8c:e7:83:ba:08:11:ac:
a6:f5:72:a9:96:3c:13:0e:85:0d:86:2e:2c:d9:54:
df:08:93:49:44:3f:0b:06:87:40:5c:19:70:71:5a:
22:cf:6e:dc:36:d0:c7:a5:0e:b1:76:7e:5e:6e:ca:
ab:32:c3:4a:63:a7:26:e8:15:18:10:44:ab:64:1b:
a7:a2:fc:57:27:94:54:cf:cb:f8:c0:d2:b5:57:14:
11:b2:67:11:e6:bb:9c:1b:c8:db:70:b2:d6:35:a8:
c1:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:64:1A:00:A2:BC:7A:B3:64:E6:54:39:FD:76:FC:B3:D0:84:5B:90
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/_mQaAKK8erNk5lQ5_Xb8s9CEW5A.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
5c:9e:c0:3d:e3:84:d1:7b:00:82:21:63:37:b7:e1:64:7b:59:
30:c7:b8:6d:c1:3f:88:88:ed:1a:60:43:7d:63:c5:2c:ef:10:
41:6b:df:8b:ff:93:92:9c:4e:f5:b4:c6:0b:a1:b6:93:f9:7f:
6c:88:de:1d:ef:5e:6f:9e:ca:46:76:dd:c3:76:d8:50:db:fa:
f1:75:06:89:d5:e0:1f:c3:92:5e:e6:cf:41:bf:46:85:50:1f:
83:0a:66:95:12:e3:2b:22:fd:01:75:e9:ec:25:83:1b:eb:18:
be:f5:7b:c6:fa:2c:15:d4:ae:48:3c:9c:3e:b9:cd:ee:d1:3c:
d1:a4:b2:15:7b:fe:9b:d8:43:3f:4f:c4:d7:d4:f6:33:cc:20:
84:d3:e4:4b:cd:6a:01:42:d9:98:8b:28:2e:23:c1:e0:a9:3f:
57:e2:62:13:62:e9:0e:0b:18:f9:fc:39:73:8e:53:f3:21:77:
7e:e3:27:d1:34:bd:a2:59:61:bd:47:fe:08:88:15:1e:d0:e0:
93:d4:60:a1:96:c6:a7:50:e4:04:66:e5:91:08:2d:ef:54:5c:
e8:30:1a:a1:79:e3:69:f9:ef:1d:bc:5b:47:32:e3:ee:8f:4a:
b1:c2:df:4f:98:b9:35:f7:9c:87:13:97:ab:c0:64:80:01:5f:
42:a9:62:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org