Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/hSmUpZzzmJ-rzPYDIxpKOIZyWUA.roa
File: hSmUpZzzmJ-rzPYDIxpKOIZyWUA.roa (raw, json)
Hash identifier: HtoZJkhFHG05/fqVdkvjb1RHYvE+PdBTcKwHYLQzfx8=
Subject key identifier: 85:29:94:A5:9C:F3:98:9F:AB:CC:F6:03:23:1A:4A:38:86:72:59:40
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0C05
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/hSmUpZzzmJ-rzPYDIxpKOIZyWUA.roa
Signing time: Fri 01 Sep 2023 09:11:53 +0000
ROA not before: Fri 01 Sep 2023 09:11:53 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9416
IP address blocks: 119.14.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3077 (0xc05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:53 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=852994A59CF3989FABCCF603231A4A3886725940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:88:07:22:1b:f8:cd:68:48:f9:e4:01:c7:f5:
d0:c3:af:19:ef:4f:65:9b:d0:81:d7:e9:5d:ad:9d:
53:40:f6:8a:2b:50:1e:5e:20:cd:54:49:bb:fa:dc:
4a:45:84:34:2c:47:cd:a3:2d:50:4d:a7:dd:18:b4:
af:0d:fd:a6:ed:bd:49:a5:2e:b5:75:0a:13:40:10:
5c:a4:dc:d8:44:ed:9c:a4:4c:27:37:e3:af:4d:da:
4b:a8:c3:94:f3:29:8a:03:18:97:01:48:a1:1a:6a:
29:44:a7:6a:78:4c:a9:f2:8e:e6:cb:df:5a:37:f6:
91:64:25:e0:84:9a:84:ec:20:7f:f9:2f:4e:3a:4a:
d1:dd:f5:e9:48:6c:13:62:d1:dc:1e:02:95:31:58:
8d:f7:00:cd:88:79:07:0e:ad:49:cb:51:40:85:3c:
43:fb:0d:c1:e2:ba:bc:d5:84:f8:ae:1e:a7:63:6a:
9e:74:56:db:23:fc:f6:62:ea:41:f1:b0:fb:f8:96:
9d:16:54:94:38:cc:de:98:b2:54:9b:f5:05:42:98:
1a:cf:d4:d3:48:40:6a:21:b2:ca:5f:16:f7:16:03:
39:dc:82:33:57:06:c6:85:dd:ea:67:fd:30:03:11:
c7:0a:32:3d:1a:9e:7c:ef:47:b1:32:24:bc:7b:1e:
70:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:29:94:A5:9C:F3:98:9F:AB:CC:F6:03:23:1A:4A:38:86:72:59:40
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/hSmUpZzzmJ-rzPYDIxpKOIZyWUA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
119.14.0.0/17
Signature Algorithm: sha256WithRSAEncryption
7f:d3:40:2e:09:d5:ab:eb:15:d8:4f:60:ac:8a:40:d0:c6:d3:
f3:32:29:81:00:0f:10:b8:d9:7a:a2:59:63:cf:55:3d:2c:05:
8e:0a:a3:95:03:8b:25:ef:bf:c8:5e:60:2a:26:98:1f:b9:2a:
c5:db:c1:94:8b:c9:99:56:e4:db:5c:9b:b1:81:35:dc:ce:91:
4e:85:08:ab:76:f7:34:d0:c3:97:e7:7a:01:99:ff:b5:94:c2:
b9:c9:57:2f:49:b1:b2:68:37:a1:2c:97:dc:26:f7:f3:52:45:
63:d3:37:9f:ed:0d:10:66:08:20:6c:02:80:b4:55:27:99:dc:
9b:81:8a:29:33:50:60:84:b3:30:b0:71:72:81:b0:05:7e:8c:
a2:c6:80:66:b5:4b:c2:85:b8:75:56:ab:4f:b6:be:2e:9c:f6:
a4:90:44:bb:5a:57:d1:b8:f6:6a:8f:43:08:bf:f4:49:0b:af:
5b:c8:73:9a:dd:27:f8:5d:fd:a0:ac:a0:17:5d:56:48:27:76:
4c:18:de:5d:90:a7:3a:bf:7d:b8:12:07:06:e0:ec:a5:12:ed:
f5:7e:50:5f:6d:d8:1e:ed:5b:f7:a8:dd:76:1b:43:74:f1:f8:
45:4d:87:4b:23:b9:c5:4c:1b:74:c3:38:f6:8c:e8:d8:41:7b:
d9:fc:56:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org