Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/nr0VPX76A8-aKKqjTXqTmxjVdLc.roa
File: nr0VPX76A8-aKKqjTXqTmxjVdLc.roa (raw, json)
Hash identifier: x5OdPP/AVE/LIZjm0r/Mk88OAo7NQrVR+2OYzriFj2Q=
Subject key identifier: 9E:BD:15:3D:7E:FA:03:CF:9A:28:AA:A3:4D:7A:93:9B:18:D5:74:B7
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BF0
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/nr0VPX76A8-aKKqjTXqTmxjVdLc.roa
Signing time: Fri 01 Sep 2023 09:11:46 +0000
ROA not before: Fri 01 Sep 2023 09:11:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 202.151.48.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3056 (0xbf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=9EBD153D7EFA03CF9A28AAA34D7A939B18D574B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:a2:5d:50:ae:25:06:2e:89:d0:e3:a2:8c:
dc:b6:9e:7f:ec:05:53:b8:df:90:f7:de:3a:4e:37:
b4:32:ff:2a:89:bf:73:e2:5d:7c:c4:b0:96:b4:df:
d4:4e:57:36:c4:cb:fe:a9:31:01:c6:61:0e:a7:20:
08:1d:da:7c:36:7d:86:54:35:2b:c8:e7:45:90:1b:
75:37:78:97:db:f2:76:db:d2:2c:a5:bf:44:28:2f:
7e:ef:ae:3e:cc:8c:47:4d:33:8d:a0:46:dc:ed:ae:
8e:7a:0e:d5:51:a2:f0:39:7b:0e:7c:eb:a9:ea:f1:
db:fa:ff:0f:f3:60:e1:74:ff:36:b8:7c:23:79:a2:
ce:c2:63:1b:78:5e:6a:f4:5a:62:b8:0c:dc:b2:65:
c7:cb:f3:72:ba:ec:02:2f:9f:7e:6f:6e:0b:db:44:
e2:15:12:f6:df:07:a3:f2:02:1e:92:d0:f0:2e:44:
04:d2:4f:7f:8d:64:76:fe:75:34:24:11:61:74:c2:
b6:00:0a:00:a6:05:a9:5a:ec:f3:5f:a2:c7:55:65:
df:ce:b1:de:79:74:73:b9:ee:69:d2:7b:e5:cc:96:
9f:4d:2a:fd:d7:58:ae:a9:a3:8b:c8:e6:6c:a9:4c:
25:72:f3:de:71:73:57:03:d4:d6:83:68:60:5e:5b:
1f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:BD:15:3D:7E:FA:03:CF:9A:28:AA:A3:4D:7A:93:9B:18:D5:74:B7
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/nr0VPX76A8-aKKqjTXqTmxjVdLc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.151.48.0/20
Signature Algorithm: sha256WithRSAEncryption
66:dc:7b:9d:fb:75:24:1f:0a:8f:31:dc:a6:d2:a9:59:28:3f:
02:ff:d1:eb:c5:4f:65:f6:93:26:e8:4c:11:b5:c3:60:8f:c6:
2b:a5:a8:c4:6d:5a:69:5b:0a:aa:a4:3e:d4:8c:cc:6d:3d:77:
16:fc:d9:7f:3c:32:18:12:dd:bd:70:11:b9:36:ea:2c:0c:86:
9e:78:73:d3:ec:07:b7:08:10:fb:20:f7:90:01:00:f5:e9:e1:
da:55:5c:53:c8:dc:e0:b4:df:cf:08:3e:f2:d9:42:1f:fa:d2:
16:f8:5d:9e:e7:bf:f2:69:31:1b:bd:92:15:89:03:2f:10:57:
cd:c8:51:a6:bc:85:0d:1f:c5:70:db:59:95:b8:69:e8:2e:3c:
f6:d2:f7:84:63:8a:33:de:48:2e:40:0d:ae:6f:14:03:1a:03:
03:a2:a2:a0:51:ad:e1:2d:5c:9d:eb:0e:c5:10:4f:25:a6:b1:
7f:ac:63:bf:00:13:2c:89:5a:e4:0a:63:b4:8b:a7:c8:18:63:
80:9d:77:13:fb:1a:5d:cd:4c:12:77:91:88:cc:85:62:4b:8c:
0c:cf:0f:d2:6d:e0:ba:24:28:f6:fe:81:64:ea:6e:28:af:c8:
0b:2f:e9:69:94:6a:ea:e2:39:99:c0:f7:0d:46:56:a4:19:da:
1a:18:57:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org