Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/pS1cHPLmyichtxBRKg7sPwNhwrI.roa
File: pS1cHPLmyichtxBRKg7sPwNhwrI.roa (raw, json)
Hash identifier: oUKuhcGauypR3Ioj5pEtqzZWDU0wP8/1HPCem/JznR4=
Subject key identifier: A5:2D:5C:1C:F2:E6:CA:27:21:B7:10:51:2A:0E:EC:3F:03:61:C2:B2
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BFA
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/pS1cHPLmyichtxBRKg7sPwNhwrI.roa
Signing time: Fri 01 Sep 2023 09:11:50 +0000
ROA not before: Fri 01 Sep 2023 09:11:50 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18042
IP address blocks: 115.43.0.0/17 maxlen: 17
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3066 (0xbfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:50 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A52D5C1CF2E6CA2721B710512A0EEC3F0361C2B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ec:15:fc:9d:68:71:84:da:19:43:8a:2e:e5:
88:47:b4:13:5d:3a:d8:9f:72:c6:60:31:75:41:d2:
11:dd:9a:f7:23:75:bb:60:56:8c:ea:7b:38:0c:ad:
57:21:be:c9:4e:3a:1f:3f:fd:32:67:24:b7:ac:75:
bf:c9:f6:d6:cd:01:43:31:05:df:c0:d3:f2:ff:a5:
ec:8e:7b:cc:2e:91:55:2a:0b:b1:d5:3f:70:98:1f:
a2:4e:b8:29:ad:ba:a9:d8:6f:7a:81:af:fe:75:80:
22:f7:ba:f1:74:36:8b:15:b5:b6:87:49:6c:24:d5:
df:4c:88:91:aa:4f:a3:77:ba:1e:32:d9:19:0f:5f:
86:2f:9b:11:87:f6:d8:cf:b0:91:29:e6:13:31:2f:
81:91:b7:bb:93:4e:ba:c2:92:a9:5c:fd:56:f3:04:
56:a6:74:d7:d2:4e:54:07:57:95:a8:a0:c9:e0:ba:
d4:82:e3:59:78:db:b0:8e:b7:e5:82:62:5a:78:39:
2e:4d:70:69:7b:66:3b:69:f3:4a:7d:8f:50:c6:02:
1b:50:8e:e1:ec:34:bf:23:35:20:01:b7:e7:42:3c:
c0:06:44:d0:d3:a5:dd:57:87:09:0f:66:0b:ed:49:
e0:12:7d:7d:61:5a:f2:6d:f7:fb:f1:35:13:be:90:
3b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:2D:5C:1C:F2:E6:CA:27:21:B7:10:51:2A:0E:EC:3F:03:61:C2:B2
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/pS1cHPLmyichtxBRKg7sPwNhwrI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
115.43.0.0/17
Signature Algorithm: sha256WithRSAEncryption
3d:21:40:a2:b9:e8:6d:50:6a:00:98:2a:f3:74:fb:eb:9f:bb:
03:99:1a:a3:6f:14:4f:30:97:e3:cf:26:0d:30:8c:30:2c:75:
08:8d:3e:25:8b:f1:b6:6d:df:4e:04:97:2c:de:db:7f:53:7f:
78:e9:7c:d6:5a:f0:32:0c:25:94:7f:09:45:9c:67:e7:80:ed:
0e:49:71:f0:f5:4f:bf:d3:4a:e3:0c:65:eb:8a:d6:c2:57:b6:
6e:ef:62:d2:25:fe:98:f4:e5:ac:cd:43:f0:fd:bb:2b:38:ea:
03:27:b0:e6:6a:40:fe:c2:7d:eb:91:86:f0:70:2e:4c:93:6e:
e5:bc:84:24:e4:c5:29:01:34:37:9d:a8:dc:0f:84:e0:a2:73:
4f:1f:ac:2a:43:9b:7f:25:6c:f1:bc:57:ad:77:bd:62:09:3f:
08:70:77:bb:d9:93:87:0e:fd:d3:75:ac:bf:ca:e5:b6:b8:5c:
f0:c0:ea:28:f4:b8:3d:1c:f9:4b:e4:58:b6:5a:5c:7b:0d:1f:
85:7f:0f:bb:00:d0:a5:78:d2:ae:65:dd:8f:43:ea:47:f4:d6:
d4:27:db:36:fa:97:9f:e5:4b:8f:e6:e8:fd:a1:bc:cf:e4:27:
17:1c:2e:a5:fd:6b:99:07:ee:0b:e4:48:71:08:3d:2f:a6:6c:
52:4a:f1:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:21 2024 by rpki-client on console-fra.rpki-client.org