Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/x9yTAQIl-Bvxlvb_dnsRxzugy6s.roa
File: x9yTAQIl-Bvxlvb_dnsRxzugy6s.roa (raw, json)
Hash identifier: DgC1/S+sAjYhqffwGsj0VPvIAvTc4O/5l2g541S4EX4=
Subject key identifier: C7:DC:93:01:02:25:F8:1B:F1:96:F6:FF:76:7B:11:C7:3B:A0:CB:AB
Certificate issuer: /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial: 0BEE
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/x9yTAQIl-Bvxlvb_dnsRxzugy6s.roa
Signing time: Fri 01 Sep 2023 09:11:46 +0000
ROA not before: Fri 01 Sep 2023 09:11:46 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 123.252.64.0/18 maxlen: 18
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3054 (0xbee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Validity
Not Before: Sep 1 09:11:46 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C7DC93010225F81BF196F6FF767B11C73BA0CBAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:46:bf:2b:58:3f:95:4e:8b:af:a4:69:c9:e2:
2f:f6:52:30:4a:bb:58:8e:cd:17:1d:5f:39:b3:fe:
88:92:ba:ed:f4:82:20:dc:9f:68:54:2d:95:ea:b3:
dc:2b:a6:9a:e3:e2:4d:c7:46:5d:c5:69:22:0f:ac:
8a:73:a0:02:e1:06:9c:17:1b:2f:6e:c3:f1:8c:bd:
36:4a:8c:d8:65:d4:50:bb:cf:6e:0b:a8:25:b6:95:
6d:6a:e5:65:09:eb:94:0d:a1:c5:9d:a3:15:c3:0b:
63:89:c1:68:42:e5:7f:a5:a2:83:30:e0:7c:64:83:
64:cf:dd:e6:1e:e4:2c:8b:c4:23:bd:05:8f:51:96:
6d:d2:85:ea:08:17:89:a2:e4:4b:73:b2:e2:7d:ec:
16:5a:c7:2b:a9:a6:71:bc:6e:59:82:6e:98:08:81:
ba:27:3c:17:98:41:3a:46:ac:4d:8e:64:c8:b2:d5:
6a:e1:ad:b0:59:91:cc:27:08:e2:08:aa:a0:75:8f:
87:ee:11:a5:ed:ab:29:f6:66:59:f8:91:ca:29:12:
ce:c4:63:d5:b3:a7:b6:f1:bc:00:61:11:b3:fb:80:
94:77:2f:45:41:e4:84:d5:e2:f0:90:38:d6:df:03:
46:5b:09:ff:72:ea:03:78:6c:68:21:4a:cf:73:22:
1c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:DC:93:01:02:25:F8:1B:F1:96:F6:FF:76:7B:11:C7:3B:A0:CB:AB
X509v3 Authority Key Identifier:
keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/x9yTAQIl-Bvxlvb_dnsRxzugy6s.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
123.252.64.0/18
Signature Algorithm: sha256WithRSAEncryption
a9:4c:f2:c3:f2:63:15:00:dd:81:89:47:46:97:c4:02:17:f5:
f4:27:da:a6:d5:02:0e:6b:3b:a0:84:6d:c1:33:76:8e:72:59:
79:3c:fa:3a:77:9e:c6:50:e5:f7:9d:e6:fa:d5:63:cd:df:7a:
d0:88:e5:e4:f2:6f:2e:d3:92:0f:7a:0c:7b:53:3c:2c:09:2e:
85:f2:b8:9f:57:a1:32:87:57:d7:55:18:b9:86:8e:24:c4:76:
be:dd:0c:b1:55:f8:32:df:fe:f0:8f:ab:00:00:84:f9:eb:d6:
fa:52:fd:da:65:49:e4:7a:2a:a4:c8:f7:41:11:57:49:98:80:
e3:0f:72:e8:e0:a5:7c:43:3d:af:0d:37:cb:33:c3:62:3e:d6:
6b:49:2b:b4:8a:35:9c:08:bb:2b:69:e9:e1:a8:77:19:5d:57:
95:27:bd:01:c1:75:b6:aa:c1:5e:3b:07:f6:2e:02:95:80:a2:
76:ad:c8:a8:0e:6d:d5:45:ad:82:b9:f6:a0:08:9d:bb:7f:b2:
28:82:14:e4:b2:8f:c1:3b:c7:8f:08:b0:a4:c5:8f:c1:c7:49:
29:aa:67:92:72:76:d8:f0:fa:8d:9c:25:e1:c6:14:2d:3b:d4:
ec:a0:91:97:21:b7:c9:c0:ae:33:31:7c:6a:22:1f:30:d5:08:
8e:dc:e4:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 10:35:14 2024 by rpki-client on console-ams.rpki-client.org